On Thu, 3 Dec 2020, Michel Alexandre Salim wrote:
>> Apart from the usual package-not-available story (which I want to fix
>> as part of my work bringing up the EPEL Packagers SIG), my current
>> snag is that python-tox-current-env uses %generate_buildrequires which
>> does not work on CentOS 8:
>>
>> CentOS 8 is still on RPM 4.14:
>> <mock-chroot> sh-4.4# rpm -q rpm
>> rpm-4.14.2-37.el8.x86_64
>>
>> I'll put up a patch to hardcode dependencies for non-Fedora releases,
>> though that sorts of defeat the purpose of dynamic build
>> requirements.
>> Then again, this is only needed for EPEL8, since EPEL9 will have a
>> new enough RPM.
>>
> Given that %generate_buildrequires is the selling point of pyproject-
> rpm-macros, I'm guessing a better way forward for EPEL8 would be to not
> require it on EPEL8 since there's no way it would work, since RH won't
> update RPM?
>
> https://src.fedoraproject.org/rpms/pyproject-rpm-macros
Is %generate_buildrequires suppose to work for packages
which do not used python ?
From the name I would expect it to, but reading that doc makes me
think %generate_buildrequires *is* python specific.
If so, the name is misleading.
(I am also confused/suspicious of the point of a macro to automate
build requires, except as a step on a path to somewhere else.
If build requirements need to be stated explicitly,
then automating their statement is a good way of hiding an issue
that needs to be reviewed whenever changes are made.
)
--
Andrew C. Aitchison Kendal, UK
andrew(a)aitchison.me.uk
The following Fedora EPEL 8 Security updates need testing:
Age URL
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-2d9ad80d5c java-latest-openjdk-18.0.1.0.10-1.rolling.el8
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-b991c4d1df needrestart-3.6-1.el8
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-81ce78cd62 rubygem-git-1.11.0-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
ansible-packaging-1-5.el8
digikam-7.3.0-4.el8
epel-rpm-macros-8-29
fedpkg-1.42-2.el8
nanomsg-1.1.5-6.el8
Details about builds:
================================================================================
ansible-packaging-1-5.el8 (FEDORA-EPEL-2022-bba786da2f)
RPM packaging macros and generators for Ansible collections
--------------------------------------------------------------------------------
Update Information:
Split macros required for building SRPMs into a separate ansible-srpm-macros
package, and require it from epel-rpm-macros to ensure installation in the
buildroot.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 17 2022 Maxwell G <gotmax(a)e.email> - 1-5
- Split macros required for building SRPMs into a separate package.
--------------------------------------------------------------------------------
================================================================================
digikam-7.3.0-4.el8 (FEDORA-EPEL-2022-daecaae746)
A digital camera accessing & photo management application
--------------------------------------------------------------------------------
Update Information:
Update to newer version
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
epel-rpm-macros-8-29 (FEDORA-EPEL-2022-bba786da2f)
Extra Packages for Enterprise Linux RPM macros
--------------------------------------------------------------------------------
Update Information:
Split macros required for building SRPMs into a separate ansible-srpm-macros
package, and require it from epel-rpm-macros to ensure installation in the
buildroot.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 17 2022 Maxwell G <gotmax(a)e.email> - 8-29
- Add `Requires: ansible-srpm-macros`
- Backport @churchyard's packaging nitpicks from epel9
--------------------------------------------------------------------------------
================================================================================
fedpkg-1.42-2.el8 (FEDORA-EPEL-2022-85f51f8f71)
Fedora utility for working with dist-git
--------------------------------------------------------------------------------
Update Information:
- Patch: fedpkg update --suggest-logout option added - Patch: Add compatibility
for Bodhi >= 6.0.0 - fedora-packager rpm dependency is "Recommends"
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 26 2022 Ond��ej Nosek <onosek(a)redhat.com> - 1.42-2
- Patch: fedpkg update --suggest-logout option added
- Patch: Add compatibility for Bodhi >= 6.0.0
- fedora-packager rpm dependency is "Recommends"
--------------------------------------------------------------------------------
================================================================================
nanomsg-1.1.5-6.el8 (FEDORA-EPEL-2022-0633fb2438)
Socket library that provides several common communication patterns
--------------------------------------------------------------------------------
Update Information:
Initial EPEL 8 build of `nanomsg`.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 24 2020 Scott K Logan <logans(a)cottsay.net> - 1.1.5-6
- Fix FTBFS (rhbz#1864185)
