The following Fedora EPEL 9 Security updates need testing:
Age URL
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-d9153eda95
salt-3005.2-1.el9
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-d7c164b6bb
borgbackup-1.2.6-1.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
calceph-3.5.3-2.el9
chromium-116.0.5845.179-1.el9
classification-banner-1.7.1-4.el9
eccodes-2.31.0-1.el9
gitqlient-1.6.2-1.el9
homebank-5.7-1.el9
lexertl14-0.1.0-16.20230904git86c90c3.el9
nfdump-1.7.3-1.el9
parallel-20230822-1.el9
postfix-mta-sts-resolver-1.4.0-2.el9
python-calcephpy-3.5.3-2.el9
rdiff-backup-2.2.6-1.el9
rust-path-absolutize-3.1.1-1.el9
rust-path-dedot-3.1.1-1.el9
xpra-5.0.1-2.el9
Details about builds:
================================================================================
calceph-3.5.3-2.el9 (FEDORA-EPEL-2023-600769b702)
Astronomical library to access planetary ephemeris files
--------------------------------------------------------------------------------
Update Information:
Update to 3.5.3
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Mattia Verga <mattia.verga(a)proton.me> - 3.5.3-2
- Correctly disable static libs building
* Wed Sep 6 2023 Mattia Verga <mattia.verga(a)proton.me> - 3.5.3-1
- Update to 3.5.3 (fedora#2237641)
* Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.5.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
chromium-116.0.5845.179-1.el9 (FEDORA-EPEL-2023-3efeaee7e4)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
update to 116.0.5845.179. Fixes following security issues: CVE-2023-4427
CVE-2023-4428 CVE-2023-4429 CVE-2023-4430 CVE-2023-4431 CVE-2023-4572
CVE-2023-4761 CVE-2023-4762 CVE-2023-4763 CVE-2023-4764
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 8 2023 Than Ngo <than(a)redhat.com> - 116.0.5845.179-1
- update to 116.0.5845.179
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2234749 - CVE-2023-4427 CVE-2023-4428 CVE-2023-4429 CVE-2023-4430
CVE-2023-4431 chromium: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2234749
[ 2 ] Bug #2234750 - CVE-2023-4427 CVE-2023-4428 CVE-2023-4429 CVE-2023-4430
CVE-2023-4431 chromium: various flaws [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2234750
[ 3 ] Bug #2235800 - CVE-2023-4572 chromium: chromium-browser: Use after free in
MediaStream [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2235800
[ 4 ] Bug #2235801 - CVE-2023-4572 chromium: chromium-browser: Use after free in
MediaStream [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2235801
[ 5 ] Bug #2236152 - CVE-2021-29390 chromium: libjpeg-turbo: heap-buffer-overflow
vulnerability in decompress_smooth_data in jdcoefct.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2236152
[ 6 ] Bug #2237509 - CVE-2023-4761 CVE-2023-4762 CVE-2023-4763 CVE-2023-4764 chromium:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2237509
[ 7 ] Bug #2237510 - CVE-2023-4761 CVE-2023-4762 CVE-2023-4763 CVE-2023-4764 chromium:
various flaws [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2237510
--------------------------------------------------------------------------------
================================================================================
classification-banner-1.7.1-4.el9 (FEDORA-EPEL-2023-3bd6e2d3bc)
Displays Classification Banner for a Graphical Session
--------------------------------------------------------------------------------
Update Information:
Initial release for EPEL9
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Daniel Milnes <daniel(a)daniel-milnes.uk> - 1.7.1-4
- Make sure patches are actually in git
* Sat Sep 9 2023 Daniel Milnes <daniel(a)daniel-milnes.uk> - 1.7.1-3
- Migrate to SPDX format
* Sat Sep 9 2023 Daniel Milnes <daniel(a)daniel-milnes.uk> - 1.7.1-2
- Migrate to pyproject_srpm_macros
* Sat Sep 9 2023 Daniel Milnes <daniel(a)daniel-milnes.uk> - 1.7.1-1
- Update to 1.7.1-ish (fedora#2219961)
* Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.7.0-22
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jun 15 2023 Python Maint <python-maint(a)redhat.com> - 1.7.0-21
- Rebuilt for Python 3.12
* Wed Jan 18 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.7.0-20
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.7.0-19
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.7.0-18
- Rebuilt for Python 3.11
* Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.7.0-17
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
eccodes-2.31.0-1.el9 (FEDORA-EPEL-2023-4116d8d8a7)
WMO data format decoding and encoding
--------------------------------------------------------------------------------
Update Information:
Upgrade to upstream version 2.31.0
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Jos de Kloe <josdekloe(a)gmail.com> - 2.31.0-1
- Upgrade to upstream version 2.31.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2236797 - request to upgrade to upstream version 2.31.0
https://bugzilla.redhat.com/show_bug.cgi?id=2236797
--------------------------------------------------------------------------------
================================================================================
gitqlient-1.6.2-1.el9 (FEDORA-EPEL-2023-441a3ba5a1)
Multi-platform Git client written with Qt
