March 2021 - epel-devel - Fedora Mailing-Lists

by updates＠fedoraproject.org

The following Fedora EPEL 7 Security updates need testing: Age URL 11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-9ec8ceb857 ansible-2.9.18-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-548bb74e95 nagios-4.4.6-3.el7 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-0859a9d61e x11vnc-0.9.13-12.el7 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-9fbe0750f7 privoxy-3.0.32-1.el7 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-580891d7f4 chromium-88.0.4324.182-2.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing atari800-4.2.0-2.el7 nova-agent-2.1.23-1.el7 wsdd-0.6.4-1.el7 zabbix40-4.0.29-1.el7 zstd-1.4.9-1.el7 Details about builds: ================================================================================ atari800-4.2.0-2.el7 (FEDORA-EPEL-2021-26b967230c) An emulator of 8-bit Atari personal computers -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1924660 - Review Request: atari800 - An emulator of 8-bit Atari personal computers https://bugzilla.redhat.com/show_bug.cgi?id=1924660 -------------------------------------------------------------------------------- ================================================================================ nova-agent-2.1.23-1.el7 (FEDORA-EPEL-2021-6a6ea66240) Agent for setting up clean servers on Xen -------------------------------------------------------------------------------- Update Information: Latest upstream release. EL7 moved to depend on python3.6 to match upstream changes. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 4 2021 Sam P <survient(a)fedoraproject.org> - 2.1.23-1 - Updated to latest upstream release - Changed crypto depedency to match upstream - Removed now-irrelevant patch and added versionfix.patch See https://github.com/Rackspace-DOT/nova-agent/issues/100. * Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 2.1.21-6 - Rebuilt for updated systemd-rpm-macros See https://pagure.io/fesco/issue/2583. * Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.21-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.21-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 2.1.21-3 - Rebuilt for Python 3.9 * Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.21-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Tue Oct 8 2019 Carl George <carl(a)george.computer> - 2.1.21-1 - Latest upstream - Add patch0 to switch to pycryptodomex * Thu Oct 3 2019 Miro Hron��ok <mhroncok(a)redhat.com> - 2.1.20-5 - Rebuilt for Python 3.8.0rc1 (#1748018) * Mon Aug 19 2019 Miro Hron��ok <mhroncok(a)redhat.com> - 2.1.20-4 - Rebuilt for Python 3.8 * Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.20-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.20-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ wsdd-0.6.4-1.el7 (FEDORA-EPEL-2021-3f98652983) Web Services Dynamic Discovery host daemon -------------------------------------------------------------------------------- Update Information: Latest upstream release. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 4 2021 Sam P <survient(a)fedoraproject.org> - 0.6.4-1 - Updated to latest upstream release. * Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 0.6.3-2 - Rebuilt for updated systemd-rpm-macros See https://pagure.io/fesco/issue/2583. -------------------------------------------------------------------------------- ================================================================================ zabbix40-4.0.29-1.el7 (FEDORA-EPEL-2021-f1e9ccd247) Open-source monitoring solution for your IT infrastructure -------------------------------------------------------------------------------- Update Information: Update to 4.0.29 Release notes: * https://www.zabbix.com/rn/rn4.0.29 * https://www.zabbix.com/rn/rn4.0.28 Resolves CVE-2021-27927: CControllerAuthenticationUpdate controller lacks a CSRF protection mechanism -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 5 2021 Orion Poplawski <orion(a)nwra.com> - 4.0.29-1 - Update to 4.0.29 (CVE-2021-27927, bz#1934828) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1934825 - CVE-2021-27927 zabbix: CControllerAuthenticationUpdate controller lacks a CSRF protection mechanism https://bugzilla.redhat.com/show_bug.cgi?id=1934825 -------------------------------------------------------------------------------- ================================================================================ zstd-1.4.9-1.el7 (FEDORA-EPEL-2021-c587362859) Zstd compression library -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 5 2021 P��draig Brady <P(a)draigBrady.com> - 1.4.9-1 - Latest upstream --------------------------------------------------------------------------------