- Use EPEL 7 compatible CMake macros
- Add an rpmlintrc to suppress spelling suggestions
* Sat Aug 1 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.5-5
- Second attempt - Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.5-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Mon Feb 18 2019 Troy Dawson <tdawson(a)redhat.com> - 1.1.5-1
- Initial package
--------------------------------------------------------------------------------
The following Fedora EPEL 8 Security updates need testing:
Age URL
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-2d9ad80d5c java-latest-openjdk-18.0.1.0.10-1.rolling.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
castxml-0.4.5-2.el8
lagrange-1.13.5-1.el8
needrestart-3.6-1.el8
remmina-1.4.26-2.el8
rubygem-git-1.11.0-1.el8
rubygem-rchardet-1.8.0-4.el8
Details about builds:
================================================================================
castxml-0.4.5-2.el8 (FEDORA-EPEL-2022-0ee447448c)
C-family abstract syntax tree XML output tool
--------------------------------------------------------------------------------
Update Information:
Rebuild for llvm/clang 13.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 20 2022 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 0.4.5-2
- Rebuild for llvm/clang 13 (EPEL 8)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2087619 - castxml package installation is failing with epel-release-8-13
https://bugzilla.redhat.com/show_bug.cgi?id=2087619
--------------------------------------------------------------------------------
================================================================================
lagrange-1.13.5-1.el8 (FEDORA-EPEL-2022-fd893610ad)
A Beautiful Gemini Client
--------------------------------------------------------------------------------
Update Information:
## 1.13.5 - Parent navigation assumes directory URL is equivalent to index page
URL (e.g., "/path/" == "/path/index.gmi"): this now only applies to Gemini URLs,
and checks for "index.gemini", too, as per Gemini Best Practices. - Fixed crash
when determining the name of a ZIP file from a URL. - Fixed misparsing of URL to
form the name of a downloaded file (%23 decoded too early). ## 1.13.4 -
Spartan: Fixed opening URLs in other apps via operating system handlers. -
Updated language strings.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2022 Michel Alexandre Salim <salimma(a)fedoraproject.org> 1.13.5-1
- Update to 1.13.5
* Mon May 9 2022 Michel Alexandre Salim <salimma(a)fedoraproject.org> 1.13.3-2
- Build with optional mp3 and webp support
* Mon May 9 2022 Michel Alexandre Salim <salimma(a)fedoraproject.org> 1.13.3-1
- Update to 1.13.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2084254 - lagrange-1.13.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2084254
--------------------------------------------------------------------------------
================================================================================
needrestart-3.6-1.el8 (FEDORA-EPEL-2022-b991c4d1df)
Restart daemons after library updates
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2022-30688
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2022 Marc Dequ��nes (Duck) <duck(a)redhat.com> - 3.6-1
- NUR
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.5-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Thu Sep 23 2021 Miro Hron��ok <mhroncok(a)redhat.com> - 3.5-8
- Don't own /usr/lib/python3.X/site-packages
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.5-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 3.5-6
- Rebuilt for Python 3.10
* Tue Mar 16 2021 Marc Dequ��nes (Duck) <duck(a)redhat.com> - 3.5-5
- move 'iucode-tool' to Recommends as it is not available in all
architectures
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.5-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2087660 - CVE-2022-30688 needrestart: local privilege escalation [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=2087660
[ 2 ] Bug #2087661 - CVE-2022-30688 needrestart: local privilege escalation [epel-8]
https://bugzilla.redhat.com/show_bug.cgi?id=2087661
--------------------------------------------------------------------------------
================================================================================
remmina-1.4.26-2.el8 (FEDORA-EPEL-2022-c444abc428)
Remote Desktop Client
--------------------------------------------------------------------------------
Update Information:
Various minor changes. - Add some missing BuildRequires for calrity. -
Correctly disable spice plugin on EL9. ---- * Wed May 18 2022 Phil Wyett
<philip.wyett(a)kathenas.org> - 1.4.26-1 - New upstream version 1.4.26. - New
python plugin enabled. - Drop patches as no longer needed. - EL9 - Disable
avahi-ui and avahi-ui-gtk support. - Disable libappindicator support. -
Disable spice plugin. - Disable x2go plugin.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2022 Phil Wyett <philip.wyett(a)kathenas.org> - 1.4.26-2
- Add some missing BuildRequires for calrity.
