epel-devel

epel-devel@lists.fedoraproject.org

4 participants
16319 discussions

uv 0.10 coming to F43/F42 and to EPEL10 leading branch
by Ben Beasley 10 Feb '26

10 Feb '26

In approximately one week, I plan to update the uv package to version 0.10.x in stable branches F43 and F42. This includes some relatively minor breaking changes[1]; most users will not need to change anything. This update is permitted under an existing permanent exception to the Updates Policy in Fedora[3][4]. Version 0.10.0 of uv is already in Rawhide and F44. At around the same time, I will update uv to 0.10.x in the EPEL10 leading branch (currently EPEL10.2), as allowed by a corresponding exception for EPEL[5], limited to leading branches and to versions through 1.0. No further approvals are needed for this update, but I do plan to follow the usual announcement and testing procedure for incompatible upgrades in EPEL[6]. At this time, I have no plans to upgrade the python-uv-build package in F42/F43 past 0.9.30. While uv is primarily used for developing Python software, the packaged build backend python-uv-build is primarily used to build other packages in Fedora, and the arguments for updating it across SemVer boundaries without a specific compelling reason are much weaker. [1] https://github.com/astral-sh/uv/releases/tag/0.10.0 [2] https://astral.sh/blog/ruff-v0.15.0 [3] https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/#_other_packages [4] https://pagure.io/fesco/issue/3262 [5] https://pagure.io/epel/issue/317 [6] https://docs.fedoraproject.org/en-US/epel/epel-policy-incompatible-upgrades…

1 1

Fedora EPEL 10.2 updates-testing report
by updates＠fedoraproject.org 09 Feb '26

09 Feb '26

The following Fedora EPEL 10.2 Security updates need testing: Age URL 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-dea517c7d2 helix-25.07.1-7.el10_2 maturin-1.9.6-3.el10_2 ntpd-rs-1.6.2-3.el10_2 rust-ambient-id-0.0.8-1.el10_2 rust-bat-0.24.0-13.el10_2 rust-below-0.9.0-6.el10_2 rust-bytes-1.11.1-1.el10_2 rust-cargo-c-0.10.18-3.el10_2 rust-git2-0.20.4-1.el10_2 rust-jsonwebtoken-9.3.1-4.el10_2 rust-num-conv-0.2.0-1.el10_2 rust-onefetch-2.26.1-7.el10_2 rust-rbw-1.13.2-5.el10_2 rust-routinator-0.14.2-4.el10_2 rust-speakersafetyd-1.0.2-6.el10_2 rust-time-0.3.47-1.el10_2 rust-time-core-0.1.8-1.el10_2 rust-time-macros-0.2.27-1.el10_2 rust-tokei-14.0.0-4.el10_2 rust-weezl-0.1.12-3.el10_2 uv-0.9.30-2.el10_2 The following builds have been pushed to Fedora EPEL 10.2 updates-testing desktop-backgrounds-44.0.0-2.el10_2 dist-git-client-1.3-1.el10_2 f44-backgrounds-44.0.0-1.el10_2 mbpoll-1.5.2-1.el10_2 python-astropy-iers-data-0.2026.2.9.0.50.33-1.el10_2 python-b2sdk-1.21.0-13.el10_2 python-ogr-0.61.0-1.el10_2 rust-ascii-canvas-4.0.0-1.el10_2 rust-lalrpop-0.22.2-1.el10_2 rust-lalrpop-util-0.22.2-1.el10_2 rust-memchr-2.8.0-1.el10_2 rust-petgraph0.7-0.7.1-1.el10_2 rust-regex-automata-0.4.14-1.el10_2 rust-sequoia-openpgp-2.2.0-1.el10_2 rust-x509-parser-0.18.1-1.el10_2 Details about builds: ================================================================================ desktop-backgrounds-44.0.0-2.el10_2 (FEDORA-EPEL-2026-02f6be1b07) Desktop backgrounds -------------------------------------------------------------------------------- Update Information: Enable F44 theme -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Luya Tshimbalanga <luya(a)fedoraproject.org> - 44.0.0-2 - Switch Fedora release name to f44 (rhbz#2437526) * Mon Feb 9 2026 Luya Tshimbalanga <luya(a)fedoraproject.org> - 44.0.0-1 - Enable F44 theme -------------------------------------------------------------------------------- ================================================================================ dist-git-client-1.3-1.el10_2 (FEDORA-EPEL-2026-85e00e4736) Get sources for RPM builds from DistGit repositories -------------------------------------------------------------------------------- Update Information: dist-git-client: ask dist-git httpd server to send response as-is -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Pavel Raiskup <pavel(a)raiskup.cz> 1.3-1 - dist-git-client: ask dist-git httpd server to send response as-is -------------------------------------------------------------------------------- ================================================================================ f44-backgrounds-44.0.0-1.el10_2 (FEDORA-EPEL-2026-02f6be1b07) Fedora 44 default desktop background -------------------------------------------------------------------------------- Update Information: Enable F44 theme -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Luya Tshimbalanga <luya(a)fedoraproject.org> - 44.0.0-1 - Initial import -------------------------------------------------------------------------------- ================================================================================ mbpoll-1.5.2-1.el10_2 (FEDORA-EPEL-2026-a5f8d62f0a) Command line utility to communicate with ModBus slave (RTU or TCP) -------------------------------------------------------------------------------- Update Information: mbpoll is a command line utility to communicate with ModBus slave (RTU or TCP) -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Nicolas De Amicis <deamicis(a)bluewin.ch> - 1.5.2-1 - Initial import (fedora#2435517). -------------------------------------------------------------------------------- ================================================================================ python-astropy-iers-data-0.2026.2.9.0.50.33-1.el10_2 (FEDORA-EPEL-2026-a3157b76c3) IERS Earth Rotation and Leap Second tables for the astropy core package -------------------------------------------------------------------------------- Update Information: Automatic update for python-astropy-iers-data-0.2026.2.9.0.50.33-1.el10_2. Changelog for python-astropy-iers-data * Mon Feb 09 2026 Packit <hello(a)packit.dev> - 0.2026.2.9.0.50.33-1 - Update to 0.2026.2.9.0.50.33 upstream release - Resolves: rhbz#2435860 * Mon Jan 26 2026 Packit <hello(a)packit.dev> - 0.2026.1.26.0.43.56-1 - Update to 0.2026.1.26.0.43.56 upstream release - Resolves: rhbz#2432727 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Packit <hello(a)packit.dev> - 0.2026.2.9.0.50.33-1 - Update to 0.2026.2.9.0.50.33 upstream release - Resolves: rhbz#2435860 * Mon Jan 26 2026 Packit <hello(a)packit.dev> - 0.2026.1.26.0.43.56-1 - Update to 0.2026.1.26.0.43.56 upstream release - Resolves: rhbz#2432727 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2432727 - python-astropy-iers-data-0.2026.1.26.0.43.56 is available https://bugzilla.redhat.com/show_bug.cgi?id=2432727 [ 2 ] Bug #2435860 - python-astropy-iers-data-0.2026.2.9.0.50.33 is available https://bugzilla.redhat.com/show_bug.cgi?id=2435860 -------------------------------------------------------------------------------- ================================================================================ python-b2sdk-1.21.0-13.el10_2 (FEDORA-EPEL-2026-32853e2c9d) Backblaze B2 SDK -------------------------------------------------------------------------------- Update Information: Initial EL-10 build -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.21.0-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Sep 19 2025 Python Maint <python-maint(a)redhat.com> - 1.21.0-12 - Rebuilt for Python 3.14.0rc3 bytecode * Fri Aug 15 2025 Python Maint <python-maint(a)redhat.com> - 1.21.0-11 - Rebuilt for Python 3.14.0rc2 bytecode * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.21.0-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Mon Jun 2 2025 Python Maint <python-maint(a)redhat.com> - 1.21.0-9 - Rebuilt for Python 3.14 * Sat Jan 18 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.21.0-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Fri Jul 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.21.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Fri Jun 7 2024 Python Maint <python-maint(a)redhat.com> - 1.21.0-6 - Rebuilt for Python 3.13 * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.21.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.21.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2430512 - Please branch and build python-b2sdk for epel10 https://bugzilla.redhat.com/show_bug.cgi?id=2430512 -------------------------------------------------------------------------------- ================================================================================ python-ogr-0.61.0-1.el10_2 (FEDORA-EPEL-2026-754dd4315d) One API for multiple git forges -------------------------------------------------------------------------------- Update Information: Automatic update for python-ogr-0.61.0-1.el10_2. Changelog for python-ogr * Mon Feb 09 2026 Packit <hello(a)packit.dev> - 0.61.0-1 - Ogr now supports Forgejo issues, comments and comment reactions. (#959) * Fri Jan 30 2026 Packit <hello(a)packit.dev> - 0.60.1-1 - The method `get_rate_limit_remaining()` now also supports repository-specific checks for GitHub. (#972) - Resolves: rhbz#2435481 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Packit <hello(a)packit.dev> - 0.61.0-1 - Ogr now supports Forgejo issues, comments and comment reactions. (#959) * Fri Jan 30 2026 Packit <hello(a)packit.dev> - 0.60.1-1 - The method `get_rate_limit_remaining()` now also supports repository-specific checks for GitHub. (#972) - Resolves: rhbz#2435481 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435481 - python-ogr-0.60.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2435481 -------------------------------------------------------------------------------- ================================================================================ rust-ascii-canvas-4.0.0-1.el10_2 (FEDORA-EPEL-2026-48a97f3fc5) Simple canvas for drawing lines and styled text and emitting to the terminal -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 4.0.0-1 - Update to version 4.0.0; Fixes RHBZ#2315717 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.0-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-lalrpop-0.22.2-1.el10_2 (FEDORA-EPEL-2026-48a97f3fc5) Convenient LR(1) parser generator -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.22.2-1 - Update to version 0.22.2; Fixes RHBZ#2308055 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-lalrpop-util-0.22.2-1.el10_2 (FEDORA-EPEL-2026-48a97f3fc5) Runtime library for parsers generated by LALRPOP -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.22.2-1 - Update to version 0.22.2; Fixes RHBZ#2308056 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-memchr-2.8.0-1.el10_2 (FEDORA-EPEL-2026-d1f10a0b86) Extremely fast 1, 2 or 3 byte search and single substring search -------------------------------------------------------------------------------- Update Information: Update to version 2.8.0. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.8.0-1 - Update to version 2.8.0; Fixes RHBZ#2437446 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.7.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-petgraph0.7-0.7.1-1.el10_2 (FEDORA-EPEL-2026-48a97f3fc5) Graph data structure library -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. -------------------------------------------------------------------------------- ChangeLog: * Wed May 14 2025 Fabio Valentini <decathorpe(a)gmail.com> - 0.7.1-1 - Initial import (petgraph 0.7 compat package) -------------------------------------------------------------------------------- ================================================================================ rust-regex-automata-0.4.14-1.el10_2 (FEDORA-EPEL-2026-b8958d0198) Automata construction and matching using regular expressions -------------------------------------------------------------------------------- Update Information: Update to version 0.4.14. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.4.14-1 - Update to version 0.4.14; Fixes RHBZ#2436329 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.13-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-sequoia-openpgp-2.2.0-1.el10_2 (FEDORA-EPEL-2026-48a97f3fc5) OpenPGP data types and associated machinery -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.2.0-1 - Update to version 2.2.0; Fixes RHBZ#2413767 -------------------------------------------------------------------------------- ================================================================================ rust-x509-parser-0.18.1-1.el10_2 (FEDORA-EPEL-2026-dc94f0fe3e) Parser for the X.509 v3 format (RFC 5280 certificates) -------------------------------------------------------------------------------- Update Information: Update to version 0.18.1. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.18.1-1 - Update to version 0.18.1; Fixes RHBZ#2437033 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.18.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild --------------------------------------------------------------------------------