1 year, 2 months

1
0
0 / 0

Fedora EPEL 8 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 8 Security updates need testing: Age URL 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-71d1af6aca isync-1.4.1-1.el8 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-fedb6fa69d python-aiohttp-3.7.4-1.el8 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-6fed4b5ffb nagios-4.4.6-3.el8 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-fc2f1ff74c x11vnc-0.9.16-3.el8 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-a2e8a7475f chromium-88.0.4324.182-2.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-94317ce911 suricata-5.0.6-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing atari800-4.2.0-2.el8 guacamole-server-1.3.0-1.el8 kirc-0.2.4-1.el8 nova-agent-2.1.23-1.el8 oomd-0.4.0-6.el8 python-SecretStorage-3.2.0-3.el8 python-django-2.2.19-1.el8 wsdd-0.6.4-1.el8 zabbix40-4.0.29-1.el8 Details about builds: ================================================================================ atari800-4.2.0-2.el8 (FEDORA-EPEL-2021-a5eae8e39d) An emulator of 8-bit Atari personal computers -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1924660 - Review Request: atari800 - An emulator of 8-bit Atari personal computers https://bugzilla.redhat.com/show_bug.cgi?id=1924660 -------------------------------------------------------------------------------- ================================================================================ guacamole-server-1.3.0-1.el8 (FEDORA-EPEL-2021-7fb11f3cdd) Server-side native components that form the Guacamole proxy -------------------------------------------------------------------------------- Update Information: Guacamole is an HTML5 remote desktop gateway. Guacamole provides access to desktop environments using remote desktop protocols like VNC and RDP. A centralized server acts as a tunnel and proxy, allowing access to multiple desktops through a web browser. No browser plugins are needed, and no client software needs to be installed. The client requires nothing more than a web browser supporting HTML5 and AJAX. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1911092 - Build guacamole-server for EPEL 8 after Red Hat has reparied their mess https://bugzilla.redhat.com/show_bug.cgi?id=1911092 -------------------------------------------------------------------------------- ================================================================================ kirc-0.2.4-1.el8 (FEDORA-EPEL-2021-60f48e843f) Tiny IRC client written in POSIX C99 -------------------------------------------------------------------------------- Update Information: New upstream release ---- Initial package -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1919704 - Review Request: kirc - Tiny IRC client written in POSIX C99 https://bugzilla.redhat.com/show_bug.cgi?id=1919704 [ 2 ] Bug #1935559 - kirc-0.2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1935559 -------------------------------------------------------------------------------- ================================================================================ nova-agent-2.1.23-1.el8 (FEDORA-EPEL-2021-ff0eb8f137) Agent for setting up clean servers on Xen -------------------------------------------------------------------------------- Update Information: Latest upstream release. EL7 moved to depend on python3.6 to match upstream changes. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 4 2021 Sam P <survient(a)fedoraproject.org> - 2.1.23-1 - Updated to latest upstream release - Changed crypto depedency to match upstream - Removed now-irrelevant patch and added versionfix.patch See https://github.com/Rackspace-DOT/nova-agent/issues/100. * Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 2.1.21-6 - Rebuilt for updated systemd-rpm-macros See https://pagure.io/fesco/issue/2583. * Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.21-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.21-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 2.1.21-3 - Rebuilt for Python 3.9 * Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.21-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ oomd-0.4.0-6.el8 (FEDORA-EPEL-2021-17a93b09a2) Userspace Out-Of-Memory (OOM) killer -------------------------------------------------------------------------------- Update Information: Initial version for EPEL 8. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ python-SecretStorage-3.2.0-3.el8 (FEDORA-EPEL-2021-484fbbed1f) Python bindings to FreeDesktop.org Secret Service API -------------------------------------------------------------------------------- Update Information: This module provides a way for securely storing passwords and other secrets. It uses D-Bus Secret Service API that is supported by GNOME Keyring (>= 2.30) and KSecretsService. The main classes provided are secretstorage.Item, representing a secret item (that has a label, a secret and some attributes) and secretstorage.Collection, a place items are stored in. SecretStorage supports most of the functions provided by Secret Service, including creating and deleting items and collections, editing items, locking and unlocking collections (asynchronous unlocking is also supported). -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1869811 - Please build python-SecretStorage for EPEL 8 https://bugzilla.redhat.com/show_bug.cgi?id=1869811 -------------------------------------------------------------------------------- ================================================================================ python-django-2.2.19-1.el8 (FEDORA-EPEL-2021-6b1b1f9053) A high-level Python Web framework -------------------------------------------------------------------------------- Update Information: update to 2.2.19, resolve CVE-2021-23336 (rbhz#1931539) -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 5 2021 Matthias Runge <mrunge(a)redhat.com> - 2.2.19-1 - update to 2.2.19, resolve CVE-2021-23336 (rbhz#1931539) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1928904 - CVE-2021-23336 python: Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters https://bugzilla.redhat.com/show_bug.cgi?id=1928904 -------------------------------------------------------------------------------- ================================================================================ wsdd-0.6.4-1.el8 (FEDORA-EPEL-2021-8abc0fbadb) Web Services Dynamic Discovery host daemon -------------------------------------------------------------------------------- Update Information: Latest upstream release. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 4 2021 Sam P <survient(a)fedoraproject.org> - 0.6.4-1 - Updated to latest upstream release. * Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 0.6.3-2 - Rebuilt for updated systemd-rpm-macros See https://pagure.io/fesco/issue/2583. -------------------------------------------------------------------------------- ================================================================================ zabbix40-4.0.29-1.el8 (FEDORA-EPEL-2021-58f4d56777) Open-source monitoring solution for your IT infrastructure -------------------------------------------------------------------------------- Update Information: Update to 4.0.29 Release notes: * https://www.zabbix.com/rn/rn4.0.29 * https://www.zabbix.com/rn/rn4.0.28 Resolves CVE-2021-27927: CControllerAuthenticationUpdate controller lacks a CSRF protection mechanism -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 5 2021 Orion Poplawski <orion(a)nwra.com> - 4.0.29-1 - Update to 4.0.29 (CVE-2021-27927) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1934825 - CVE-2021-27927 zabbix: CControllerAuthenticationUpdate controller lacks a CSRF protection mechanism https://bugzilla.redhat.com/show_bug.cgi?id=1934825 --------------------------------------------------------------------------------

1 year, 2 months

1
0
0 / 0

Fedora EPEL 7 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 7 Security updates need testing: Age URL 10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-9ec8ceb857 ansible-2.9.18-1.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-548bb74e95 nagios-4.4.6-3.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-0859a9d61e x11vnc-0.9.13-12.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-9fbe0750f7 privoxy-3.0.32-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-580891d7f4 chromium-88.0.4324.182-2.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing golang-github-prometheus-node-exporter-1.1.1-1.el7 Details about builds: ================================================================================ golang-github-prometheus-node-exporter-1.1.1-1.el7 (FEDORA-EPEL-2021-5aca01d45e) Exporter for machine metrics -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- ChangeLog: --------------------------------------------------------------------------------

1 year, 2 months

1
0
0 / 0

Fedora EPEL 8 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 8 Security updates need testing: Age URL 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-71d1af6aca isync-1.4.1-1.el8 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-fedb6fa69d python-aiohttp-3.7.4-1.el8 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-6fed4b5ffb nagios-4.4.6-3.el8 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-fc2f1ff74c x11vnc-0.9.16-3.el8 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-a2e8a7475f chromium-88.0.4324.182-2.el8 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-94317ce911 suricata-5.0.6-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing castxml-0.4.3-1.el8 golang-github-prometheus-node-exporter-1.1.1-1.el8 packit-0.26.0-1.el8 perl-Coro-6.570-2.el8 Details about builds: ================================================================================ castxml-0.4.3-1.el8 (FEDORA-EPEL-2021-299508f2aa) C-family abstract syntax tree XML output tool -------------------------------------------------------------------------------- Update Information: CastXML 0.4.3 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 4 2021 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 0.4.3-1 - Update to version 0.4.3 * Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Fri Jan 22 2021 Tom Stellard <tstellar(a)redhat.com> - 0.4.2-2 - Rebuild for clang-11.1.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1934842 - castxml-0.4.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1934842 -------------------------------------------------------------------------------- ================================================================================ golang-github-prometheus-node-exporter-1.1.1-1.el8 (FEDORA-EPEL-2021-570cc34a70) Exporter for machine metrics -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ packit-0.26.0-1.el8 (FEDORA-EPEL-2021-98931b03ad) A tool for integrating upstream projects with Fedora operating system -------------------------------------------------------------------------------- Update Information: New upstream release: 0.26.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 4 2021 Packit Service <user-cont-team+packit-service(a)redhat.com> - 0.26.0-1 - Fix construction of the Koji tag for epel branches when running `packit create-update`. ([#1122](https://github.com/packit/packit/pull/1122)) - `create-update` now also shows a message about Bodhi requiring the password. ([#1127](https://github.com/packit/packit/pull/1127)) - `packit init` correctly picks up sources from CentOS and fetches specfile from CentOS dist-git. ([#1106](https://github.com/packit/packit/pull/1106)) - Fix translating of the target aliases by treating the highest pending version in Bodhi as `rawhide`. ([#1114](https://github.com/packit/packit/pull/1114)) - The format of Packit logs is unified for all log levels. ([#1119](https://github.com/packit/packit/pull/1119)) - There is a new configuration option `sources` which enables to define sources to override their URLs in specfile. You can read more about this in [our documentation](https://packit.dev/docs/configuration/#sources). ([#1131](https://github.com/packit/packit/pull/1131)) -------------------------------------------------------------------------------- ================================================================================ perl-Coro-6.570-2.el8 (FEDORA-EPEL-2021-2d9454fded) The only real threads in perl -------------------------------------------------------------------------------- Update Information: This updates brings a new perl-Coro package which provides an alternative threads implementation in a way of coroutines. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1890590 - EPEL8 Request: perl-Coro https://bugzilla.redhat.com/show_bug.cgi?id=1890590 --------------------------------------------------------------------------------

