The following Fedora EPEL 9 Security updates need testing:
Age URL
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-ad53379349
suricata-6.0.16-1.el9
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-1cefeeb8f5
cpp-jwt-1.4-7.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
chromium-122.0.6261.94-1.el9
dante-1.4.3-2.el9
lexertl14-0.1.0-25.20240301git3097246.el9
lexertl17-2024.02.17^20240301gitfc939f3-2.el9
packit-0.93.0-1.el9
perl-Net-IP-Match-Regexp-1.01-36.el9
resalloc-openstack-9.8-1.el9
spamassassin-iXhash2-2.05-26.el9
waycheck-1.1.1-1.el9
xarchiver-0.5.4.23-1.el9
Details about builds:
================================================================================
chromium-122.0.6261.94-1.el9 (FEDORA-EPEL-2024-99e002f742)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
Upstream security release 122.0.6261.94
High CVE-2024-1938: Type Confusion in V8
High CVE-2024-1939: Type Confusion in V8
Update to 122.0.6261.69
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 28 2024 Than Ngo <than(a)redhat.com> - 122.0.6261.94-1
- upstream security release 122.0.6261.94
* High : Type Confusion in V8
- fixed bz#2265957, added correct platform in chromium use agent
* Tue Feb 27 2024 ��ukasz Wojni��owicz <lukasz.wojnilowicz(a)gmail.com> -
122.0.6261.69-3
- Make building of chromedriver optional
* Tue Feb 27 2024 Jiri Vanek <jvanek(a)redhat.com> - 122.0.6261.69-2
- Rebuilt for java-21-openjdk as system jdk
* Fri Feb 23 2024 Than Ngo <than(a)redhat.com> - 122.0.6261.69-1
- update to 122.0.6261.69
- fix build error on el8
- bz#2265039, built with -fwrapv for improved memory safety
- bz#2265043, built with -ftrivial-auto-var-init=zero for improved security and
preditability
* Wed Feb 21 2024 Than Ngo <than(a)redhat.com> - 122.0.6261.57-1
- update to 122.0.6261.57
* High CVE-2024-1669: Out of bounds memory access in Blink
* High CVE-2024-1670: Use after free in Mojo
* Medium CVE-2024-1671: Inappropriate implementation in Site Isolation
* Medium CVE-2024-1672: Inappropriate implementation in Content Security Policy
* Medium CVE-2024-1673: Use after free in Accessibility
* Medium CVE-2024-1674: Inappropriate implementation in Navigation
* Medium CVE-2024-1675: Insufficient policy enforcement in Download
* Low CVE-2024-1676: Inappropriate implementation in Navigation.
* Sun Feb 18 2024 Than Ngo <than(a)redhat.com> - 122.0.6261.39-1
- update to 122.0.6261.39
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2265256 - CVE-2024-1669 CVE-2024-1670 CVE-2024-1671 CVE-2024-1672
CVE-2024-1673 CVE-2024-1674 CVE-2024-1675 CVE-2024-1676 chromium: various flaws
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2265256
[ 2 ] Bug #2265957 - x86_64 user agent in arm platform
https://bugzilla.redhat.com/show_bug.cgi?id=2265957
[ 3 ] Bug #2266933 - CVE-2024-1938 chromium: type confusion [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2266933
[ 4 ] Bug #2266936 - CVE-2024-1939 chromium: type confusion [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2266936
--------------------------------------------------------------------------------
================================================================================
dante-1.4.3-2.el9 (FEDORA-EPEL-2024-8db5f70cde)
A free SOCKS v4/v5 client implementation
--------------------------------------------------------------------------------
Update Information:
Exclude *.la files for older RPM versions
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 1 2024 Tim Semeijn <tim(a)goat.re> - 1.4.3-2
- Exclude *.la files for older RPM versions
* Sun Feb 11 2024 Tim Semeijn <tim(a)goat.re> - 1.4.3-1
- Initial import (fedora#2228155).
--------------------------------------------------------------------------------
================================================================================
lexertl14-0.1.0-25.20240301git3097246.el9 (FEDORA-EPEL-2024-4dfdba8121)
The Modular Lexical Analyser Generator
--------------------------------------------------------------------------------
Update Information:
Initial package for lexertl17.