1 0

Fedora EPEL 10.1 updates-testing report
by updates＠fedoraproject.org 09 Feb '26

09 Feb '26

The following Fedora EPEL 10.1 Security updates need testing: Age URL 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-f8fd439c99 chromium-144.0.7559.132-1.el10_1 The following builds have been pushed to Fedora EPEL 10.1 updates-testing dist-git-client-1.3-1.el10_1 python-astropy-iers-data-0.2026.2.9.0.50.33-1.el10_1 python-ogr-0.61.0-1.el10_1 rust-memchr-2.8.0-1.el10_1 rust-regex-automata-0.4.14-1.el10_1 Details about builds: ================================================================================ dist-git-client-1.3-1.el10_1 (FEDORA-EPEL-2026-4c9c1352da) Get sources for RPM builds from DistGit repositories -------------------------------------------------------------------------------- Update Information: dist-git-client: ask dist-git httpd server to send response as-is -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Pavel Raiskup <pavel(a)raiskup.cz> 1.3-1 - dist-git-client: ask dist-git httpd server to send response as-is -------------------------------------------------------------------------------- ================================================================================ python-astropy-iers-data-0.2026.2.9.0.50.33-1.el10_1 (FEDORA-EPEL-2026-eae009ff80) IERS Earth Rotation and Leap Second tables for the astropy core package -------------------------------------------------------------------------------- Update Information: Automatic update for python-astropy-iers-data-0.2026.2.9.0.50.33-1.el10_1. Changelog for python-astropy-iers-data * Mon Feb 09 2026 Packit <hello(a)packit.dev> - 0.2026.2.9.0.50.33-1 - Update to 0.2026.2.9.0.50.33 upstream release - Resolves: rhbz#2435860 * Mon Jan 26 2026 Packit <hello(a)packit.dev> - 0.2026.1.26.0.43.56-1 - Update to 0.2026.1.26.0.43.56 upstream release - Resolves: rhbz#2432727 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Packit <hello(a)packit.dev> - 0.2026.2.9.0.50.33-1 - Update to 0.2026.2.9.0.50.33 upstream release - Resolves: rhbz#2435860 * Mon Jan 26 2026 Packit <hello(a)packit.dev> - 0.2026.1.26.0.43.56-1 - Update to 0.2026.1.26.0.43.56 upstream release - Resolves: rhbz#2432727 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2432727 - python-astropy-iers-data-0.2026.1.26.0.43.56 is available https://bugzilla.redhat.com/show_bug.cgi?id=2432727 [ 2 ] Bug #2435860 - python-astropy-iers-data-0.2026.2.9.0.50.33 is available https://bugzilla.redhat.com/show_bug.cgi?id=2435860 -------------------------------------------------------------------------------- ================================================================================ python-ogr-0.61.0-1.el10_1 (FEDORA-EPEL-2026-01508b491e) One API for multiple git forges -------------------------------------------------------------------------------- Update Information: Automatic update for python-ogr-0.61.0-1.el10_1. Changelog for python-ogr * Mon Feb 09 2026 Packit <hello(a)packit.dev> - 0.61.0-1 - Ogr now supports Forgejo issues, comments and comment reactions. (#959) * Fri Jan 30 2026 Packit <hello(a)packit.dev> - 0.60.1-1 - The method `get_rate_limit_remaining()` now also supports repository-specific checks for GitHub. (#972) - Resolves: rhbz#2435481 * Mon Jan 19 2026 Packit <hello(a)packit.dev> - 0.60.0-1 - A new method `get_rate_limit_remaining()` to check rate limit thresholds has been added to the service API. (#970) - Resolves: rhbz#2430818 Automatic update for python-ogr-0.60.1-1.el10_1. Changelog for python-ogr * Fri Jan 30 2026 Packit <hello(a)packit.dev> - 0.60.1-1 - The method `get_rate_limit_remaining()` now also supports repository-specific checks for GitHub. (#972) - Resolves: rhbz#2435481 * Mon Jan 19 2026 Packit <hello(a)packit.dev> - 0.60.0-1 - A new method `get_rate_limit_remaining()` to check rate limit thresholds has been added to the service API. (#970) - Resolves: rhbz#2430818 Automatic update for python-ogr-0.60.0-1.el10_1. Changelog for python-ogr * Mon Jan 19 2026 Packit <hello(a)packit.dev> - 0.60.0-1 - A new method `get_rate_limit_remaining()` to check rate limit thresholds has been added to the service API. (#970) - Resolves: rhbz#2430818 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Packit <hello(a)packit.dev> - 0.61.0-1 - Ogr now supports Forgejo issues, comments and comment reactions. (#959) * Fri Jan 30 2026 Packit <hello(a)packit.dev> - 0.60.1-1 - The method `get_rate_limit_remaining()` now also supports repository-specific checks for GitHub. (#972) - Resolves: rhbz#2435481 * Mon Jan 19 2026 Packit <hello(a)packit.dev> - 0.60.0-1 - A new method `get_rate_limit_remaining()` to check rate limit thresholds has been added to the service API. (#970) - Resolves: rhbz#2430818 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2430818 - python-ogr-0.60.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2430818 [ 2 ] Bug #2435481 - python-ogr-0.60.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2435481 -------------------------------------------------------------------------------- ================================================================================ rust-memchr-2.8.0-1.el10_1 (FEDORA-EPEL-2026-ab3c347caa) Extremely fast 1, 2 or 3 byte search and single substring search -------------------------------------------------------------------------------- Update Information: Update to version 2.8.0. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.8.0-1 - Update to version 2.8.0; Fixes RHBZ#2437446 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.7.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-regex-automata-0.4.14-1.el10_1 (FEDORA-EPEL-2026-148c5fe715) Automata construction and matching using regular expressions -------------------------------------------------------------------------------- Update Information: Update to version 0.4.14. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.4.14-1 - Update to version 0.4.14; Fixes RHBZ#2436329 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.13-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild --------------------------------------------------------------------------------

