The following Fedora EPEL 8 Security updates need testing:
Age URL
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-8f073f9e87
opendmarc-1.4.1.1-3.el8
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-9ca0db533c
kitty-0.19.3-1.el8
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-8676850578
chromium-91.0.4472.164-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
classpathless-compiler-1.4-1.el8
gnome-shell-extension-system-monitor-applet-38-14.20210722git9a96c54.el8
mock-centos-sig-configs-0.3-1.el8
tor-0.4.5.9-1.el8
Details about builds:
================================================================================
classpathless-compiler-1.4-1.el8 (FEDORA-EPEL-2021-31aafe39f6)
Tool for recompiling java sources with customizable class providers
--------------------------------------------------------------------------------
Update Information:
Update to upstream version 1.4 ---- Initial release
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1977799 - Review Request: classpathless-compiler - Tool for recompiling java
sources with customizable class providers
https://bugzilla.redhat.com/show_bug.cgi?id=1977799
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-system-monitor-applet-38-14.20210722git9a96c54.el8
(FEDORA-EPEL-2021-268d6a046d)
A Gnome shell system monitor extension
--------------------------------------------------------------------------------
Update Information:
Updated to last upstream commits
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jul 22 2021 Nicolas Vi��ville <nicolas.vieville(a)uphf.fr> -
1:38-14.20210722git9a96c54
- Updated to last upstream commits
- Added GPU stats for AMDGPU
- Added support for displaying GPU memory in the chart
- Add support for display scale factor
- Small fixes to thermal monitoring
- Added support for gnome-shell 40 - Removed Fedora patches (applied upstream)
- Remove clutter dependency on GNOME 40
- Improve graph settings and rendering
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:38-13.20210507gitbc38ccf
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
mock-centos-sig-configs-0.3-1.el8 (FEDORA-EPEL-2021-111674c70a)
Mock configs for CentOS SIGs
--------------------------------------------------------------------------------
Update Information:
Update to 0.3
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 21 2021 Davide Cavalca <dcavalca(a)fedoraproject.org> - 0.3-1
- Update to 0.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1984700 - mock-centos-sig-configs-0.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1984700
--------------------------------------------------------------------------------
================================================================================
tor-0.4.5.9-1.el8 (FEDORA-EPEL-2021-1b74f2e3ca)
Anonymizing overlay network for TCP
--------------------------------------------------------------------------------
Update Information:
update to latest upstream release - fixes CVE-2021-34548, CVE-2021-34549,
CVE-2021-34550
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1972880 - CVE-2021-34548 tor: RELAY_END or RELAY_RESOLVED spoofing
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1972880
[ 2 ] Bug #1972883 - CVE-2021-34549 tor: hashtable-based CPU denial-of-service attack
against relays [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1972883
[ 3 ] Bug #1972887 - CVE-2021-34550 tor: out-of-bounds memory access in v3 onion service
descriptor parsing [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1972887
--------------------------------------------------------------------------------