The following Fedora EPEL 8 Security updates need testing:
Age URL
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-b9fd954bc5
seamonkey-2.53.10-2.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
R-littler-0.3.15-1.el8
isync-1.4.4-1.el8
nordugrid-arc-6.14.0-1.el8
pspg-5.5.1-1.el8
salt-lint-0.8.0-2.el8
Details about builds:
================================================================================
R-littler-0.3.15-1.el8 (FEDORA-EPEL-2021-99a734cb8c)
littler: R at the Command-Line via 'r'
--------------------------------------------------------------------------------
Update Information:
littler 0.3.15
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2021 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 0.3.15-1
- New upstream release 0.3.15
--------------------------------------------------------------------------------
================================================================================
isync-1.4.4-1.el8 (FEDORA-EPEL-2021-b43e85f297)
Tool to synchronize IMAP4 and Maildir mailboxes
--------------------------------------------------------------------------------
Update Information:
Update to fix CVE-2021-3578, CVE-2021-3657, and CVE-2021-44143
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 3 2021 Dan ��erm��k <dan.cermak(a)cgc-instruments.com> - 1.4.4-1
- New upstream release 1.4.4
- Fixes rhbz#2028810
- Fixes CVE-2021-3657
- Fixes CVE-2021-44143
* Tue Sep 14 2021 Sahana Prasad <sahana(a)redhat.com> - 1.4.3-2
- Rebuilt with OpenSSL 3.0.0
* Thu Aug 26 2021 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.4.3-1
- Update to latest upstream release 1.4.3 (rhbz#1987273)
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Mon Jun 7 2021 Dan ��erm��k <dan.cermak(a)cgc-instruments.com> - 1.4.2-1
- New upstream release 1.4.2
- Fixes CVE-2021-3578
- Fixes rhbz#1968431
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1968627 - CVE-2021-3578 isync: unchecked pointer cast may lead to remote code
execution [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1968627
[ 2 ] Bug #2027174 - CVE-2021-44143 isync: specially crafted mail message may cause heap
overflow [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2027174
[ 3 ] Bug #2028934 - CVE-2021-3657 isync: buffer overflows due to inadequate handling of
extremely large IMAP literals [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2028934
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-6.14.0-1.el8 (FEDORA-EPEL-2021-399b39a5bb)
Advanced Resource Connector Middleware
--------------------------------------------------------------------------------
Update Information:
ARC 6.14
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2021 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.14.0-1
- Update to version 6.14.0
- Drop patch nordugrid-arc-openssl3.patch (accepted upstream)
--------------------------------------------------------------------------------
================================================================================
pspg-5.5.1-1.el8 (FEDORA-EPEL-2021-d0132ee6b8)
A unix pager optimized for psql
--------------------------------------------------------------------------------
Update Information:
new upstream release, per release notes
https://github.com/okbob/pspg/releases/tag/5.5.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2021 Pavel Raiskup <praiskup(a)redhat.com> - 5.5.1-1
- new upstream release, per release notes:
https://github.com/okbob/pspg/releases/tag/5.5.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2013560 - pspg-5.5.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2013560
--------------------------------------------------------------------------------
================================================================================
salt-lint-0.8.0-2.el8 (FEDORA-EPEL-2021-5ce06b5cef)
Salt State file (SLS) lint tool
--------------------------------------------------------------------------------
Update Information:
Added automatic dependency generator
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2021 Robby Callicotte <rcallicotte(a)fedoraproject.org> - 0.8.0-2
- Added automatic dependency generator
* Wed Nov 10 2021 Robby Callicotte <rcallicotte(a)mailbox.org> - 0.8.0-1
- Version bump
* Mon Nov 1 2021 Robby Callicotte <rcallicotte(a)mailbox.org> - 0.7.0-1
- Version bump
* Sat Oct 9 2021 Robby Callicotte <rcallicotte(a)mailbox.org> - 0.6.1-1
- Initial build
--------------------------------------------------------------------------------