1 0

Fedora EPEL 9 updates-testing report
by updates＠fedoraproject.org 09 Feb '26

09 Feb '26

The following Fedora EPEL 9 Security updates need testing: Age URL 82 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-9a55de96db xpdf-4.06-1.el9 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-5cd59d2965 osslsigncode-2.12-1.el9 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-6b12c1c86e chromium-144.0.7559.132-1.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-5af2dc982d atuin-18.6.1-10.el9 helix-25.07.1-7.el9 rust-bat-0.24.0-12.el9 rust-below-0.9.0-6.el9 rust-btrd-0.5.3-12.el9 rust-bytes-1.11.1-1.el9 rust-cargo-c-0.10.14-2.el9 rust-dtoa-1.0.11-2.el9 rust-dua-cli-2.32.2-3.el9 rust-eif_build-0.2.1-6.el9 rust-git2-0.20.4-1.el9 rust-nu-0.99.1-16.el9 rust-num-conv-0.2.0-1.el9 rust-onefetch-2.26.1-7.el9 rust-pom-3.4.0-5.el9 rust-pore-0.1.17-11.el9 rust-procs-0.14.10-7.el9 rust-prometheus-client-0.19.0-6.el9 rust-prometheus-client-derive-encode-0.4.2-6.el9 rust-rbw-1.13.2-5.el9 rust-rd-agent-2.2.5-14.el9 rust-rd-hashd-2.2.5-10.el9 rust-resctl-bench-2.2.5-10.el9 rust-resctl-demo-2.2.5-9.el9 rust-routinator-0.14.2-4.el9 rust-rustyline-derive0.10-0.10.0-2.el9 rust-rustyline14-14.0.0-2.el9 rust-scx_layered-0.0.6-7.el9 rust-scx_rustland-0.0.3-7.el9 rust-scx_rusty-0.5.4-7.el9 rust-scx_utils-0.6.0-6.el9 rust-sequoia-keystore-server-0.2.0-6.el9 rust-sequoia-sq-1.3.1-10.el9 rust-shadow-rs-0 .8.1-14.el9 rust-sigul-pesign-bridge-0.5.0-3.el9 rust-time-0.3.47-1.el9 rust-time-core-0.1.8-1.el9 rust-time-macros-0.2.27-1.el9 rust-tokei-14.0.0-4.el9 rust-weezl-0.1.12-3.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing dist-git-client-1.3-1.el9 rust-ascii-canvas-4.0.0-1.el9 rust-config-0.15.13-1.el9 rust-lalrpop-0.22.2-1.el9 rust-lalrpop-util-0.22.2-1.el9 rust-memchr-2.8.0-1.el9 rust-regex-automata-0.4.14-1.el9 rust-sequoia-ipc-0.36.0-6.el9 rust-sequoia-openpgp-2.2.0-1.el9 rust-x509-parser-0.18.1-1.el9 rust-yaml-rust2-0.10.3-1.el9 trafficserver-9.2.12-1.el9 Details about builds: ================================================================================ dist-git-client-1.3-1.el9 (FEDORA-EPEL-2026-beb1413af3) Get sources for RPM builds from DistGit repositories -------------------------------------------------------------------------------- Update Information: dist-git-client: ask dist-git httpd server to send response as-is -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Pavel Raiskup <pavel(a)raiskup.cz> 1.3-1 - dist-git-client: ask dist-git httpd server to send response as-is -------------------------------------------------------------------------------- ================================================================================ rust-ascii-canvas-4.0.0-1.el9 (FEDORA-EPEL-2026-1f65546ee4) Simple canvas for drawing lines and styled text and emitting to the terminal -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. Adapt the package for the sequoia-ipc crate for lalrpop v0.22. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 4.0.0-1 - Update to version 4.0.0; Fixes RHBZ#2315717 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.0-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.0-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.0-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Fri Jul 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.0.0-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-config-0.15.13-1.el9 (FEDORA-EPEL-2026-20db066e55) Layered configuration system for Rust applications -------------------------------------------------------------------------------- Update Information: Update rust-config to 0.15.13 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2025 Cristian Le <git(a)lecris.dev> - 0.15.13-1 - Update to 0.15.13 (rhbz#2262210) * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.13.4-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-lalrpop-0.22.2-1.el9 (FEDORA-EPEL-2026-1f65546ee4) Convenient LR(1) parser generator -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. Adapt the package for the sequoia-ipc crate for lalrpop v0.22. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.22.2-1 - Update to version 0.22.2; Fixes RHBZ#2308055 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-lalrpop-util-0.22.2-1.el9 (FEDORA-EPEL-2026-1f65546ee4) Runtime library for parsers generated by LALRPOP -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. Adapt the package for the sequoia-ipc crate for lalrpop v0.22. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.22.2-1 - Update to version 0.22.2; Fixes RHBZ#2308056 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Fri Jul 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-memchr-2.8.0-1.el9 (FEDORA-EPEL-2026-27e0453d8e) Extremely fast 1, 2 or 3 byte search and single substring search -------------------------------------------------------------------------------- Update Information: Update to version 2.8.0. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.8.0-1 - Update to version 2.8.0; Fixes RHBZ#2437446 -------------------------------------------------------------------------------- ================================================================================ rust-regex-automata-0.4.14-1.el9 (FEDORA-EPEL-2026-2fdd57b477) Automata construction and matching using regular expressions -------------------------------------------------------------------------------- Update Information: Update to version 0.4.14. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.4.14-1 - Update to version 0.4.14; Fixes RHBZ#2436329 -------------------------------------------------------------------------------- ================================================================================ rust-sequoia-ipc-0.36.0-6.el9 (FEDORA-EPEL-2026-1f65546ee4) Interprocess communication infrastructure for Sequoia -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. Adapt the package for the sequoia-ipc crate for lalrpop v0.22. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.36.0-6 - Fix accidental build breakage due to missing backend selection * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.36.0-5 - Relax lalrpop dependency to allow up to v0.22 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.36.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-sequoia-openpgp-2.2.0-1.el9 (FEDORA-EPEL-2026-1f65546ee4) OpenPGP data types and associated machinery -------------------------------------------------------------------------------- Update Information: Update the sequoia-openpgp crate to version 2.2.0. Update the lalrpop and lalrpop-util crates to version 0.22.2. Update the ascii-canvas crate to version 4.0.0. Adapt the package for the sequoia-ipc crate for lalrpop v0.22. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.2.0-1 - Update to version 2.2.0; Fixes RHBZ#2413767 -------------------------------------------------------------------------------- ================================================================================ rust-x509-parser-0.18.1-1.el9 (FEDORA-EPEL-2026-4bf9dfc80e) Parser for the X.509 v3 format (RFC 5280 certificates) -------------------------------------------------------------------------------- Update Information: Update to version 0.18.1. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.18.1-1 - Update to version 0.18.1; Fixes RHBZ#2437033 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.18.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-yaml-rust2-0.10.3-1.el9 (FEDORA-EPEL-2026-20db066e55) Fully YAML 1.2 compliant YAML parser -------------------------------------------------------------------------------- Update Information: Update rust-config to 0.15.13 -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 19 2025 Cristian Le <git(a)lecris.dev> - 0.10.3-1 - Import rhbz#2358954 -------------------------------------------------------------------------------- ================================================================================ trafficserver-9.2.12-1.el9 (FEDORA-EPEL-2026-fad0b45d2f) Fast, scalable and extensible HTTP/1.1 and HTTP/2 caching proxy server -------------------------------------------------------------------------------- Update Information: Changes with Apache Traffic Server 9.2.12 #12315 - Initialize the OptionInfo in the ESI plugin using default member initializer #12319 - 9.2.x: Support CLIENT_HELLO split across multiple packets #12395 - Fix host.db load failure due to incorrect object_version compatibility check #12431 - Fix HostDB sync issue by preserving expiry_time on load #12498 - ypaf update: v0.32.0 -> v0.43.0 (#12008) #12499 - Cherry-pick of #12002 #12500 - Use ats_free instead of free in LogFlushData destructor (#12024) #12507 - Add nullptr check in HttpTransact::is_stale_cache_response_returnable… #12558 - Reuse prepared cache write on redirected request (#11542) #12559 - Reset write lock state to init after closing write (#12215) #12796 - Fix: HTTPHdr host cache invalidation when Host header modified (#12768) #12827 - 9.2.x: Reduce ram_cache regression test scope for CI stability #12828 - 9.2.x: Make chunk size parsing more strict #12829 - [compress] Fix compressible-status-code config (#12116) -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Jered Floyd <jered(a)redhat.com> 9.2.12-1 - Update to upstream 9.2.12 --------------------------------------------------------------------------------

1 0

Fedora EPEL 8 updates-testing report
by updates＠fedoraproject.org 09 Feb '26

09 Feb '26

The following Fedora EPEL 8 Security updates need testing: Age URL 82 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-5b2095e2c2 xpdf-4.06-1.el8 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-96a07a6444 openssl3-3.5.5-1.1.el8 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-5e10141457 openbao-2.5.0-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing beakerlib-1.33-1.el8 dist-git-client-1.3-1.el8 trafficserver-9.2.12-1.el8 Details about builds: ================================================================================ beakerlib-1.33-1.el8 (FEDORA-EPEL-2026-acbb0703e9) A shell-level integration testing library -------------------------------------------------------------------------------- Update Information: Fri Feb 06 2026 Dalibor Pospisil dapospis(a)redhat.com - 1.33 added support for libraries referenced using name only -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Dalibor Pospisil <dapospis(a)redhat.com> - 1.33 - added support for libraries referenced using name only -------------------------------------------------------------------------------- ================================================================================ dist-git-client-1.3-1.el8 (FEDORA-EPEL-2026-6ac448e53b) Get sources for RPM builds from DistGit repositories -------------------------------------------------------------------------------- Update Information: dist-git-client: ask dist-git httpd server to send response as-is -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2026 Pavel Raiskup <pavel(a)raiskup.cz> 1.3-1 - dist-git-client: ask dist-git httpd server to send response as-is -------------------------------------------------------------------------------- ================================================================================ trafficserver-9.2.12-1.el8 (FEDORA-EPEL-2026-589b1733eb) Fast, scalable and extensible HTTP/1.1 and HTTP/2 caching proxy server -------------------------------------------------------------------------------- Update Information: Changes with Apache Traffic Server 9.2.12 #12315 - Initialize the OptionInfo in the ESI plugin using default member initializer #12319 - 9.2.x: Support CLIENT_HELLO split across multiple packets #12395 - Fix host.db load failure due to incorrect object_version compatibility check #12431 - Fix HostDB sync issue by preserving expiry_time on load #12498 - ypaf update: v0.32.0 -> v0.43.0 (#12008) #12499 - Cherry-pick of #12002 #12500 - Use ats_free instead of free in LogFlushData destructor (#12024) #12507 - Add nullptr check in HttpTransact::is_stale_cache_response_returnable… #12558 - Reuse prepared cache write on redirected request (#11542) #12559 - Reset write lock state to init after closing write (#12215) #12796 - Fix: HTTPHdr host cache invalidation when Host header modified (#12768) #12827 - 9.2.x: Reduce ram_cache regression test scope for CI stability #12828 - 9.2.x: Make chunk size parsing more strict #12829 - [compress] Fix compressible-status-code config (#12116) -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Jered Floyd <jered(a)redhat.com> 9.2.12-1 - Update to upstream 9.2.12 --------------------------------------------------------------------------------