1 year, 2 months

1
0
0 / 0

[Fedocal] Reminder meeting : EPEL Steering Committee

by tdawson＠redhat.com

Dear all, You are kindly invited to the meeting: EPEL Steering Committee on 2021-03-05 from 17:00:00 to 18:00:00 US/Eastern At fedora-meeting(a)irc.freenode.net The meeting will be about: This is the weekly EPEL Steering Committee Meeting. A general agenda is the following: #meetingname EPEL #topic Intros #topic Old Business #topic EPEL-7 #topic EPEL-8 #topic Openfloor #endmeeting Source: https://apps.fedoraproject.org/calendar/meeting/9854/

1 year, 2 months

1
0
0 / 0

Fedora EPEL 7 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 7 Security updates need testing: Age URL 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-389d1fe8e6 libmysofa-1.2-4.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-4dda69dcf1 rubygem-rack-cors-1.0.6-1.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-9ec8ceb857 ansible-2.9.18-1.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-548bb74e95 nagios-4.4.6-3.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-0859a9d61e x11vnc-0.9.13-12.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-9fbe0750f7 privoxy-3.0.32-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-580891d7f4 chromium-88.0.4324.182-2.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing annobin-9.64-1.el7 fedpkg-1.40-5.el7 python-pyvmomi-7.0.1-2.el7 rttr-0.9.6-3.el7 w3m-0.5.3-50.git20210102.el7 youtube-dl-2021.03.03-1.el7 zork-1.0.3-1.el7 Details about builds: ================================================================================ annobin-9.64-1.el7 (FEDORA-EPEL-2021-1a3381de74) Annotate and examine compiled binary files -------------------------------------------------------------------------------- Update Information: Fixes several bugs in annocheck which were causing false FAIL results. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Nick Clifton <nickc(a)redhat.com> - 9.64-1 - Annocheck: Fix detection of special function names. (#1934189) - Annocheck: FAIL the deliberate use of -fno-stack-protector, but add some exceptions for glibc. (#1923439) - Annocheck: Add colour to some messages. Skip the deliberate use of -fno-stack-protector. (#1923439) - Annocheck: Fix some problems with tests for missing notes. - Add some GO tests to annocheck. * Wed Jan 20 2021 Nick Clifton <nickc(a)redhat.com> - 9.59-1 - Add a future fail for the presence of RPATH in the dynamic tags. - Add the ability to disable the warning message about -D_FORTIFY_SOURCE being missing. - Workaround for elflint problems with PPC compiled files. (#1880634) - Fix bogus AArch64 test failures. - Improved testing by annocheck. Add fixed format message mode. - Fix inconsistency reporting -fcf-protection and -fstack-clash-protection results. - Add support for -D_FORTIFY_SOURCE=3. - annocheck: When a binary is produced both by GAS and GCC, select GAS as the real producer. (#1906171) - annocheck: Improve test for LTO compiled binaries that do not have -Wall annotations. (#1906171) - annocheck: Mark a missining -D_FORTIFY_SOURCE as a FAIL. - annocheck: Fix notes analyzer to accept empty PPC64 notes. - gcc plugin: Tweak generation of end symbols for PPC64 when LTO is active. (#1898075) - gcc plugin: Add support for GCC 11's cl_vars array. -------------------------------------------------------------------------------- ================================================================================ fedpkg-1.40-5.el7 (FEDORA-EPEL-2021-569b23a203) Fedora utility for working with dist-git -------------------------------------------------------------------------------- Update Information: Default branches on different namespaces. After adopting _rawhide_ as the default branch recently, _master_ support is dropped with this patch. And also changes default branches when requesting a new repo for namespaces (currently request might not contain correct branch or it is additionally repaired at _fedora-scm-requests_): * _rpms_, _container_, _modules_ - branch _rawhide_ * _flatpaks_ - _stable_ * _tests_ - _main_ -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Ond��ej Nosek <onosek(a)redhat.com> - 1.40-5 - Patch: Default branches on different namespaces -------------------------------------------------------------------------------- ================================================================================ python-pyvmomi-7.0.1-2.el7 (FEDORA-EPEL-2021-3aa347a6ab) vSphere Python SDK -------------------------------------------------------------------------------- Update Information: Bring back python2 subpackage. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Dominik Mierzejewski <rpm(a)greysector.net> - 7.0.1-2 - [epel7] re-enable python2 and skip failing tests for now -------------------------------------------------------------------------------- ================================================================================ rttr-0.9.6-3.el7 (FEDORA-EPEL-2021-cd49ac60c2) Run Time Type Reflection -------------------------------------------------------------------------------- Update Information: Run Time Type Reflection An open source library, which adds reflection to C++. Used in Kdenlive -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ w3m-0.5.3-50.git20210102.el7 (FEDORA-EPEL-2021-9df4c45781) Pager with Web browsing abilities -------------------------------------------------------------------------------- Update Information: # w3m 0.5.3+git20210102 ## New features - Support links containing `div`s for HTML5 - Rudimentary support for HTML5 tags: `figure`, `figcaption`, and `section` - Enhance the behaviour of the `q` tag when m17n and Unicode are configured - Support for `file://hostname/...` URLs - New commands CURSOR_TOP, CURSOR_MIDDLE, and CURSOR_BOTTOM - New option `space_autocomplete`, disabled by default ## Bug fixes - Fix and improve broken Gopher support, enabled by default - Change the encoding of the Japanese document files to UTF-8 - Use the default ciphers without `SSL_CTX_set_cipher_list` for OpenSSL 1.1 - Fix compilation errors due to `sys_errlist` and `longjmp` - Define `X_DISPLAY_MISSING` when `configure --without-x` for Imlib2 - Avoid the `-l` option of the `man` command for `w3mman` - Fix some source formatting in the manual - Show keyboard shortcuts in a consistent order in help - Fix traditional Chinese translation - Drop obsolete w3m-doc -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Robert Scheck <robert(a)fedoraproject.org> - 0.5.3-50.git20210102 - Rebase to latest upstream gitrev 20210102 * Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.3-49.git20200502 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ youtube-dl-2021.03.03-1.el7 (FEDORA-EPEL-2021-e37b888afb) A small command-line program to download online videos -------------------------------------------------------------------------------- Update Information: Update to version 2021.03.03 ---- Update to version 2021.03.02 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 David Schw��rer <davidsch(a)fedoraproject.org> - 2021.03.03-1 - Update to 2021.03.03 * Tue Mar 2 2021 David Schw��rer <davidsch(a)fedoraproject.org> - 2021.03.02-1 - Update to 2021.03.02 * Sun Feb 21 2021 David Schw��rer <davidsch(a)fedoraproject.org> - 2021.02.22-1 - Update to 2021.02.22 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1933892 - youtube-dl-2021.03.02 is available https://bugzilla.redhat.com/show_bug.cgi?id=1933892 [ 2 ] Bug #1934372 - youtube-dl-2021.03.03 is available https://bugzilla.redhat.com/show_bug.cgi?id=1934372 -------------------------------------------------------------------------------- ================================================================================ zork-1.0.3-1.el7 (FEDORA-EPEL-2021-9bc37f11e5) Public Domain original DUNGEON game (Zork I) -------------------------------------------------------------------------------- Update Information: Fix reused integers from being optimized out. ---- Remove compiler optimization flag to workaround segfault while upstream change is assessed -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 2 2021 Justin W. Flory <jflory7(a)fedoraproject.org> - 1.0.3-1 - Fix reused integers from being optimized out. - Props to Jan Dr��gehoff (FAS: sentry) for sending this fix upstream to avoid carrying a Fedora-specific patch. - Remove grues. * Wed Feb 17 2021 Justin W. Flory <jflory7(a)fedoraproject.org> - 1.0.2-6 - Remove compiler optimization flag to workaround segfault while upstream change is assessed * Thu Jan 28 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1833823 - Zork crashes (after some commands) https://bugzilla.redhat.com/show_bug.cgi?id=1833823 --------------------------------------------------------------------------------