- Correctly disable spice plugin on EL9.
* Wed May 18 2022 Phil Wyett <philip.wyett(a)kathenas.org> - 1.4.26-1
- New upstream version 1.4.26.
- New python plugin enabled.
- Drop patches as no longer needed.
- EL9
- Disable avahi-ui and avahi-ui-gtk support.
- Disable libappindicator support.
- Disable spice plugin.
- Disable x2go plugin.
--------------------------------------------------------------------------------
================================================================================
rubygem-git-1.11.0-1.el8 (FEDORA-EPEL-2022-81ce78cd62)
Ruby/Git is a Ruby library that can be used to create, read and manipulate Git repositories by wrapping system calls to the git binary
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2022-25648
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 13 2022 Steve Traylen <steve.traylen(a)cern.ch> - 1.11.0-1
- Up to 1.11.0. CVE-2022-25648
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2076843 - CVE-2022-25648 ruby-git: package vulnerable to Command Injection via git argument injection
https://bugzilla.redhat.com/show_bug.cgi?id=2076843
--------------------------------------------------------------------------------
================================================================================
rubygem-rchardet-1.8.0-4.el8 (FEDORA-EPEL-2022-7054ab4eed)
Character encoding auto-detection in Ruby
--------------------------------------------------------------------------------
Update Information:
First EPEL package
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Tue Sep 1 2020 Steve Traylen <steve(a)traylen.net> - 1.8.0-1
- Initial package
--------------------------------------------------------------------------------
rebuilt it asap
ImageMagick soname bump was approved [0] in EPEL Steering Committee
meeting. and I'm continuing with the process for incompatible upgrades
from step 4 forward [1]. and 81 security bugs will be fixed
[0]
https://meetbot.fedoraproject.org/teams/epel/epel.2022-04-13-20.00.html
[1]
https://docs.fedoraproject.org/en-US/epel/epel-policy-incompatible-upgrades…
On Fri, 2022-05-20 at 14:30 +0000, Marcel Evenson wrote:
> Just a note that this ImageMagick update broke yum on all a tonne of
> servers that have EPEL enabled :
>
> Problem:
> https://talk.plesk.com/threads/problem-package-plesk-php74-imagick-3-7-0-0r…
>
> [root@busy-gates ~]# yum update
> Last metadata expiration check: 0:07:35 ago on Fri 20 May 2022
> 06:49:26 AM MDT.
> Error:
> Problem: package plesk-php73-imagick-3.6.0-
> 1centos.8.211118.1928.x86_64 requires libMagickCore-
> 6.Q16.so.6()(64bit), but none of the providers can be installed
> - package plesk-php73-imagick-3.6.0-1centos.8.211118.1928.x86_64
> requires libMagickWand-6.Q16.so.6()(64bit), but none of the providers
> can be installed
> - cannot install both ImageMagick-libs-6.9.12.48-2.el8.x86_64 and
> ImageMagick-libs-6.9.10.86-1.el8.x86_64
> - cannot install both ImageMagick-libs-6.9.10.86-1.el8.x86_64 and
> ImageMagick-libs-6.9.12.48-2.el8.x86_64
> - cannot install the best update candidate for package plesk-php73-
> imagick-3.6.0-1centos.8.211118.1928.x86_64
> - cannot install the best update candidate for package ImageMagick-
> libs-6.9.10.86-1.el8.x86_64
> (try to add '--allowerasing' to command line to replace conflicting
> packages or '--skip-broken' to skip uninstallable packages or '--
> nobest' to use not only best candidate packages)
>
> Does EPEL normally do major package updates like this mid cycle? I
> thought that EPEL packages only got major upgrades when switching
> from doing a dist OS upgrade?
>
> --
> Best regards,
> Marcel Evenson
> Danami - Software for the Cloud
> www.danami.com
>
--
Sérgio M. B.