1 0

RFA/O: orphaning openssl3 in EPEL 8 in a week
by Michel Lind 09 Feb '26

09 Feb '26

Dear all, I've been maintaining a backport of EL's openssl 3 in EPEL 8 for several years; https://src.fedoraproject.org/rpms/openssl3 It's a mostly straightforward process -- just merge changes from https://gitlab.com/redhat/centos-stream/rpms/openssl/-/tree/c9s?ref_type=he… periodically - especially if there are CVEs filed - and sometimes adjust the spec. This package intentionally does not have FIPS modules enabled - partly so as not to set expectations that this is validated in any way (people who need FIPS *and* openssl 3 should use EL9 or EL10, whether from RH or from other distributions). Unfortunately - for a package that's maintained mostly as a service to the community since my intended use case never materialized and we no longer have EL 8 systems at work - the interactions I've had with users of this package has left a bit of a sour taste. Including related to the FIPS support above (no, no bug ever filed for this particular case). As it is - caveat lector, you know what you're signing up to - I will orphan this package next week. Happy to coordinate an orderly transfer if an existing packager replies to this by then, or someone who can convince me they can learn to maintain this and just needs to be sponsored. If that did not happen the package will be up for grabs in 7 days. Best regards, -- _o) Michel Lind _( ) https://keyoxide.org/5dce2e7e9c3b1cffd335c1d78b229d2f7ccc04f2 README: https://fedoraproject.org/wiki/User:Salimma#README

1 0

Fedora EPEL 10.1 updates-testing report
by updates＠fedoraproject.org 08 Feb '26

08 Feb '26

The following Fedora EPEL 10.1 Security updates need testing: Age URL 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-f8fd439c99 chromium-144.0.7559.132-1.el10_1 The following builds have been pushed to Fedora EPEL 10.1 updates-testing baresip-4.5.0-1.el10_1 libre-4.5.0-1.el10_1 partclone-0.3.45-1.el10_1 rust-libdeflate-sys-1.25.2-1.el10_1 rust-libdeflater-1.25.2-1.el10_1 tegrarcm-1.9-1.el10_1 yamllint-1.37.1-1.el10_1 Details about builds: ================================================================================ baresip-4.5.0-1.el10_1 (FEDORA-EPEL-2026-72c042addc) Modular SIP user-agent with audio and video support -------------------------------------------------------------------------------- Update Information: Baresip v4.5.0 (2026-01-28) rtprecv: fix race condition after video-display was closed account: added ;check_origin parameter and API functions to get and set it peerconn: always call close handler on destruct account: misc improvements in core and test rtprecv: fix tmr_cancel decode data race audio: remove audio_txtelev_empty() -- unused rtprecv: check re_thread_init() return value test: use insecure warning (not needed for tests) readme,license: update for new year audio: remove audio_set_hold() -- unused test: split test/call.c test: add peer-connection test cases uag: uag_filter_calls() support unlink in listh mixausrc: rework test: use audio_txtelev_empty() to check if DTMF was sent test: add usage of more audio_xxx() functions in peerconn-test audio: optimize source mutex handling mixausrc sanitizer and EOS fixes test mixausrc httpd: print err instead of no reply test: disable DNS-client cache in test_call_sni -- ref #3620 libre v4.5.0 (2026-01-28) net: remove net_if_getaddr4() -- deprecated test: add testing of dtls_set_handlers() api h265: use h264_find_startcode() -- duplicated code fmt: str_bool: reuse similar logic in pl_bool() net: cleanup fallback return fmt/print: add backtrace for incompatible format arguments btrace: fix for linux addr2line rtp: add RTP listen on single port copyright: update for new year async: do not hold lock during cb call docs: fix README.md document include tmr: improve thread list lock handling aumix: add aumix_source_put_auframe and deprecate aumix_source_put rtp/sess: fix ts_arrive calculation -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Robert Scheck <robert(a)fedoraproject.org> 4.5.0-1 - Upgrade to 4.5.0 (#2433734) * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2433715 - libre-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433715 [ 2 ] Bug #2433734 - baresip-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433734 -------------------------------------------------------------------------------- ================================================================================ libre-4.5.0-1.el10_1 (FEDORA-EPEL-2026-72c042addc) Generic library for real-time communications -------------------------------------------------------------------------------- Update Information: Baresip v4.5.0 (2026-01-28) rtprecv: fix race condition after video-display was closed account: added ;check_origin parameter and API functions to get and set it peerconn: always call close handler on destruct account: misc improvements in core and test rtprecv: fix tmr_cancel decode data race audio: remove audio_txtelev_empty() -- unused rtprecv: check re_thread_init() return value test: use insecure warning (not needed for tests) readme,license: update for new year audio: remove audio_set_hold() -- unused test: split test/call.c test: add peer-connection test cases uag: uag_filter_calls() support unlink in listh mixausrc: rework test: use audio_txtelev_empty() to check if DTMF was sent test: add usage of more audio_xxx() functions in peerconn-test audio: optimize source mutex handling mixausrc sanitizer and EOS fixes test mixausrc httpd: print err instead of no reply test: disable DNS-client cache in test_call_sni -- ref #3620 libre v4.5.0 (2026-01-28) net: remove net_if_getaddr4() -- deprecated test: add testing of dtls_set_handlers() api h265: use h264_find_startcode() -- duplicated code fmt: str_bool: reuse similar logic in pl_bool() net: cleanup fallback return fmt/print: add backtrace for incompatible format arguments btrace: fix for linux addr2line rtp: add RTP listen on single port copyright: update for new year async: do not hold lock during cb call docs: fix README.md document include tmr: improve thread list lock handling aumix: add aumix_source_put_auframe and deprecate aumix_source_put rtp/sess: fix ts_arrive calculation -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Robert Scheck <robert(a)fedoraproject.org> 4.5.0-1 - Upgrade to 4.5.0 (#2433715) * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2433715 - libre-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433715 [ 2 ] Bug #2433734 - baresip-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433734 -------------------------------------------------------------------------------- ================================================================================ partclone-0.3.45-1.el10_1 (FEDORA-EPEL-2026-d4dcc68b15) Utility to clone and restore a partition -------------------------------------------------------------------------------- Update Information: partclone v0.3.45 Fix make for distclean and maintainer-clean -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 5 2026 Robert Scheck <robert(a)fedoraproject.org> 0.3.45-1 - Upgrade to 0.3.45 (#2435871) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435871 - partclone-0.3.45 is available https://bugzilla.redhat.com/show_bug.cgi?id=2435871 -------------------------------------------------------------------------------- ================================================================================ rust-libdeflate-sys-1.25.2-1.el10_1 (FEDORA-EPEL-2026-4659c2d444) Bindings to libdeflate for DEFLATE -------------------------------------------------------------------------------- Update Information: [1.25.2] - 2026/02/08 Added Crc::with_initial and Adler32::with_initial constructors (#52, thanks @vbe0201). [1.25.1] - 2026/02/07 Implemented the Sync trait for Compressor and Decompressor (#51, thanks @vbe0201). -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.25.2-1 - Update to version 1.25.2; Fixes RHBZ#2437507 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.25.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437506 - rust-libdeflater-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437506 [ 2 ] Bug #2437507 - rust-libdeflate-sys-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437507 -------------------------------------------------------------------------------- ================================================================================ rust-libdeflater-1.25.2-1.el10_1 (FEDORA-EPEL-2026-4659c2d444) Bindings to libdeflate for DEFLATE -------------------------------------------------------------------------------- Update Information: [1.25.2] - 2026/02/08 Added Crc::with_initial and Adler32::with_initial constructors (#52, thanks @vbe0201). [1.25.1] - 2026/02/07 Implemented the Sync trait for Compressor and Decompressor (#51, thanks @vbe0201). -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.25.2-1 - Update to version 1.25.2; Fixes RHBZ#2437506 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.25.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437506 - rust-libdeflater-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437506 [ 2 ] Bug #2437507 - rust-libdeflate-sys-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437507 -------------------------------------------------------------------------------- ================================================================================ tegrarcm-1.9-1.el10_1 (FEDORA-EPEL-2026-7b87023a7a) Send code to a Tegra device in recovery mode -------------------------------------------------------------------------------- Update Information: Update to tegrarcm 1.9 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Nicolas Chauvet <kwizart(a)gmail.com> - 1.9-1 - Update to 1.9 * Tue Jan 20 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8-30 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8-29 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Tue Feb 4 2025 Nicolas Chauvet <kwizart(a)gmail.com> - 1.8-28 - Rebuilt #2 for cryptopp * Tue Feb 4 2025 Nicolas Chauvet <kwizart(a)gmail.com> - 1.8-27 - Rebuilt for cryptopp * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8-26 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Sep 4 2024 Miroslav Suchý <msuchy(a)redhat.com> - 1.8-25 - convert license to SPDX * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8-24 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ yamllint-1.37.1-1.el10_1 (FEDORA-EPEL-2026-8dd4becbae) A linter for YAML files -------------------------------------------------------------------------------- Update Information: Update to latest upstream version -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 12 2022 Adrien Vergé - 1.37.1-1 - Rebuilt for EPEL 10 --------------------------------------------------------------------------------