1 year, 2 months

1
0
0 / 0

Fedora EPEL 8 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 8 Security updates need testing: Age URL 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-bfa4482ae0 libmysofa-1.2-4.el8 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-71d1af6aca isync-1.4.1-1.el8 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-fedb6fa69d python-aiohttp-3.7.4-1.el8 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-6fed4b5ffb nagios-4.4.6-3.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-fc2f1ff74c x11vnc-0.9.16-3.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-a2e8a7475f chromium-88.0.4324.182-2.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing fedpkg-1.40-5.el8 gperftools-2.7-8.el8 icewm-2.2.1-1.el8 kirc-0.2.3-2.el8 perl-Devel-REPL-1.003028-17.el8 python-distroinfo-0.4.0-1.el8 python-ogr-0.22.0-1.el8 python-pgspecial-1.12.1-2.el8 rdopkg-1.4.0-1.el8 rttr-0.9.6-3.el8 rubygem-mixlib-log-3.0.9-1.el8 suricata-5.0.6-1.el8 w3m-0.5.3-50.git20210102.el8 xpra-4.1-2.el8 xscreensaver-5.45-5.el8 youtube-dl-2021.03.03-1.el8 zork-1.0.3-1.el8 Details about builds: ================================================================================ fedpkg-1.40-5.el8 (FEDORA-EPEL-2021-5c4f4a266f) Fedora utility for working with dist-git -------------------------------------------------------------------------------- Update Information: Default branches on different namespaces. After adopting _rawhide_ as the default branch recently, _master_ support is dropped with this patch. And also changes default branches when requesting a new repo for namespaces (currently request might not contain correct branch or it is additionally repaired at _fedora-scm-requests_): * _rpms_, _container_, _modules_ - branch _rawhide_ * _flatpaks_ - _stable_ * _tests_ - _main_ -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Ond��ej Nosek <onosek(a)redhat.com> - 1.40-5 - Patch: Default branches on different namespaces -------------------------------------------------------------------------------- ================================================================================ gperftools-2.7-8.el8 (FEDORA-EPEL-2021-0eda4297eb) Very fast malloc and performance analysis tools -------------------------------------------------------------------------------- Update Information: Downgrade to 2.7 with an epoch bump for epel8. This is a known-stable version for Ceph. Backport ppc64le and s390x fixes. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Yaakov Selkowitz <yselkowi(a)redhat.com> - 1:2.7-8 - Backport ppc64le and s390x fixes (#1933792) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1933792 - ceph crashes with gperftools 2.8 https://bugzilla.redhat.com/show_bug.cgi?id=1933792 -------------------------------------------------------------------------------- ================================================================================ icewm-2.2.1-1.el8 (FEDORA-EPEL-2021-73f256b040) Window manager designed for speed, usability, and consistency -------------------------------------------------------------------------------- Update Information: Update to 2.2.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 2.2.1-1 - build(update): 2.2.1 -------------------------------------------------------------------------------- ================================================================================ kirc-0.2.3-2.el8 (FEDORA-EPEL-2021-a9b6ad3bb6) Tiny IRC client written in POSIX C99 -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1919704 - Review Request: kirc - Tiny IRC client written in POSIX C99 https://bugzilla.redhat.com/show_bug.cgi?id=1919704 -------------------------------------------------------------------------------- ================================================================================ perl-Devel-REPL-1.003028-17.el8 (FEDORA-EPEL-2021-9131b38ccb) Modern perl interactive shell -------------------------------------------------------------------------------- Update Information: This update brings you a new perl-Devel-REPL package which provides amodern Perl interactive shell. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1890793 - EPEL8 Request: perl-Devel-REPL https://bugzilla.redhat.com/show_bug.cgi?id=1890793 -------------------------------------------------------------------------------- ================================================================================ python-distroinfo-0.4.0-1.el8 (FEDORA-EPEL-2021-ddbfb486a2) Parsing and querying distribution metadata stored in text/YAML files -------------------------------------------------------------------------------- Update Information: Updated to version 0.4.0. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Javier Pe��a <jpena(a)redhat.com> - 0.4.0-1 - Updated to version 0.4.0. * Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 0.3.2-3 - Rebuilt for Python 3.9 -------------------------------------------------------------------------------- ================================================================================ python-ogr-0.22.0-1.el8 (FEDORA-EPEL-2021-cca320be54) One API for multiple git forges -------------------------------------------------------------------------------- Update Information: new upstream release: 0.22.0 ---- New upstream release: 0.21.0 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Packit Service <user-cont-team+packit-service(a)redhat.com> - 0.22.0-1 - new upstream release: 0.22.0 * Fri Feb 19 2021 Packit Service <user-cont-team+packit-service(a)redhat.com> - 0.21.0-1 - Implemented `get_files` for Pagure projects (by [@mfocko](https://github.com/mfocko)). - Docs are now being autogenerated, present at https://packit.github.io/ogr (by [@mfocko](https://github.com/mfocko)). -------------------------------------------------------------------------------- ================================================================================ python-pgspecial-1.12.1-2.el8 (FEDORA-EPEL-2021-ac47ab2e6e) Meta-commands handler for Postgres Database -------------------------------------------------------------------------------- Update Information: Initial package for EPEL8 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ rdopkg-1.4.0-1.el8 (FEDORA-EPEL-2021-2e19524d30) RPM packaging automation tool CLI -------------------------------------------------------------------------------- Update Information: Update to 1.4.0 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Javier Pe��a <jpena(a)redhat.com> - 1.4.0-1 - Update to 1.4.0 * Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Thu Nov 12 2020 Joel Capitao <jcapitao(a)redhat.com> - 1.3.0-2 - Use git-core as BR instead of git -------------------------------------------------------------------------------- ================================================================================ rttr-0.9.6-3.el8 (FEDORA-EPEL-2021-65ac989782) Run Time Type Reflection -------------------------------------------------------------------------------- Update Information: Run Time Type Reflection An open source library, which adds reflection to C++. Used in Kdenlive -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ rubygem-mixlib-log-3.0.9-1.el8 (FEDORA-EPEL-2021-040d23010a) A gem that provides a simple mixin for log functionality -------------------------------------------------------------------------------- Update Information: Upgrade to 3.0.9 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1800015 - rubygem-mixlib-log: FTBFS in Fedora rawhide/f32 https://bugzilla.redhat.com/show_bug.cgi?id=1800015 [ 2 ] Bug #1920112 - Review Request: rubygem-mixlib-log - A gem that provides a simple mixin for log functionality https://bugzilla.redhat.com/show_bug.cgi?id=1920112 -------------------------------------------------------------------------------- ================================================================================ suricata-5.0.6-1.el8 (FEDORA-EPEL-2021-94317ce911) Intrusion Detection System -------------------------------------------------------------------------------- Update Information: Various performance, accuracy and stability issues have been fixed. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 2 2021 Steve Grubb <sgrubb(a)redhat.com> 5.0.6-1 - New security and bugfix release * Sat Feb 13 2021 Miro Hron��ok <mhroncok(a)redhat.com> - 5.0.5-2 - Enable hyperscan on EPEL 8+ -------------------------------------------------------------------------------- ================================================================================ w3m-0.5.3-50.git20210102.el8 (FEDORA-EPEL-2021-e46f4fc7ef) Pager with Web browsing abilities -------------------------------------------------------------------------------- Update Information: # w3m 0.5.3+git20210102 ## New features - Support links containing `div`s for HTML5 - Rudimentary support for HTML5 tags: `figure`, `figcaption`, and `section` - Enhance the behaviour of the `q` tag when m17n and Unicode are configured - Support for `file://hostname/...` URLs - New commands CURSOR_TOP, CURSOR_MIDDLE, and CURSOR_BOTTOM - New option `space_autocomplete`, disabled by default ## Bug fixes - Fix and improve broken Gopher support, enabled by default - Change the encoding of the Japanese document files to UTF-8 - Use the default ciphers without `SSL_CTX_set_cipher_list` for OpenSSL 1.1 - Fix compilation errors due to `sys_errlist` and `longjmp` - Define `X_DISPLAY_MISSING` when `configure --without-x` for Imlib2 - Avoid the `-l` option of the `man` command for `w3mman` - Fix some source formatting in the manual - Show keyboard shortcuts in a consistent order in help - Fix traditional Chinese translation - Drop obsolete w3m-doc -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Robert Scheck <robert(a)fedoraproject.org> - 0.5.3-50.git20210102 - Rebase to latest upstream gitrev 20210102 * Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.3-49.git20200502 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ xpra-4.1-2.el8 (FEDORA-EPEL-2021-f581b3e590) Remote display server for applications and desktops -------------------------------------------------------------------------------- Update Information: - Release 4.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 Antonio Trande <sagitter(a)fedoraproject.org> - 4.1-2 - Fix epel8 builds * Mon Mar 1 2021 Antonio Trande <sagitter(a)fedoraproject.org> - 4.1-1 - Release 4.1 * Thu Jan 28 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.0.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Thu Jan 14 2021 Antonio Trande <sagitter(a)fedoraproject.org> - 4.0.6-2 - Fix rhbz#1916026 * Thu Dec 31 2020 Antonio Trande <sagitter(a)fedoraproject.org> - 4.0.6-1 - Release 4.0.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1933500 - xpra-4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1933500 -------------------------------------------------------------------------------- ================================================================================ xscreensaver-5.45-5.el8 (FEDORA-EPEL-2021-3612d59635) X screen saver and locker -------------------------------------------------------------------------------- Update Information: - Fix EPEL 8 & EPEL 7 build - Remove appres from EL8 and EL7, because they don't have it. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ youtube-dl-2021.03.03-1.el8 (FEDORA-EPEL-2021-2f54e942f3) A small command-line program to download online videos -------------------------------------------------------------------------------- Update Information: Update to version 2021.03.03 ---- Update to version 2021.03.02 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 3 2021 David Schw��rer <davidsch(a)fedoraproject.org> - 2021.03.03-1 - Update to 2021.03.03 * Tue Mar 2 2021 David Schw��rer <davidsch(a)fedoraproject.org> - 2021.03.02-1 - Update to 2021.03.02 * Sun Feb 21 2021 David Schw��rer <davidsch(a)fedoraproject.org> - 2021.02.22-1 - Update to 2021.02.22 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1933892 - youtube-dl-2021.03.02 is available https://bugzilla.redhat.com/show_bug.cgi?id=1933892 [ 2 ] Bug #1934372 - youtube-dl-2021.03.03 is available https://bugzilla.redhat.com/show_bug.cgi?id=1934372 -------------------------------------------------------------------------------- ================================================================================ zork-1.0.3-1.el8 (FEDORA-EPEL-2021-fe3a31b543) Public Domain original DUNGEON game (Zork I) -------------------------------------------------------------------------------- Update Information: Fix reused integers from being optimized out. ---- Remove compiler optimization flag to workaround segfault while upstream change is assessed -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 2 2021 Justin W. Flory <jflory7(a)fedoraproject.org> - 1.0.3-1 - Fix reused integers from being optimized out. - Props to Jan Dr��gehoff (FAS: sentry) for sending this fix upstream to avoid carrying a Fedora-specific patch. - Remove grues. * Wed Feb 17 2021 Justin W. Flory <jflory7(a)fedoraproject.org> - 1.0.2-6 - Remove compiler optimization flag to workaround segfault while upstream change is assessed * Thu Jan 28 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1833823 - Zork crashes (after some commands) https://bugzilla.redhat.com/show_bug.cgi?id=1833823 --------------------------------------------------------------------------------