Add Conflicts in lexertl14, fix the examples, and move them into the devel
package.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-25
- Fix Obsoletes for lexertl14-examples
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-24
- Update to 0.1.0^20240301git3097246, with upstream fix for examples
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-23
- Add Conflicts with new lexertl17-devel
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-22
- Move the examples into the -devel subpackage
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-21
- Do not install useless CMakeLists.txt files with examples
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.1.0-20
- Ensure the examples actually compile
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2264587 - Review Request: lexertl17 - The Modular Lexical Analyser Generator
https://bugzilla.redhat.com/show_bug.cgi?id=2264587
--------------------------------------------------------------------------------
================================================================================
lexertl17-2024.02.17^20240301gitfc939f3-2.el9 (FEDORA-EPEL-2024-4dfdba8121)
The Modular Lexical Analyser Generator
--------------------------------------------------------------------------------
Update Information:
Initial package for lexertl17.
Add Conflicts in lexertl14, fix the examples, and move them into the devel
package.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> -
2024.02.17^20240301gitfc939f3-2
- Adjust spec file syntax for older RPM versions
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> -
2024.02.17^20240301gitfc939f3-1
- Test-build the examples and install them as documentation
* Fri Mar 1 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 2024.02.17-1
- Initial package (close RHBZ#2264587)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2264587 - Review Request: lexertl17 - The Modular Lexical Analyser Generator
https://bugzilla.redhat.com/show_bug.cgi?id=2264587
--------------------------------------------------------------------------------
================================================================================
packit-0.93.0-1.el9 (FEDORA-EPEL-2024-7339568641)
A tool for integrating upstream projects with Fedora operating system
--------------------------------------------------------------------------------
Update Information:
Automatic update for packit-0.93.0-1.el9.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 26 2024 Packit <hello(a)packit.dev> - 0.93.0-1
- Packit now checks the version to propose against the version in specfile and doesn't
create downgrade PRs. (#2239)
--------------------------------------------------------------------------------
================================================================================
perl-Net-IP-Match-Regexp-1.01-36.el9 (FEDORA-EPEL-2024-25d8eb3846)
Efficiently match IP addresses against ranges
--------------------------------------------------------------------------------
Update Information:
This package provides the Perl module Net::IP::Match::Regexp, which allows you
to check an IP address against one or more IP ranges.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 1 2024 Emmanuel Seyman <emmanuel(a)seyman.fr> - 1.01-36
- Use /usr/bin/perl instead of %{__perl}
- Use %license for the LICENSE file
* Thu Jan 25 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.01-35
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.01-34
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.01-33
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.01-32
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.01-31
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue May 31 2022 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.01-30
- Perl 5.36 rebuild
--------------------------------------------------------------------------------
================================================================================
resalloc-openstack-9.8-1.el9 (FEDORA-EPEL-2024-01e390ba9c)
Resource allocator scripts for OpenStack
--------------------------------------------------------------------------------
Update Information:
new upstream release:
https://github.com/praiskup/resalloc-
openstack/releases/tag/v9.8
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 1 2024 Pavel Raiskup <praiskup(a)redhat.com> - 9.8-1
- new upstream release:
https://github.com/praiskup/resalloc-openstack/releases/tag/v9.8
--------------------------------------------------------------------------------
================================================================================
spamassassin-iXhash2-2.05-26.el9 (FEDORA-EPEL-2024-e179f5b291)
SpamAssassin plugin to lookup e-mail checksums in blacklists
--------------------------------------------------------------------------------
Update Information:
Update iXhash default configuration blacklists
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 1 2024 Robert Scheck <robert(a)fedoraproject.org> 2.05-26
- Update iXhash default configuration blacklists
* Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.05-25
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sat Jul 22 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.05-24
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Sat Jan 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.05-23
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.05-22
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
waycheck-1.1.1-1.el9 (FEDORA-EPEL-2024-d1dab8a0f3)
Simple GUI that displays protocols implemented by a Wayland compositor
--------------------------------------------------------------------------------
Update Information:
Changes
Make the tab widget frameless
Update branding colors in metainfo.xml
http -> https in some links in metainfo.xml
Add release URLs and additional release metadata in metainfo.xml
Clarify recommended display length and screenshot types in metainfo.xml
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 1 2024 Neal Gompa <ngompa(a)fedoraproject.org> - 1.1.1-1
- Update to 1.1.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2267194 - waycheck-1.1.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2267194
--------------------------------------------------------------------------------
================================================================================
xarchiver-0.5.4.23-1.el9 (FEDORA-EPEL-2024-89a5f58ea8)
Archive manager for Xfce
--------------------------------------------------------------------------------
Update Information:
bugfixes
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 1 2024 Fedora Release Monitoring <release-monitoring(a)fedoraproject.org> -
0.5.4.23-1
- Update to 0.5.4.23 (rhbz#2267148)
* Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> -
0.5.4.22-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2267148 - xarchiver-0.5.4.23 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2267148
--------------------------------------------------------------------------------