1 0

Fedora EPEL 8 updates-testing report
by updates＠fedoraproject.org 08 Feb '26

08 Feb '26

The following Fedora EPEL 8 Security updates need testing: Age URL 81 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-5b2095e2c2 xpdf-4.06-1.el8 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-96a07a6444 openssl3-3.5.5-1.1.el8 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-5e10141457 openbao-2.5.0-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing ascii-3.31-1.el8 baresip-4.5.0-1.el8 libre-4.5.0-1.el8 partclone-0.3.45-1.el8 Details about builds: ================================================================================ ascii-3.31-1.el8 (FEDORA-EPEL-2026-541ce03655) Interactive ascii name and synonym chart -------------------------------------------------------------------------------- Update Information: Update from upstream. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Didier Fabert <didier.fabert(a)gmail.com> - 3.31-1 - Update to 3.31 version * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Wed Jul 23 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Thu Jan 16 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Jul 17 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437581 - ascii-3.31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437581 -------------------------------------------------------------------------------- ================================================================================ baresip-4.5.0-1.el8 (FEDORA-EPEL-2026-97ffdc04c4) Modular SIP user-agent with audio and video support -------------------------------------------------------------------------------- Update Information: Baresip v4.5.0 (2026-01-28) rtprecv: fix race condition after video-display was closed account: added ;check_origin parameter and API functions to get and set it peerconn: always call close handler on destruct account: misc improvements in core and test rtprecv: fix tmr_cancel decode data race audio: remove audio_txtelev_empty() -- unused rtprecv: check re_thread_init() return value test: use insecure warning (not needed for tests) readme,license: update for new year audio: remove audio_set_hold() -- unused test: split test/call.c test: add peer-connection test cases uag: uag_filter_calls() support unlink in listh mixausrc: rework test: use audio_txtelev_empty() to check if DTMF was sent test: add usage of more audio_xxx() functions in peerconn-test audio: optimize source mutex handling mixausrc sanitizer and EOS fixes test mixausrc httpd: print err instead of no reply test: disable DNS-client cache in test_call_sni -- ref #3620 libre v4.5.0 (2026-01-28) net: remove net_if_getaddr4() -- deprecated test: add testing of dtls_set_handlers() api h265: use h264_find_startcode() -- duplicated code fmt: str_bool: reuse similar logic in pl_bool() net: cleanup fallback return fmt/print: add backtrace for incompatible format arguments btrace: fix for linux addr2line rtp: add RTP listen on single port copyright: update for new year async: do not hold lock during cb call docs: fix README.md document include tmr: improve thread list lock handling aumix: add aumix_source_put_auframe and deprecate aumix_source_put rtp/sess: fix ts_arrive calculation -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Robert Scheck <robert(a)fedoraproject.org> 4.5.0-1 - Upgrade to 4.5.0 (#2433734) * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2433715 - libre-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433715 [ 2 ] Bug #2433734 - baresip-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433734 -------------------------------------------------------------------------------- ================================================================================ libre-4.5.0-1.el8 (FEDORA-EPEL-2026-97ffdc04c4) Generic library for real-time communications -------------------------------------------------------------------------------- Update Information: Baresip v4.5.0 (2026-01-28) rtprecv: fix race condition after video-display was closed account: added ;check_origin parameter and API functions to get and set it peerconn: always call close handler on destruct account: misc improvements in core and test rtprecv: fix tmr_cancel decode data race audio: remove audio_txtelev_empty() -- unused rtprecv: check re_thread_init() return value test: use insecure warning (not needed for tests) readme,license: update for new year audio: remove audio_set_hold() -- unused test: split test/call.c test: add peer-connection test cases uag: uag_filter_calls() support unlink in listh mixausrc: rework test: use audio_txtelev_empty() to check if DTMF was sent test: add usage of more audio_xxx() functions in peerconn-test audio: optimize source mutex handling mixausrc sanitizer and EOS fixes test mixausrc httpd: print err instead of no reply test: disable DNS-client cache in test_call_sni -- ref #3620 libre v4.5.0 (2026-01-28) net: remove net_if_getaddr4() -- deprecated test: add testing of dtls_set_handlers() api h265: use h264_find_startcode() -- duplicated code fmt: str_bool: reuse similar logic in pl_bool() net: cleanup fallback return fmt/print: add backtrace for incompatible format arguments btrace: fix for linux addr2line rtp: add RTP listen on single port copyright: update for new year async: do not hold lock during cb call docs: fix README.md document include tmr: improve thread list lock handling aumix: add aumix_source_put_auframe and deprecate aumix_source_put rtp/sess: fix ts_arrive calculation -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Robert Scheck <robert(a)fedoraproject.org> 4.5.0-1 - Upgrade to 4.5.0 (#2433715) * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2433715 - libre-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433715 [ 2 ] Bug #2433734 - baresip-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433734 -------------------------------------------------------------------------------- ================================================================================ partclone-0.3.45-1.el8 (FEDORA-EPEL-2026-71b4da6ec7) Utility to clone and restore a partition -------------------------------------------------------------------------------- Update Information: partclone v0.3.45 Fix make for distclean and maintainer-clean -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 5 2026 Robert Scheck <robert(a)fedoraproject.org> 0.3.45-1 - Upgrade to 0.3.45 (#2435871) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435871 - partclone-0.3.45 is available https://bugzilla.redhat.com/show_bug.cgi?id=2435871 --------------------------------------------------------------------------------