1 year, 2 months

1
0
0 / 0

Fedora EPEL 7 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 7 Security updates need testing: Age URL 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-389d1fe8e6 libmysofa-1.2-4.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-4dda69dcf1 rubygem-rack-cors-1.0.6-1.el7 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-9ec8ceb857 ansible-2.9.18-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-548bb74e95 nagios-4.4.6-3.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing chromium-88.0.4324.182-2.el7 distribution-gpg-keys-1.51-1.el7 knot-resolver-5.3.0-1.el7 lua-unbound-0.5-1.el7 mock-core-configs-34.2-1.el7 privoxy-3.0.32-1.el7 x11vnc-0.9.13-12.el7 Details about builds: ================================================================================ chromium-88.0.4324.182-2.el7 (FEDORA-EPEL-2021-580891d7f4) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information: Fix issue with swiftshader where symbols were not properly generated for the dlopened shared objects, preventing proper functionality. ---- Update to 88.0.4324.182. Fixes CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155 CVE-2021-21156 CVE-2021-21157 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 25 2021 Tom Callaway <spot(a)fedoraproject.org> - 88.0.4234.182-2 - fix swiftshader symbols in libEGL/libGLESv2 with gcc * Wed Feb 17 2021 Tom Callaway <spot(a)fedoraproject.org> - 88.0.4234.182-1 - update to 88.0.4234.182 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1929523 - CVE-2021-21149 chromium-browser: Stack overflow in Data Transfer https://bugzilla.redhat.com/show_bug.cgi?id=1929523 [ 2 ] Bug #1929524 - CVE-2021-21150 chromium-browser: Use after free in Downloads https://bugzilla.redhat.com/show_bug.cgi?id=1929524 [ 3 ] Bug #1929525 - CVE-2021-21151 chromium-browser: Use after free in Payments https://bugzilla.redhat.com/show_bug.cgi?id=1929525 [ 4 ] Bug #1929526 - CVE-2021-21152 chromium-browser: Heap buffer overflow in Media https://bugzilla.redhat.com/show_bug.cgi?id=1929526 [ 5 ] Bug #1929527 - CVE-2021-21153 chromium-browser: Stack overflow in GPU Process https://bugzilla.redhat.com/show_bug.cgi?id=1929527 [ 6 ] Bug #1929528 - CVE-2021-21154 chromium-browser: Heap buffer overflow in Tab Strip https://bugzilla.redhat.com/show_bug.cgi?id=1929528 [ 7 ] Bug #1929529 - CVE-2021-21155 chromium-browser: Heap buffer overflow in Tab Strip https://bugzilla.redhat.com/show_bug.cgi?id=1929529 [ 8 ] Bug #1929530 - CVE-2021-21156 chromium-browser: Heap buffer overflow in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1929530 [ 9 ] Bug #1929531 - CVE-2021-21157 chromium-browser: Use after free in Web Sockets https://bugzilla.redhat.com/show_bug.cgi?id=1929531 -------------------------------------------------------------------------------- ================================================================================ distribution-gpg-keys-1.51-1.el7 (FEDORA-EPEL-2021-7ec39b62bb) GPG keys of various Linux distributions -------------------------------------------------------------------------------- Update Information: mock-core-config: - configs: use Fedora N-1 gpg keys for ELN distribution-gpg- key: - update copr keys - Add missing CentOS SIG keys - add Fedora 36 key - matrix of opengpg availablity - add intel new gpg key -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Miroslav Such�� <msuchy(a)redhat.com> 1.51-1 - update copr keys - Add missing CentOS SIG keys - add Fedora 36 key - matrix of opengpg availablity - add intel new gpg key * Wed Feb 17 2021 Miroslav Such�� <msuchy(a)redhat.com> 1.50-1 - Add symlinks for F35 * Wed Feb 17 2021 Miroslav Such�� <msuchy(a)redhat.com> 1.49-1 - update copr keys - add mariadb key - document type61 - add Alma Linux -------------------------------------------------------------------------------- ================================================================================ knot-resolver-5.3.0-1.el7 (FEDORA-EPEL-2021-8ea279341d) Caching full DNS Resolver -------------------------------------------------------------------------------- Update Information: - update to upstream version 5.3.0 - add dnstap module subpackage -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Jakub Ru��i��ka <jakub.ruzicka(a)nic.cz> - 5.3.0-1 - update to upstream version 5.3.0 - add dnstap module subpackage - required Knot DNS >= 2.9 -------------------------------------------------------------------------------- ================================================================================ lua-unbound-0.5-1.el7 (FEDORA-EPEL-2021-74495023f5) Binding to libunbound for Lua -------------------------------------------------------------------------------- Update Information: Lua bindings for the Unbound APIs. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1914678 - Review Request: lua-unbound - Binding to libunbound for Lua https://bugzilla.redhat.com/show_bug.cgi?id=1914678 -------------------------------------------------------------------------------- ================================================================================ mock-core-configs-34.2-1.el7 (FEDORA-EPEL-2021-7ec39b62bb) Mock core config files basic chroots -------------------------------------------------------------------------------- Update Information: mock-core-config: - configs: use Fedora N-1 gpg keys for ELN distribution-gpg- key: - update copr keys - Add missing CentOS SIG keys - add Fedora 36 key - matrix of opengpg availablity - add intel new gpg key -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 22 2021 Pavel Raiskup <praiskup(a)redhat.com> 34.2-1 - configs: use Fedora N-1 gpg keys for ELN (praiskup(a)redhat.com) -------------------------------------------------------------------------------- ================================================================================ privoxy-3.0.32-1.el7 (FEDORA-EPEL-2021-9fbe0750f7) Privacy enhancing proxy -------------------------------------------------------------------------------- Update Information: 3.0.32 ---- 3.0.31 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 3.0.32-1 - 3.0.32 * Mon Feb 1 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 3.0.31-1 - 3.0.31 * Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.29-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Mon Nov 30 2020 Gwyn Ciesla <gwync(a)protonmail.com> - 3.0.29-1 - 3.0.29 * Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.28-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Thu Jan 30 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.28-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.28-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Fri Apr 19 2019 josef radinger <cheese(a)nosuchhost.net> - 3.0.28-1 - bump version * Sat Feb 2 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.26-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Fri Jan 25 2019 Petr Pisar <ppisar(a)redhat.com> - 3.0.26-8 - Rebuild against patched libpcreposix library (bug #1667614) * Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.26-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.26-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Aug 3 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.26-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.26-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Tue Mar 14 2017 Jon Ciesla <limburgher(a)gmail.com> - 3.0.26-3 - systemd cleanup * Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.26-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1928727 - CVE-2021-20209 privoxy: memory leak in the show-status CGI handler when no action files are configured [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1928727 [ 2 ] Bug #1928732 - CVE-2021-20210 privoxy: memory leak in the show-status CGI handler when no filter files are configured [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1928732 [ 3 ] Bug #1928735 - CVE-2021-20211 privoxy: memory leak when client tags are active [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1928735 [ 4 ] Bug #1928738 - CVE-2021-20212 privoxy: memory leak if multiple filters are executed and the last one is skipped due to a pcre error [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1928738 [ 5 ] Bug #1928741 - CVE-2021-20213 privoxy: dereference of a NULL-pointer that could result in a crash if accept-intercepted-requests was enabled [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1928741 [ 6 ] Bug #1928744 - CVE-2021-20214 privoxy: memory leak in the client-tags CGI handler when client tags are configured [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1928744 [ 7 ] Bug #1928748 - CVE-2021-20215 privoxy: memory leaks in the show-status CGI handler when memory allocations fail [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1928748 [ 8 ] Bug #1928751 - CVE-2020-35502 privoxy: memory leaks when a response is buffered [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1928751 [ 9 ] Bug #1933424 - privoxy-3.0.32 is available https://bugzilla.redhat.com/show_bug.cgi?id=1933424 -------------------------------------------------------------------------------- ================================================================================ x11vnc-0.9.13-12.el7 (FEDORA-EPEL-2021-0859a9d61e) VNC server for the current X11 session -------------------------------------------------------------------------------- Update Information: This release fixes an insecure permissins of shared memory semgentes created by an x11vnc server. Previously the segments were readable and writable for any local user. Now they are accessible only to the user who executed the x11vnc server. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Petr Pisar <ppisar(a)redhat.com> - 0.9.13-12 - Fix CVE-2020-29074 (insecure permissions on a shared memory) (bug #1933604) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1933602 - CVE-2020-29074 x11vnc: insecure permissions on shm https://bugzilla.redhat.com/show_bug.cgi?id=1933602 --------------------------------------------------------------------------------