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Artem Polishchuk <ego.cordatus(a)gmail.com> - 1.6.2-1
- chore: Update to 1.6.2
* Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
homebank-5.7-1.el9 (FEDORA-EPEL-2023-80eaea72a5)
Free easy personal accounting for all
--------------------------------------------------------------------------------
Update Information:
update to homebank 5.7
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Filipe Rosset <rosset.filipe(a)gmail.com> - 5.7-1
- homebank-5.7
* Sat Aug 19 2023 Filipe Rosset <rosset.filipe(a)gmail.com> - 5.6.6-1
- update to homebank-5.6.6
* Sun Jul 30 2023 Filipe Rosset <rosset.filipe(a)gmail.com> - 5.6.5-1
- update homebank to 5.6.5
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.6.3-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri Mar 31 2023 Filipe Rosset <rosset.filipe(a)gmail.com> - 5.6.3-1
- update homebank to 5.6.3
* Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.6.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Mon Jan 9 2023 Filipe Rosset <rosset.filipe(a)gmail.com> - 5.6.1-1
- Update to 5.6.1
* Sun Dec 25 2022 Filipe Rosset <rosset.filipe(a)gmail.com> - 5.6-1
- Update to 5.6, fixes rhbz#2151122
* Sun Oct 16 2022 Mukundan Ragavan <nonamedotc(a)gmail.com> - 5.5.8-1
- Update to v5.5.8
* Sun Oct 9 2022 Mukundan Ragavan <nonamedotc(a)gmail.com> - 5.5.7-1
- Update to 5.5.7
* Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.5.6-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue Jun 28 2022 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 5.5.6-1
- Update to 5.5.6 (fixes rhbz#2101905)
* Mon Apr 18 2022 Filipe Rosset <rosset.filipe(a)gmail.com> - 5.5.5-1
- Update to 5.5.5 fixes rhbz#2076316
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.5.4-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Tue Jan 11 2022 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 5.5.4-1
- Update to 5.5.4 (Fixes rhbz#1991241)
--------------------------------------------------------------------------------
================================================================================
lexertl14-0.1.0-16.20230904git86c90c3.el9 (FEDORA-EPEL-2023-4f482155c9)
The Modular Lexical Analyser Generator
--------------------------------------------------------------------------------
Update Information:
Update to the latest commit
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-16
- Use a proper patch to fix multilib paths, and offer it upstream
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-14
- Improve the Summary
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-13
- Update to 86c90c3 (Restore the ability to run tests with BUILD_TESTING
and ctest)
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-12
- Update to 5bd3180
- Changed from std::size_t to uint16_t for ease of use
- Added missing #include and functions
- regex macro BOL and EOL fixes
- Added exit state syntax check for missing right chevron
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-11
- Update to c4bcaf8
- More SonarLint etc changes
- Applied SA changes
- Added tests
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-10
- Update to 2e2893c
- Added replace.hpp
- Now throwing exception in case of stack underflow
- Updated serialization support
- More use of auto
- Use cend()
- More UTF-32 support
- Added stream_num.hpp
- Fixed #include
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-9
- Update to aeddda8 (Unicode 15.1.0 and other minor enhancements)
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-8
- Indicate dirs. in files list with trailing slashes
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-7
- Update to 8b8ead2 (Update to the latest Unicode standard)
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-6
- Update License to SPDX
* Sat Sep 9 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-5
- Update to cd5a1f1 (Unicode 15)
--------------------------------------------------------------------------------
================================================================================
nfdump-1.7.3-1.el9 (FEDORA-EPEL-2023-de22beb74a)
NetFlow collecting and processing tools
--------------------------------------------------------------------------------
Update Information:
Nfdump-1.7.3 adds zstd compression speeds compression (multi threading) and adds
compression levels. Furthermore it fixes some nfprofile issues.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 8 2023 Denis Fateyev <denis(a)fateyev.com> - 1.7.3-1
- Update to version 1.7.3
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.7.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2237021 - nfdump-1.7.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2237021
--------------------------------------------------------------------------------
================================================================================
parallel-20230822-1.el9 (FEDORA-EPEL-2023-eb03e53b33)
Shell tool for executing jobs in parallel
--------------------------------------------------------------------------------
Update Information:
update to 20230822
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Filipe Rosset <rosset.filipe(a)gmail.com> - 20230822-1
- update to parallel-20230822