1 0

Fedora EPEL 9 updates-testing report
by updates＠fedoraproject.org 08 Feb '26

08 Feb '26

The following Fedora EPEL 9 Security updates need testing: Age URL 81 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-9a55de96db xpdf-4.06-1.el9 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-5cd59d2965 osslsigncode-2.12-1.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2026-6b12c1c86e chromium-144.0.7559.132-1.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing ascii-3.31-1.el9 atuin-18.6.1-10.el9 baresip-4.5.0-1.el9 hcxtools-7.1.0-1.el9 helix-25.07.1-7.el9 libre-4.5.0-1.el9 partclone-0.3.45-1.el9 pyproj-3.4.1-3.el9 rust-bat-0.24.0-12.el9 rust-below-0.9.0-6.el9 rust-btrd-0.5.3-12.el9 rust-bytes-1.11.1-1.el9 rust-cargo-c-0.10.14-2.el9 rust-dtoa-1.0.11-2.el9 rust-dua-cli-2.32.2-3.el9 rust-eif_build-0.2.1-6.el9 rust-git2-0.20.4-1.el9 rust-libdeflate-sys-1.25.2-1.el9 rust-libdeflater-1.25.2-1.el9 rust-nu-0.99.1-16.el9 rust-num-conv-0.2.0-1.el9 rust-onefetch-2.26.1-7.el9 rust-pom-3.4.0-5.el9 rust-pore-0.1.17-11.el9 rust-procs-0.14.10-7.el9 rust-prometheus-client-0.19.0-6.el9 rust-prometheus-client-derive-encode-0.4.2-6.el9 rust-rbw-1.13.2-5.el9 rust-rd-agent-2.2.5-14.el9 rust-rd-hashd-2.2.5-10.el9 rust-resctl-bench-2.2.5-10.el9 rust-resctl-demo-2.2.5-9.el9 rust-routinator-0.14.2-4.el9 rust-rustyline-derive0.10-0.10.0-2.el9 rust-rustyline14-14.0.0-2.el9 rust-scx_layered-0.0.6-7.el9 rust-scx_rustland-0.0.3-7.el9 rust-scx_rusty-0.5.4-7.el9 rust-scx_utils-0.6.0-6.el9 rust-sequoia-keystore-server-0.2.0-6.el9 rust-sequoia-sq-1.3.1-10.el9 rust-shadow-rs-0.8.1-14.el9 rust-sigul-pesign-bridge-0.5.0-3.el9 rust-time-0.3.47-1.el9 rust-time-core-0.1.8-1.el9 rust-time-macros-0.2.27-1.el9 rust-tokei-14.0.0-4.el9 rust-weezl-0.1.12-3.el9 Details about builds: ================================================================================ ascii-3.31-1.el9 (FEDORA-EPEL-2026-dadcf0c987) Interactive ascii name and synonym chart -------------------------------------------------------------------------------- Update Information: Update from upstream. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Didier Fabert <didier.fabert(a)gmail.com> - 3.31-1 - Update to 3.31 version * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Wed Jul 23 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Thu Jan 16 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Jul 17 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437581 - ascii-3.31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437581 -------------------------------------------------------------------------------- ================================================================================ atuin-18.6.1-10.el9 (FEDORA-EPEL-2026-5af2dc982d) Magical shell history -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 18.6.1-10 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 -------------------------------------------------------------------------------- ================================================================================ baresip-4.5.0-1.el9 (FEDORA-EPEL-2026-efed8ed28b) Modular SIP user-agent with audio and video support -------------------------------------------------------------------------------- Update Information: Baresip v4.5.0 (2026-01-28) rtprecv: fix race condition after video-display was closed account: added ;check_origin parameter and API functions to get and set it peerconn: always call close handler on destruct account: misc improvements in core and test rtprecv: fix tmr_cancel decode data race audio: remove audio_txtelev_empty() -- unused rtprecv: check re_thread_init() return value test: use insecure warning (not needed for tests) readme,license: update for new year audio: remove audio_set_hold() -- unused test: split test/call.c test: add peer-connection test cases uag: uag_filter_calls() support unlink in listh mixausrc: rework test: use audio_txtelev_empty() to check if DTMF was sent test: add usage of more audio_xxx() functions in peerconn-test audio: optimize source mutex handling mixausrc sanitizer and EOS fixes test mixausrc httpd: print err instead of no reply test: disable DNS-client cache in test_call_sni -- ref #3620 libre v4.5.0 (2026-01-28) net: remove net_if_getaddr4() -- deprecated test: add testing of dtls_set_handlers() api h265: use h264_find_startcode() -- duplicated code fmt: str_bool: reuse similar logic in pl_bool() net: cleanup fallback return fmt/print: add backtrace for incompatible format arguments btrace: fix for linux addr2line rtp: add RTP listen on single port copyright: update for new year async: do not hold lock during cb call docs: fix README.md document include tmr: improve thread list lock handling aumix: add aumix_source_put_auframe and deprecate aumix_source_put rtp/sess: fix ts_arrive calculation -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Robert Scheck <robert(a)fedoraproject.org> 4.5.0-1 - Upgrade to 4.5.0 (#2433734) * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2433715 - libre-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433715 [ 2 ] Bug #2433734 - baresip-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433734 -------------------------------------------------------------------------------- ================================================================================ hcxtools-7.1.0-1.el9 (FEDORA-EPEL-2026-6b51f274e7) Set of tools to convert packets from capture files to hash files -------------------------------------------------------------------------------- Update Information: Automatic update for hcxtools-7.1.0-1.el9. Changelog for hcxtools * Sun Feb 08 2026 Artem Polishchuk <ego.cordatus(a)gmail.com> - 7.1.0-1 - 7.1.0 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Artem Polishchuk <ego.cordatus(a)gmail.com> - 7.1.0-1 - 7.1.0 -------------------------------------------------------------------------------- ================================================================================ helix-25.07.1-7.el9 (FEDORA-EPEL-2026-5af2dc982d) A post-modern modal text editor written in Rust -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 25.07.1-7 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 25.07.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ libre-4.5.0-1.el9 (FEDORA-EPEL-2026-efed8ed28b) Generic library for real-time communications -------------------------------------------------------------------------------- Update Information: Baresip v4.5.0 (2026-01-28) rtprecv: fix race condition after video-display was closed account: added ;check_origin parameter and API functions to get and set it peerconn: always call close handler on destruct account: misc improvements in core and test rtprecv: fix tmr_cancel decode data race audio: remove audio_txtelev_empty() -- unused rtprecv: check re_thread_init() return value test: use insecure warning (not needed for tests) readme,license: update for new year audio: remove audio_set_hold() -- unused test: split test/call.c test: add peer-connection test cases uag: uag_filter_calls() support unlink in listh mixausrc: rework test: use audio_txtelev_empty() to check if DTMF was sent test: add usage of more audio_xxx() functions in peerconn-test audio: optimize source mutex handling mixausrc sanitizer and EOS fixes test mixausrc httpd: print err instead of no reply test: disable DNS-client cache in test_call_sni -- ref #3620 libre v4.5.0 (2026-01-28) net: remove net_if_getaddr4() -- deprecated test: add testing of dtls_set_handlers() api h265: use h264_find_startcode() -- duplicated code fmt: str_bool: reuse similar logic in pl_bool() net: cleanup fallback return fmt/print: add backtrace for incompatible format arguments btrace: fix for linux addr2line rtp: add RTP listen on single port copyright: update for new year async: do not hold lock during cb call docs: fix README.md document include tmr: improve thread list lock handling aumix: add aumix_source_put_auframe and deprecate aumix_source_put rtp/sess: fix ts_arrive calculation -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Robert Scheck <robert(a)fedoraproject.org> 4.5.0-1 - Upgrade to 4.5.0 (#2433715) * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2433715 - libre-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433715 [ 2 ] Bug #2433734 - baresip-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433734 -------------------------------------------------------------------------------- ================================================================================ partclone-0.3.45-1.el9 (FEDORA-EPEL-2026-571f5c6d84) Utility to clone and restore a partition -------------------------------------------------------------------------------- Update Information: partclone v0.3.45 Fix make for distclean and maintainer-clean -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 5 2026 Robert Scheck <robert(a)fedoraproject.org> 0.3.45-1 - Upgrade to 0.3.45 (#2435871) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435871 - partclone-0.3.45 is available https://bugzilla.redhat.com/show_bug.cgi?id=2435871 -------------------------------------------------------------------------------- ================================================================================ pyproj-3.4.1-3.el9 (FEDORA-EPEL-2026-0304808810) Cython wrapper to provide python interfaces to Proj -------------------------------------------------------------------------------- Update Information: Ensure the package builds again after proj was upgraded to v.9.6.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 8 2026 Jos de Kloe <josdekloe(a)gmail.com> 3.4.1-3 - Ensure the package builds again after proj was upgraded to v.9.6.0 * Tue Jun 24 2025 Orion Poplawski <orion(a)nwra.com> - 3.4.1-2 - Rebuild for proj 9 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2420041 - Please rebuild pyproj in EPEL 9 for proj SOVERSION change https://bugzilla.redhat.com/show_bug.cgi?id=2420041 -------------------------------------------------------------------------------- ================================================================================ rust-bat-0.24.0-12.el9 (FEDORA-EPEL-2026-5af2dc982d) Cat(1) clone with wings -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.24.0-12 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.24.0-11 - Bump git2 dependency to v0.20 -------------------------------------------------------------------------------- ================================================================================ rust-below-0.9.0-6.el9 (FEDORA-EPEL-2026-5af2dc982d) Interactive tool to view and record historical system data -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.9.0-6 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-btrd-0.5.3-12.el9 (FEDORA-EPEL-2026-5af2dc982d) Btrfs debugger -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.3-12 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Thu Jan 29 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.3-11 - Fix accidental FIXME in license tag * Thu Jan 29 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.3-10 - Bump nix dependency to v0.30 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.3-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Tue Sep 23 2025 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.3-8 - Bump rustyline dependency to v14 * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.3-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.3-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sun Aug 25 2024 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.3-5 - Fix unaddressed FIXME and clarify license * Fri Jul 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Thu May 23 2024 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.3-3 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces -------------------------------------------------------------------------------- ================================================================================ rust-bytes-1.11.1-1.el9 (FEDORA-EPEL-2026-5af2dc982d) Types and traits for working with bytes -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.11.1-1 - Update to version 1.11.1; Fixes RHBZ#2436335 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.11.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-cargo-c-0.10.14-2.el9 (FEDORA-EPEL-2026-5af2dc982d) Helper program to build and install c-like libraries -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.10.14-2 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 -------------------------------------------------------------------------------- ================================================================================ rust-dtoa-1.0.11-2.el9 (FEDORA-EPEL-2026-5af2dc982d) Fast floating point primitive to string conversion -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.11-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Wed Jan 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.0.11-1 - Update to version 1.0.11; Fixes RHBZ#2425595 * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.10-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Mon Mar 3 2025 Fabio Valentini <decathorpe(a)gmail.com> - 1.0.10-1 - Update to version 1.0.10; Fixes RHBZ#2349687 * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.9-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Fri Jul 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-dua-cli-2.32.2-3.el9 (FEDORA-EPEL-2026-5af2dc982d) Tool to conveniently learn about the disk usage of directories -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.32.2-3 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.32.