1 year, 2 months

1
0
0 / 0

Fedora EPEL 8 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 8 Security updates need testing: Age URL 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-bfa4482ae0 libmysofa-1.2-4.el8 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-71d1af6aca isync-1.4.1-1.el8 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-fedb6fa69d python-aiohttp-3.7.4-1.el8 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-6fed4b5ffb nagios-4.4.6-3.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing asciinema-2.0.2-6.el8 chromium-88.0.4324.182-2.el8 distribution-gpg-keys-1.51-1.el8 knot-resolver-5.3.0-1.el8 lua-unbound-0.5-1.el8 mock-core-configs-34.2-1.el8 perl-Nmap-Parser-1.37-8.el8 privoxy-3.0.32-1.el8 python-contextlib2-0.6.0.post1-1.el8 python-django-contrib-comments-2.0.0-1.el8 qelectrotech-0.80-1.el8 x11vnc-0.9.16-3.el8 Details about builds: ================================================================================ asciinema-2.0.2-6.el8 (FEDORA-EPEL-2021-afea319b0b) Terminal session recorder -------------------------------------------------------------------------------- Update Information: Initial EPEL8 package. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1931749 - asciinema: build for epel8 https://bugzilla.redhat.com/show_bug.cgi?id=1931749 -------------------------------------------------------------------------------- ================================================================================ chromium-88.0.4324.182-2.el8 (FEDORA-EPEL-2021-a2e8a7475f) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information: Fix issue with swiftshader where symbols were not properly generated for the dlopened shared objects, preventing proper functionality. ---- Update to 88.0.4324.182. Fixes CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155 CVE-2021-21156 CVE-2021-21157 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 25 2021 Tom Callaway <spot(a)fedoraproject.org> - 88.0.4234.182-2 - fix swiftshader symbols in libEGL/libGLESv2 with gcc * Wed Feb 17 2021 Tom Callaway <spot(a)fedoraproject.org> - 88.0.4234.182-1 - update to 88.0.4234.182 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1929523 - CVE-2021-21149 chromium-browser: Stack overflow in Data Transfer https://bugzilla.redhat.com/show_bug.cgi?id=1929523 [ 2 ] Bug #1929524 - CVE-2021-21150 chromium-browser: Use after free in Downloads https://bugzilla.redhat.com/show_bug.cgi?id=1929524 [ 3 ] Bug #1929525 - CVE-2021-21151 chromium-browser: Use after free in Payments https://bugzilla.redhat.com/show_bug.cgi?id=1929525 [ 4 ] Bug #1929526 - CVE-2021-21152 chromium-browser: Heap buffer overflow in Media https://bugzilla.redhat.com/show_bug.cgi?id=1929526 [ 5 ] Bug #1929527 - CVE-2021-21153 chromium-browser: Stack overflow in GPU Process https://bugzilla.redhat.com/show_bug.cgi?id=1929527 [ 6 ] Bug #1929528 - CVE-2021-21154 chromium-browser: Heap buffer overflow in Tab Strip https://bugzilla.redhat.com/show_bug.cgi?id=1929528 [ 7 ] Bug #1929529 - CVE-2021-21155 chromium-browser: Heap buffer overflow in Tab Strip https://bugzilla.redhat.com/show_bug.cgi?id=1929529 [ 8 ] Bug #1929530 - CVE-2021-21156 chromium-browser: Heap buffer overflow in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1929530 [ 9 ] Bug #1929531 - CVE-2021-21157 chromium-browser: Use after free in Web Sockets https://bugzilla.redhat.com/show_bug.cgi?id=1929531 -------------------------------------------------------------------------------- ================================================================================ distribution-gpg-keys-1.51-1.el8 (FEDORA-EPEL-2021-664e7d3d7b) GPG keys of various Linux distributions -------------------------------------------------------------------------------- Update Information: mock-core-config: - configs: use Fedora N-1 gpg keys for ELN distribution-gpg- key: - update copr keys - Add missing CentOS SIG keys - add Fedora 36 key - matrix of opengpg availablity - add intel new gpg key -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Miroslav Such�� <msuchy(a)redhat.com> 1.51-1 - update copr keys - Add missing CentOS SIG keys - add Fedora 36 key - matrix of opengpg availablity - add intel new gpg key * Wed Feb 17 2021 Miroslav Such�� <msuchy(a)redhat.com> 1.50-1 - Add symlinks for F35 * Wed Feb 17 2021 Miroslav Such�� <msuchy(a)redhat.com> 1.49-1 - update copr keys - add mariadb key - document type61 - add Alma Linux -------------------------------------------------------------------------------- ================================================================================ knot-resolver-5.3.0-1.el8 (FEDORA-EPEL-2021-71cc757147) Caching full DNS Resolver -------------------------------------------------------------------------------- Update Information: - update to upstream version 5.3.0 - add dnstap module subpackage -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Jakub Ru��i��ka <jakub.ruzicka(a)nic.cz> - 5.3.0-1 - update to upstream version 5.3.0 - add dnstap module subpackage - required Knot DNS >= 2.9 * Fri Dec 18 2020 Jakub Ru��i��ka <jakub.ruzicka(a)nic.cz> - 5.2.1-1 - update to upstream version 5.2.1 * Wed Nov 11 2020 Jakub Ru��i��ka <jakub.ruzicka(a)nic.cz> 5.2.0-1 - update to upstream version 5.2.0 - sync packaging from upstream -------------------------------------------------------------------------------- ================================================================================ lua-unbound-0.5-1.el8 (FEDORA-EPEL-2021-4245c40478) Binding to libunbound for Lua -------------------------------------------------------------------------------- Update Information: Lua bindings for the Unbound APIs. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1914678 - Review Request: lua-unbound - Binding to libunbound for Lua https://bugzilla.redhat.com/show_bug.cgi?id=1914678 -------------------------------------------------------------------------------- ================================================================================ mock-core-configs-34.2-1.el8 (FEDORA-EPEL-2021-664e7d3d7b) Mock core config files basic chroots -------------------------------------------------------------------------------- Update Information: mock-core-config: - configs: use Fedora N-1 gpg keys for ELN distribution-gpg- key: - update copr keys - Add missing CentOS SIG keys - add Fedora 36 key - matrix of opengpg availablity - add intel new gpg key -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 22 2021 Pavel Raiskup <praiskup(a)redhat.com> 34.2-1 - configs: use Fedora N-1 gpg keys for ELN (praiskup(a)redhat.com) -------------------------------------------------------------------------------- ================================================================================ perl-Nmap-Parser-1.37-8.el8 (FEDORA-EPEL-2021-69e189b60c) Parse nmap scan data with perl -------------------------------------------------------------------------------- Update Information: Added new package to EPEL 8 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1932429 - Please add perl-Nmap-Parser to epel8 https://bugzilla.redhat.com/show_bug.cgi?id=1932429 -------------------------------------------------------------------------------- ================================================================================ privoxy-3.0.32-1.el8 (FEDORA-EPEL-2021-1073219045) Privacy enhancing proxy -------------------------------------------------------------------------------- Update Information: 3.0.32 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 3.0.32-1 - 3.0.32 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1933424 - privoxy-3.0.32 is available https://bugzilla.redhat.com/show_bug.cgi?id=1933424 -------------------------------------------------------------------------------- ================================================================================ python-contextlib2-0.6.0.post1-1.el8 (FEDORA-EPEL-2021-65e082736e) Backports and enhancements for the contextlib module -------------------------------------------------------------------------------- Update Information: Initial EPEL8 build -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1754177 - python-contextlib2-0.6.0.post1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1754177 [ 2 ] Bug #1815843 - python-contextlib2: please, provide epel8 update https://bugzilla.redhat.com/show_bug.cgi?id=1815843 -------------------------------------------------------------------------------- ================================================================================ python-django-contrib-comments-2.0.0-1.el8 (FEDORA-EPEL-2021-98f27503ac) The code formerly known as django.contrib.comments -------------------------------------------------------------------------------- Update Information: First epel8 build based on master. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ qelectrotech-0.80-1.el8 (FEDORA-EPEL-2021-7c97f4c8b4) An electric diagrams editor -------------------------------------------------------------------------------- Update Information: QElectroTech is a Qt application to design electric diagrams. It uses XML files for elements and diagrams, and includes both a diagram editor and an element editor. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ x11vnc-0.9.16-3.el8 (FEDORA-EPEL-2021-fc2f1ff74c) VNC server for the current X11 session -------------------------------------------------------------------------------- Update Information: This release fixes an insecure permissins of shared memory semgentes created by an x11vnc server. Previously the segments were readable and writable for any local user. Now they are accessible only to the user who executed the x11vnc server. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 1 2021 Petr Pisar <ppisar(a)redhat.com> - 0.9.16-3 - Fix CVE-2020-29074 (insecure permissions on a shared memory) (bug #1933604) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1933602 - CVE-2020-29074 x11vnc: insecure permissions on shm https://bugzilla.redhat.com/show_bug.cgi?id=1933602 --------------------------------------------------------------------------------

1 year, 2 months

1
0
0 / 0

What to do with openjpeg2

by Richard Shaw

I did not get a response on fedora-devel or here so I guess I should just retire them in EPEL. To sum up, openjpeg2 is now provided by RHEL one way or another so the Fedora EPEL package needs to go away. I'll wait a couple more days for input before I retire the epel7 and epel8 branches. Thanks, Richard

1 year, 2 months

1
0
0 / 0

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

epel-devel March 2021