The following Fedora EPEL 8 Security updates need testing:
Age URL
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-0214580ca4
mbedtls-2.16.8-1.el8
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-c5ced83bcc
seamonkey-2.53.4-1.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-11f765300e
singularity-3.6.3-1.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-17fdec3133
zeromq-4.3.3-1.el8
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-9720b9f379
matio-1.5.18-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
boinc-client-7.16.6-6.el8
chromium-85.0.4183.102-1.el8
fwknop-2.6.10-6.el8
pysvn-1.9.12-2.el8
swift-lang-5.3-1.el8
Details about builds:
================================================================================
boinc-client-7.16.6-6.el8 (FEDORA-EPEL-2020-63b70e698c)
The BOINC client
--------------------------------------------------------------------------------
Update Information:
renamed .desktop file
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 18 2020 Germano Massullo <germano.massullo(a)gmail.com> - 7.16.6-6
- Renamed boinc-manager.desktop to boincmgr.desktop This fixes
https://bugzilla.redhat.com/show_bug.cgi?id=1880553
* Sat Aug 1 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 7.16.6-5
- Second attempt - Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 7.16.6-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
chromium-85.0.4183.102-1.el8 (FEDORA-EPEL-2020-b65eda12a7)
A WebKit (Blink) powered web browser
--------------------------------------------------------------------------------
Update Information:
Update Chromium to 85.0.4183.102. Fix issue where unpackaged components
prevented hardware accelerated rendering from working. Also fixes the following
security issues: CVE-2020-6573 CVE-2020-6574 CVE-2020-6575 CVE-2020-6576
CVE-2020-15959
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 8 2020 Tom Callaway <spot(a)fedoraproject.org> - 85.0.4183.102-1
- update to 85.0.4183.102
- install ANGLE so files (libEGL.so, libGLESv2.so)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1877090 - CVE-2020-6573 chromium-browser: Use after free in video
https://bugzilla.redhat.com/show_bug.cgi?id=1877090
[ 2 ] Bug #1877091 - CVE-2020-6574 chromium-browser: Insufficient policy enforcement in
installer
https://bugzilla.redhat.com/show_bug.cgi?id=1877091
[ 3 ] Bug #1877093 - CVE-2020-6575 chromium-browser: Race in Mojo
https://bugzilla.redhat.com/show_bug.cgi?id=1877093
[ 4 ] Bug #1877094 - CVE-2020-6576 chromium-browser: Use after free in offscreen canvas
https://bugzilla.redhat.com/show_bug.cgi?id=1877094
[ 5 ] Bug #1877095 - CVE-2020-15959 chromium-browser: Insufficient policy enforcement in
networking
https://bugzilla.redhat.com/show_bug.cgi?id=1877095
--------------------------------------------------------------------------------
================================================================================
fwknop-2.6.10-6.el8 (FEDORA-EPEL-2020-5563a42c86)
A Single Packet Authorization (SPA) implementation
--------------------------------------------------------------------------------
Update Information:
New package for EPEL 8
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1880380 - Request to package fwknop for EPEL 8
https://bugzilla.redhat.com/show_bug.cgi?id=1880380
--------------------------------------------------------------------------------
================================================================================
pysvn-1.9.12-2.el8 (FEDORA-EPEL-2020-839f5018b1)
Pythonic style bindings for Subversion
--------------------------------------------------------------------------------
Update Information:
Package for epel8
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1868606 - [EPEL8][RFE] pysvn for EPEL8
https://bugzilla.redhat.com/show_bug.cgi?id=1868606
--------------------------------------------------------------------------------
================================================================================
swift-lang-5.3-1.el8 (FEDORA-EPEL-2020-147c567d24)
Apple's Swift programming language
--------------------------------------------------------------------------------
Update Information:
Updated to swift-5.3-RELEASE
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 17 2020 Ron Olson <tachoknight(a)gmail.com> 5.3-1
- Updated to swift-5.3-RELEASE
--------------------------------------------------------------------------------