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-eif_build-0.2.1-6.el9 (FEDORA-EPEL-2026-5af2dc982d) CLI tool to create EIF files for AWS Nitro Enclaves -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.1-6 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-git2-0.20.4-1.el9 (FEDORA-EPEL-2026-5af2dc982d) Bindings to libgit2 for interoperating with git repositories -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.20.4-1 - Update to version 0.20.4; Fixes RHBZ#2436014 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-libdeflate-sys-1.25.2-1.el9 (FEDORA-EPEL-2026-e73ac4eb14) Bindings to libdeflate for DEFLATE -------------------------------------------------------------------------------- Update Information: [1.25.2] - 2026/02/08 Added Crc::with_initial and Adler32::with_initial constructors (#52, thanks @vbe0201). [1.25.1] - 2026/02/07 Implemented the Sync trait for Compressor and Decompressor (#51, thanks @vbe0201). -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.25.2-1 - Update to version 1.25.2; Fixes RHBZ#2437507 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.25.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437506 - rust-libdeflater-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437506 [ 2 ] Bug #2437507 - rust-libdeflate-sys-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437507 -------------------------------------------------------------------------------- ================================================================================ rust-libdeflater-1.25.2-1.el9 (FEDORA-EPEL-2026-e73ac4eb14) Bindings to libdeflate for DEFLATE -------------------------------------------------------------------------------- Update Information: [1.25.2] - 2026/02/08 Added Crc::with_initial and Adler32::with_initial constructors (#52, thanks @vbe0201). [1.25.1] - 2026/02/07 Implemented the Sync trait for Compressor and Decompressor (#51, thanks @vbe0201). -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.25.2-1 - Update to version 1.25.2; Fixes RHBZ#2437506 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.25.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437506 - rust-libdeflater-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437506 [ 2 ] Bug #2437507 - rust-libdeflate-sys-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437507 -------------------------------------------------------------------------------- ================================================================================ rust-nu-0.99.1-16.el9 (FEDORA-EPEL-2026-5af2dc982d) New type of shell -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.99.1-16 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.99.1-15 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-num-conv-0.2.0-1.el9 (FEDORA-EPEL-2026-5af2dc982d) Num_conv is a crate to convert between integer types without using as casts -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.0-1 - Update to version 0.2.0; Fixes RHBZ#2391411 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-onefetch-2.26.1-7.el9 (FEDORA-EPEL-2026-5af2dc982d) Command-line Git information tool -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.26.1-7 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.26.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-pom-3.4.0-5.el9 (FEDORA-EPEL-2026-5af2dc982d) PEG parser combinators using operator overloading without macros -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.4.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.4.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Fri Mar 8 2024 Fabio Valentini <decathorpe(a)gmail.com> - 3.4.0-1 - Update to version 3.4.0; Fixes RHBZ#2268116 * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.3.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-pore-0.1.17-11.el9 (FEDORA-EPEL-2026-5af2dc982d) Performance oriented reimplementation of repo -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.17-11 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.17-10 - Bump git2 dependency to v0.20 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.17-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-procs-0.14.10-7.el9 (FEDORA-EPEL-2026-5af2dc982d) Modern replacement for ps -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.14.10-7 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.14.10-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-prometheus-client-0.19.0-6.el9 (FEDORA-EPEL-2026-5af2dc982d) Open Metrics client library allowing users to natively instrument applications -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.19.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.19.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.19.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.19.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.19.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-prometheus-client-derive-encode-0.4.2-6.el9 (FEDORA-EPEL-2026-5af2dc982d) Auxiliary crate to derive Encode trait from prometheus-client -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-rbw-1.13.2-5.el9 (FEDORA-EPEL-2026-5af2dc982d) Unofficial Bitwarden CLI -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.13.2-5 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.13.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-rd-agent-2.2.5-14.el9 (FEDORA-EPEL-2026-5af2dc982d) Management agent for resctl-demo -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.2.5-14 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-rd-hashd-2.2.5-10.el9 (FEDORA-EPEL-2026-5af2dc982d) Latency-sensitive pseudo workload for resctl-demo -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.2.5-10 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-resctl-bench-2.2.5-10.el9 (FEDORA-EPEL-2026-5af2dc982d) Whole system resource control benchmarks with realistic scenarios -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.2.5-10 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-resctl-demo-2.2.5-9.el9 (FEDORA-EPEL-2026-5af2dc982d) Guided tour of Linux resource control with live demos -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.2.5-9 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-routinator-0.14.2-4.el9 (FEDORA-EPEL-2026-5af2dc982d) RPKI relying party software -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.14.2-4 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.14.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.14.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-rustyline-derive0.10-0.10.0-2.el9 (FEDORA-EPEL-2026-5af2dc982d) Rustyline derive macros (Completer, Helper, Hinter, Highlighter) -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.10.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Thu Dec 18 2025 Fabio Valentini <decathorpe(a)gmail.com> - 0.10.0-1 - Initial import (rustyline-derive 0.10 compat package) -------------------------------------------------------------------------------- ================================================================================ rust-rustyline14-14.0.0-2.el9 (FEDORA-EPEL-2026-5af2dc982d) Readline implementation based on Antirez's Linenoise -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 14.0.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Thu Dec 18 2025 Fabio Valentini <decathorpe(a)gmail.com> - 14.0.0-1 - Initial import (rustyline 14 compat package) -------------------------------------------------------------------------------- ================================================================================ rust-scx_layered-0.0.6-7.el9 (FEDORA-EPEL-2026-5af2dc982d) Configurable multi-layer BPF / user space hybrid scheduler -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.0.6-7 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.6-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.6-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Thu May 23 2024 Fabio Valentini <decathorpe(a)gmail.com> - 0.0.6-2 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces -------------------------------------------------------------------------------- ================================================================================ rust-scx_rustland-0.0.3-7.el9 (FEDORA-EPEL-2026-5af2dc982d) A simple user-space scheduler written in Rust -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.0.3-7 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.3-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.3-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Thu May 23 2024 Fabio Valentini <decathorpe(a)gmail.com> - 0.0.3-2 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces -------------------------------------------------------------------------------- ================================================================================ rust-scx_rusty-0.5.4-7.el9 (FEDORA-EPEL-2026-5af2dc982d) A multi-domain, BPF / user space hybrid scheduler -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.4-7 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.4-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Thu May 23 2024 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.4-2 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces -------------------------------------------------------------------------------- ================================================================================ rust-scx_utils-0.6.0-6.el9 (FEDORA-EPEL-2026-5af2dc982d) Utilities for sched_ext schedulers -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 23 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.6.0-6 - Bump bindgen dependency to 0.72 and fix i686 build * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.6.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.6.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.6.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.6.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Mon Jan 29 2024 Jordan Rome <jordalgo(a)fedoraproject.org> - 0.6.0-1 - Updated to 0.6.0 * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-sequoia-keystore-server-0.2.0-6.el9 (FEDORA-EPEL-2026-5af2dc982d) Sequoia keystore daemon -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.0-6 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 -------------------------------------------------------------------------------- ================================================================================ rust-sequoia-sq-1.3.1-10.el9 (FEDORA-EPEL-2026-5af2dc982d) Command-line frontends for Sequoia -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.3.1-10 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 -------------------------------------------------------------------------------- ================================================================================ rust-shadow-rs-0.8.1-14.el9 (FEDORA-EPEL-2026-5af2dc982d) Build-time information stored in your rust project -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.8.1-14 - Bump git2 dependency to v0.20 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.1-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.1-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.1-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-sigul-pesign-bridge-0.5.0-3.el9 (FEDORA-EPEL-2026-5af2dc982d) Bridge pesign-client requests to a Sigul signing server -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.0-3 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-time-0.3.47-1.el9 (FEDORA-EPEL-2026-5af2dc982d) Date and time library -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.3.47-1 - Update to version 0.3.47; Fixes RHBZ#2428874 -------------------------------------------------------------------------------- ================================================================================ rust-time-core-0.1.8-1.el9 (FEDORA-EPEL-2026-5af2dc982d) Internal implementation details of the 'time' crate -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.8-1 - Update to version 0.1.8; Fixes RHBZ#2428875 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-time-macros-0.2.27-1.el9 (FEDORA-EPEL-2026-5af2dc982d) Procedural macros for the time crate -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.27-1 - Update to version 0.2.27; Fixes RHBZ#2428876 -------------------------------------------------------------------------------- ================================================================================ rust-tokei-14.0.0-4.el9 (FEDORA-EPEL-2026-5af2dc982d) Count your code, quickly -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 14.0.0-4 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 14.0.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-weezl-0.1.12-3.el9 (FEDORA-EPEL-2026-5af2dc982d) Fast LZW compression and decompression -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.12-3 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.12-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild --------------------------------------------------------------------------------