--------------------------------------------------------------------------------
================================================================================
postfix-mta-sts-resolver-1.4.0-2.el9 (FEDORA-EPEL-2023-1099a6978c)
Daemon providing MTA-STS map to Postfix
--------------------------------------------------------------------------------
Update Information:
GPG Verify Downloaded Code
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Daniel Milnes <daniel(a)daniel-milnes.uk> - 1.4.0-2
- GPG Verify Downloaded Code
* Sat Sep 9 2023 Daniel Milnes <daniel(a)daniel-milnes.uk> - 1.4.0-1
- Update to 1.4.0 and pyproject-rpm-macros
* Sat Sep 9 2023 Daniel Milnes <daniel(a)daniel-milnes.uk> - 1.1.4-6
- Switch to %autorelease and %autochangelog
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.4-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.4-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Oct 26 2022 Marc Dequ��nes (Duck) <duck(a)redhat.com> - 1.1.4-3
- Updated postfix-mta-sts-resolver_tests_without_redis.patch
* Wed Oct 26 2022 Marc Dequ��nes (Duck) <duck(a)redhat.com> - 1.1.4-2
- Recommends now available uvloop
* Wed Oct 26 2022 Marc Dequ��nes (Duck) <duck(a)redhat.com> - 1.1.4-1
- NUR
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue Jun 14 2022 Python Maint <python-maint(a)redhat.com> - 1.0.0-8
- Rebuilt for Python 3.11
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-calcephpy-3.5.3-2.el9 (FEDORA-EPEL-2023-600769b702)
Astronomical library to access planetary ephemeris files
--------------------------------------------------------------------------------
Update Information:
Update to 3.5.3
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Mattia Verga <mattia.verga(a)protonm.me> - 3.5.3-2
- Fix build flags
* Wed Sep 6 2023 Mattia Verga <mattia.verga(a)protonm.me> - 3.5.3-1
- Update to 3.5.3 (fedora#2237640)
- Fix compatibility with Cython 3.x (fedora#2226167)
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.5.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Tue Jun 13 2023 Python Maint <python-maint(a)redhat.com> - 3.5.2-2
- Rebuilt for Python 3.12
--------------------------------------------------------------------------------
================================================================================
rdiff-backup-2.2.6-1.el9 (FEDORA-EPEL-2023-a47669fcd1)
Convenient and transparent local/remote incremental mirror/backup
--------------------------------------------------------------------------------
Update Information:
Final minor release v2.2.6 - Fedora/EPEL Release
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Frank Crawford <frank(a)crawford.emu.id.au> - 2.2.6-2
- Final minor release v2.2.6 - Fedora/EPEL Release
* Fri Sep 8 2023 Frank Crawford <frank(a)crawford.emu.id.au> - 2.2.6-1
- Final minor release v2.2.6 - COPR Release
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Tue Jun 13 2023 Python Maint <python-maint(a)redhat.com> - 2.2.5-3
- Rebuilt for Python 3.12
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2238101 - rdiff-backup-2.2.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2238101
--------------------------------------------------------------------------------
================================================================================
rust-path-absolutize-3.1.1-1.el9 (FEDORA-EPEL-2023-7732618127)
Extend Path and PathBuf for getting an absolute path
--------------------------------------------------------------------------------
Update Information:
- Update the path-absolutize crate to version 3.1.1. - Update the path-dedot
crate to version 3.1.1.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Fabio Valentini <decathorpe(a)gmail.com> - 3.1.1-1
- Update to version 3.1.1; Fixes RHBZ#2238144
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-path-dedot-3.1.1-1.el9 (FEDORA-EPEL-2023-7732618127)
Parse path with dots in Path and PathBuf
--------------------------------------------------------------------------------
Update Information:
- Update the path-absolutize crate to version 3.1.1. - Update the path-dedot
crate to version 3.1.1.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 9 2023 Fabio Valentini <decathorpe(a)gmail.com> - 3.1.1-1
- Update to version 3.1.1; Fixes RHBZ#2238145
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
xpra-5.0.1-2.el9 (FEDORA-EPEL-2023-4b68da6938)
Remote display server for applications and desktops
--------------------------------------------------------------------------------
Update Information:
- Release 5.0.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 2 2023 Antonio Trande <sagitter(a)fedoraproject.org> - 5.0.1-2
- Add python3-cups BR
* Sat Sep 2 2023 Antonio Trande <sagitter(a)fedoraproject.org> - 5.0.1-1
- Release 5.0.1
* Sun Aug 27 2023 Antonio Trande <sagitter(a)fedoraproject.org> - 5.0-1
- Release 5.0
* Sat Jul 22 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.6-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Mon Jun 26 2023 Python Maint <python-maint(a)redhat.com> - 4.4.6-2
- Rebuilt for Python 3.12
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2232870 - xpra-5.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2232870
--------------------------------------------------------------------------------