Fedora EPEL 8 updates-testing report - epel-devel - Fedora mailing-lists

1 May 2021


      The following Fedora EPEL 8 Security updates need testing:
 Age  URL
  10  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-0754fdd085   openvpn-2.4.11-1.el8
   8  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-24ab212ee8   p7zip-16.02-20.el8
   4  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-3a1aaec707   pngcheck-2.4.0-8.el8
   4  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-b308580516   perl-Image-ExifTool-12.16-3.el8
   4  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-bbc31e5925   java-latest-openjdk-16.0.1.0.9-1.rolling.el8
   4  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-33433b2f22   python-yara-4.1.0-1.el8 yara-4.1.0-1.el8
   0  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-a3a4866065   libopenmpt-0.5.8-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
keepassxc-2.6.4-2.el8
    openbgpd-6.9p0-1.el8
    osslsigncode-2.1-3.el8
    python-markdown2-2.4.0-1.el8
    wireguard-tools-1.0.20210424-1.el8
    xorgxrdp-0.2.16-1.el8
    zchunk-1.1.11-1.el8
Details about builds:
================================================================================
 keepassxc-2.6.4-2.el8 (FEDORA-EPEL-2021-5008bacf01)
 Cross-platform password manager
--------------------------------------------------------------------------------
Update Information:
xcb fix for GNOME
--------------------------------------------------------------------------------
ChangeLog:
* Sat May  1 2021 Germano Massullo germano.massullo@gmail.com - 2.6.4-2
- added xcb.patch that fixes GNOME quirks on Wayland sessions. Read https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/...
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1941731 - KeePassXC do not start on centos 8
        https://bugzilla.redhat.com/show_bug.cgi?id=1941731
--------------------------------------------------------------------------------
================================================================================
 openbgpd-6.9p0-1.el8 (FEDORA-EPEL-2021-f99560d576)
 OpenBGPD Routing Daemon
--------------------------------------------------------------------------------
Update Information:
OpenBGPD 6.9p0 ==============  This is the first stable release for the 6.9
version. It includes the following changes:    * Introduced `bgpd(8)` `rde
evaluate all` to reduce path hiding in IXP route-server environments.   * Added
RTR support to OpenBGPD.   * Added `bgpctl(8)` `show rtr` to display basic
information about RTR sessions.   * Added `bgpctl(8)` `show sets` to display
information about the `roa-set`, `as-sets` and `prefix-sets` loaded into
`bgpd(8)`.   * Properly implemented `rde med compare strict` in `bgpd(8)` and
ensured that the order of prefixes is always correct.   * Introduced the
`bgpd.conf(5)` per neighbor and global config option `reject as-set yes/no` to
allow rejection of received `UPDATES` with `AS_SET` segments. These rejected
prefixes can be viewed with `bgpctl show rib in error`.   * No longer allow
configuration of the same neighbor multiple times.   * Introduced a send hold
timer in `bgpd(8)` to detect stalls on the sending side of a TCP connection,
acting as a last resort to detect faulty peers.   * `pf(4)` tables track now
prefixes correctly even when received by multiple sessions.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 30 2021 Robert Scheck robert@fedoraproject.org 6.9p0-1
- Upgrade to 6.9p0 (#1955524)
* Tue Mar  2 2021 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 6.8p1-3
- Rebuilt for updated systemd-rpm-macros
  See https://pagure.io/fesco/issue/2583.
* Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 6.8p1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1955524 - openbgpd-6.9p0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1955524
--------------------------------------------------------------------------------
================================================================================
 osslsigncode-2.1-3.el8 (FEDORA-EPEL-2021-aaded2d5c8)
 OpenSSL based Authenticode signing for PE/MSI/Java CAB files
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1955804 - please build osslsigncode for epel8
        https://bugzilla.redhat.com/show_bug.cgi?id=1955804
--------------------------------------------------------------------------------
================================================================================
 python-markdown2-2.4.0-1.el8 (FEDORA-EPEL-2021-9be66bdb10)
 A fast and complete Python implementation of Markdown
--------------------------------------------------------------------------------
Update Information:
#### python-markdown2 2.4.0  - [pull #377] Fixed bug breaking strings elements
in metadata lists - [pull #380] When rendering fenced code blocks, also add the
`language-LANG` class - [pull #387] Regex DoS fixes
--------------------------------------------------------------------------------
ChangeLog:
* Sat May  1 2021 Thomas Moschny thomas.moschny@gmx.de - 2.4.0-1
- Update to 2.4.0.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1934836 - CVE-2021-26813 python-markdown2: Regular expression denial of service [epel-8]
        https://bugzilla.redhat.com/show_bug.cgi?id=1934836
--------------------------------------------------------------------------------
================================================================================
 wireguard-tools-1.0.20210424-1.el8 (FEDORA-EPEL-2021-ce9838bb51)
 Fast, modern, secure VPN tunnel
--------------------------------------------------------------------------------
Update Information:
- wg-quick: freebsd: check for socket using -S, not -f - wg-quick: freebsd: do
not assume point-to-point interface flag - wg-quick: freebsd: use ifconfig for
determining if interface is up - wg-quick: kill route monitor when loop
terminates
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 30 2021 Joe Doss joe@solidadmin.com - 1.0.20210424-1
- wg-quick: freebsd: check for socket using -S, not -f
- wg-quick: freebsd: do not assume point-to-point interface flag
- wg-quick: freebsd: use ifconfig for determining if interface is up
- wg-quick: kill route monitor when loop terminates
--------------------------------------------------------------------------------
================================================================================
 xorgxrdp-0.2.16-1.el8 (FEDORA-EPEL-2021-d00c8fe42f)
 Implementation of xrdp backend as Xorg modules
--------------------------------------------------------------------------------
Update Information:
xorgxrdp v0.2.16 has been released.  This version includes following features &
fixes:  - Move to GitHub Actions for CI (#182, #191) - Improve stability of
xorgxrdp when resolution changes during a session ("dynamic resolution") (#183)
- Add client_info version check (#184) - Add some glamor build checks/help
(#185)
--------------------------------------------------------------------------------
ChangeLog:
* Sat May  1 2021 Bojan Smojver bojan@rexursive.com - 0.2.16-1
- Bump up to 0.2.16
* Wed Apr 14 2021 Bojan Smojver bojan@rexursive.com - 0.2.15-2
- Rebuild against xorg-x11-server 1.20.11
* Thu Jan 28 2021 Fedora Release Engineering releng@fedoraproject.org - 0.2.15-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
 zchunk-1.1.11-1.el8 (FEDORA-EPEL-2021-771dc76275)
 Compressed file format that allows easy deltas
--------------------------------------------------------------------------------
Update Information:
Fix rare bug that occurs when trying to download separate chunks for certain
specific webservers
--------------------------------------------------------------------------------
ChangeLog:
* Sat May  1 2021 Jonathan Dieter jdieter@gmail.com - 1.1.11-1
- Fix multipart download failures on rare web servers
* Thu Jan 28 2021 Fedora Release Engineering releng@fedoraproject.org - 1.1.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------