1 0

Fedora EPEL 10.2 updates-testing report
by updates＠fedoraproject.org 08 Feb '26

08 Feb '26

The following builds have been pushed to Fedora EPEL 10.2 updates-testing ascii-3.31-1.el10_2 baresip-4.5.0-1.el10_2 fcitx5-gtk-5.1.5-2.el10_2 helix-25.07.1-7.el10_2 libre-4.5.0-1.el10_2 maturin-1.9.6-3.el10_2 ntpd-rs-1.6.2-3.el10_2 partclone-0.3.45-1.el10_2 rust-ambient-id-0.0.8-1.el10_2 rust-bat-0.24.0-13.el10_2 rust-below-0.9.0-6.el10_2 rust-bytes-1.11.1-1.el10_2 rust-cargo-c-0.10.18-3.el10_2 rust-git2-0.20.4-1.el10_2 rust-jsonwebtoken-9.3.1-4.el10_2 rust-libdeflate-sys-1.25.2-1.el10_2 rust-libdeflater-1.25.2-1.el10_2 rust-num-conv-0.2.0-1.el10_2 rust-onefetch-2.26.1-7.el10_2 rust-rbw-1.13.2-5.el10_2 rust-routinator-0.14.2-4.el10_2 rust-speakersafetyd-1.0.2-6.el10_2 rust-time-0.3.47-1.el10_2 rust-time-core-0.1.8-1.el10_2 rust-time-macros-0.2.27-1.el10_2 rust-tokei-14.0.0-4.el10_2 rust-weezl-0.1.12-3.el10_2 tegrarcm-1.9-1.el10_2 uv-0.9.30-2.el10_2 xcb-imdkit-1.0.9-6.el10_2 Details about builds: ================================================================================ ascii-3.31-1.el10_2 (FEDORA-EPEL-2026-a31108b12c) Interactive ascii name and synonym chart -------------------------------------------------------------------------------- Update Information: Update from upstream. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Didier Fabert <didier.fabert(a)gmail.com> - 3.31-1 - Update to 3.31 version * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.30-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437581 - ascii-3.31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437581 -------------------------------------------------------------------------------- ================================================================================ baresip-4.5.0-1.el10_2 (FEDORA-EPEL-2026-c33b10af47) Modular SIP user-agent with audio and video support -------------------------------------------------------------------------------- Update Information: Baresip v4.5.0 (2026-01-28) rtprecv: fix race condition after video-display was closed account: added ;check_origin parameter and API functions to get and set it peerconn: always call close handler on destruct account: misc improvements in core and test rtprecv: fix tmr_cancel decode data race audio: remove audio_txtelev_empty() -- unused rtprecv: check re_thread_init() return value test: use insecure warning (not needed for tests) readme,license: update for new year audio: remove audio_set_hold() -- unused test: split test/call.c test: add peer-connection test cases uag: uag_filter_calls() support unlink in listh mixausrc: rework test: use audio_txtelev_empty() to check if DTMF was sent test: add usage of more audio_xxx() functions in peerconn-test audio: optimize source mutex handling mixausrc sanitizer and EOS fixes test mixausrc httpd: print err instead of no reply test: disable DNS-client cache in test_call_sni -- ref #3620 libre v4.5.0 (2026-01-28) net: remove net_if_getaddr4() -- deprecated test: add testing of dtls_set_handlers() api h265: use h264_find_startcode() -- duplicated code fmt: str_bool: reuse similar logic in pl_bool() net: cleanup fallback return fmt/print: add backtrace for incompatible format arguments btrace: fix for linux addr2line rtp: add RTP listen on single port copyright: update for new year async: do not hold lock during cb call docs: fix README.md document include tmr: improve thread list lock handling aumix: add aumix_source_put_auframe and deprecate aumix_source_put rtp/sess: fix ts_arrive calculation -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Robert Scheck <robert(a)fedoraproject.org> 4.5.0-1 - Upgrade to 4.5.0 (#2433734) * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2433715 - libre-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433715 [ 2 ] Bug #2433734 - baresip-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433734 -------------------------------------------------------------------------------- ================================================================================ fcitx5-gtk-5.1.5-2.el10_2 (FEDORA-EPEL-2026-453dce8c51) Gtk im module and glib based dbus client library -------------------------------------------------------------------------------- Update Information: Just release what we have while waiting for dependencies -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Mon Dec 22 2025 Qiyu Yan <yanqiyu(a)fedoraproject.org> - 5.1.5-1 - update to upstream release 5.1.5 * Wed Jul 23 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Mon Jun 16 2025 Qiyu Yan <yanqiyu(a)fedoraproject.org> - 5.1.4-1 - update to upstream release 5.1.4 * Thu Jan 16 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Aug 28 2024 Miroslav Suchý <msuchy(a)redhat.com> - 5.1.3-3 - convert license to SPDX * Wed Jul 17 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Tue Apr 23 2024 Qiyu Yan <yanqiyu(a)fedoraproject.org> - 5.1.3-1 - update to upstream release 5.1.3 * Fri Mar 1 2024 Qiyu Yan <yanqiyu(a)fedoraproject.org> - 5.1.2-1 - update to upstream release 5.1.2 * Mon Jan 29 2024 Karuboniru <yanqiyu(a)fedoraproject.org> - 5.1.1-4 - fix FTBFS with GCC 14 * Wed Jan 24 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ helix-25.07.1-7.el10_2 (FEDORA-EPEL-2026-dea517c7d2) A post-modern modal text editor written in Rust -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 25.07.1-7 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 25.07.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ libre-4.5.0-1.el10_2 (FEDORA-EPEL-2026-c33b10af47) Generic library for real-time communications -------------------------------------------------------------------------------- Update Information: Baresip v4.5.0 (2026-01-28) rtprecv: fix race condition after video-display was closed account: added ;check_origin parameter and API functions to get and set it peerconn: always call close handler on destruct account: misc improvements in core and test rtprecv: fix tmr_cancel decode data race audio: remove audio_txtelev_empty() -- unused rtprecv: check re_thread_init() return value test: use insecure warning (not needed for tests) readme,license: update for new year audio: remove audio_set_hold() -- unused test: split test/call.c test: add peer-connection test cases uag: uag_filter_calls() support unlink in listh mixausrc: rework test: use audio_txtelev_empty() to check if DTMF was sent test: add usage of more audio_xxx() functions in peerconn-test audio: optimize source mutex handling mixausrc sanitizer and EOS fixes test mixausrc httpd: print err instead of no reply test: disable DNS-client cache in test_call_sni -- ref #3620 libre v4.5.0 (2026-01-28) net: remove net_if_getaddr4() -- deprecated test: add testing of dtls_set_handlers() api h265: use h264_find_startcode() -- duplicated code fmt: str_bool: reuse similar logic in pl_bool() net: cleanup fallback return fmt/print: add backtrace for incompatible format arguments btrace: fix for linux addr2line rtp: add RTP listen on single port copyright: update for new year async: do not hold lock during cb call docs: fix README.md document include tmr: improve thread list lock handling aumix: add aumix_source_put_auframe and deprecate aumix_source_put rtp/sess: fix ts_arrive calculation -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Robert Scheck <robert(a)fedoraproject.org> 4.5.0-1 - Upgrade to 4.5.0 (#2433715) * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2433715 - libre-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433715 [ 2 ] Bug #2433734 - baresip-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433734 -------------------------------------------------------------------------------- ================================================================================ maturin-1.9.6-3.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Build and publish Rust crates as Python packages -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.9.6-3 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ ntpd-rs-1.6.2-3.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Full-featured implementation of NTP with NTS support -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.6.2-3 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Fri Jan 16 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ partclone-0.3.45-1.el10_2 (FEDORA-EPEL-2026-1e11667a9c) Utility to clone and restore a partition -------------------------------------------------------------------------------- Update Information: partclone v0.3.45 Fix make for distclean and maintainer-clean -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 5 2026 Robert Scheck <robert(a)fedoraproject.org> 0.3.45-1 - Upgrade to 0.3.45 (#2435871) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435871 - partclone-0.3.45 is available https://bugzilla.redhat.com/show_bug.cgi?id=2435871 -------------------------------------------------------------------------------- ================================================================================ rust-ambient-id-0.0.8-1.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Detects ambient OIDC credentials in a variety of environments -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 3 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.0.8-1 - Update to version 0.0.8 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.0.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-bat-0.24.0-13.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Cat(1) clone with wings -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.24.0-13 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-below-0.9.0-6.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Interactive tool to view and record historical system data -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.9.0-6 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-bytes-1.11.1-1.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Types and traits for working with bytes -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.11.1-1 - Update to version 1.11.1; Fixes RHBZ#2436335 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.11.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-cargo-c-0.10.18-3.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Helper program to build and install c-like libraries -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.10.18-3 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.10.18-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-git2-0.20.4-1.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Bindings to libgit2 for interoperating with git repositories -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.20.4-1 - Update to version 0.20.4; Fixes RHBZ#2436014 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-jsonwebtoken-9.3.1-4.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Create and decode JWTs in a strongly typed way -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 9.3.1-4 - Backport fix for CVE-2026-25537 - Fixes RHBZ#2437470; fixes RHBZ#2437465; fixes RHBZ#2437460 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 9.3.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-libdeflate-sys-1.25.2-1.el10_2 (FEDORA-EPEL-2026-350051b552) Bindings to libdeflate for DEFLATE -------------------------------------------------------------------------------- Update Information: [1.25.2] - 2026/02/08 Added Crc::with_initial and Adler32::with_initial constructors (#52, thanks @vbe0201). [1.25.1] - 2026/02/07 Implemented the Sync trait for Compressor and Decompressor (#51, thanks @vbe0201). -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.25.2-1 - Update to version 1.25.2; Fixes RHBZ#2437507 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.25.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437506 - rust-libdeflater-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437506 [ 2 ] Bug #2437507 - rust-libdeflate-sys-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437507 -------------------------------------------------------------------------------- ================================================================================ rust-libdeflater-1.25.2-1.el10_2 (FEDORA-EPEL-2026-350051b552) Bindings to libdeflate for DEFLATE -------------------------------------------------------------------------------- Update Information: [1.25.2] - 2026/02/08 Added Crc::with_initial and Adler32::with_initial constructors (#52, thanks @vbe0201). [1.25.1] - 2026/02/07 Implemented the Sync trait for Compressor and Decompressor (#51, thanks @vbe0201). -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.25.2-1 - Update to version 1.25.2; Fixes RHBZ#2437506 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.25.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437506 - rust-libdeflater-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437506 [ 2 ] Bug #2437507 - rust-libdeflate-sys-1.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2437507 -------------------------------------------------------------------------------- ================================================================================ rust-num-conv-0.2.0-1.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Num_conv is a crate to convert between integer types without using as casts -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.0-1 - Update to version 0.2.0; Fixes RHBZ#2391411 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-onefetch-2.26.1-7.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Command-line Git information tool -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 2.26.1-7 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.26.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-rbw-1.13.2-5.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Unofficial Bitwarden CLI -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.13.2-5 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.13.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-routinator-0.14.2-4.el10_2 (FEDORA-EPEL-2026-dea517c7d2) RPKI relying party software -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.14.2-4 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.14.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.14.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-speakersafetyd-1.0.2-6.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Speaker protection daemon for embedded Linux systems -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 1.0.2-6 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Tue Dec 16 2025 Fabio Valentini <decathorpe(a)gmail.com> - 1.0.2-4 - Relax alsa dependency to allow both v0.9 and v0.10 * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-time-0.3.47-1.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Date and time library -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.3.47-1 - Update to version 0.3.47; Fixes RHBZ#2428874 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.44-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-time-core-0.1.8-1.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Internal implementation details of the 'time' crate -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.8-1 - Update to version 0.1.8; Fixes RHBZ#2428875 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-time-macros-0.2.27-1.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Procedural macros for the time crate -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 6 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.27-1 - Update to version 0.2.27; Fixes RHBZ#2428876 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.24-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-tokei-14.0.0-4.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Count your code, quickly -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 14.0.0-4 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 14.0.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ rust-weezl-0.1.12-3.el10_2 (FEDORA-EPEL-2026-dea517c7d2) Fast LZW compression and decompression -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.12-3 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.12-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ tegrarcm-1.9-1.el10_2 (FEDORA-EPEL-2026-f416101830) Send code to a Tegra device in recovery mode -------------------------------------------------------------------------------- Update Information: Update to tegrarcm 1.9 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Nicolas Chauvet <kwizart(a)gmail.com> - 1.9-1 - Update to 1.9 * Tue Jan 20 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8-30 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8-29 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Tue Feb 4 2025 Nicolas Chauvet <kwizart(a)gmail.com> - 1.8-28 - Rebuilt #2 for cryptopp * Tue Feb 4 2025 Nicolas Chauvet <kwizart(a)gmail.com> - 1.8-27 - Rebuilt for cryptopp * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8-26 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Sep 4 2024 Miroslav Suchý <msuchy(a)redhat.com> - 1.8-25 - convert license to SPDX * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8-24 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ uv-0.9.30-2.el10_2 (FEDORA-EPEL-2026-dea517c7d2) An extremely fast Python package installer and resolver, written in Rust -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 8 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.9.30-2 - Rebuilt with jsonwebtoken patched for CVE-2026-25537 - Fixes RHBZ#2437472; fixes RHBZ#2437467; fixes RHBZ#2437461 * Thu Feb 5 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.9.30-1 - Update to 0.9.30 (close RHBZ#2437002) * Wed Feb 4 2026 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.9.29-1 - Update to 0.9.29 (close RHBZ#2436550) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437460 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437460 [ 2 ] Bug #2437461 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2437461 -------------------------------------------------------------------------------- ================================================================================ xcb-imdkit-1.0.9-6.el10_2 (FEDORA-EPEL-2026-453dce8c51) Input method development support for xcb -------------------------------------------------------------------------------- Update Information: Just release what we have while waiting for dependencies -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 17 2026 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.9-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.9-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Jan 19 2025 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Sep 4 2024 Miroslav Suchý <msuchy(a)redhat.com> - 1.0.9-3 - convert license to SPDX * Sat Jul 20 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Sat Jun 1 2024 Qiyu Yan <yanqiyu(a)fedoraproject.org> - 1.0.9-1 - update to upstream release 1.0.9 * Tue Apr 23 2024 Qiyu Yan <yanqiyu(a)fedoraproject.org> - 1.0.8-1 - update to upstream release 1.0.8 * Fri Mar 1 2024 Qiyu Yan <yanqiyu(a)fedoraproject.org> - 1.0.7-1 - update to upstream release 1.0.7 * Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild --------------------------------------------------------------------------------

1 0

Jump to page:

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

epel-devel