The following Fedora EPEL 8 Security updates need testing: Age URL 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-b15161810d pdns-4.3.1-1.el8 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-69c0102261 singularity-3.6.4-1.el8 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-b7912a8edb suricata-5.0.4-1.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-e85de73cdb pdns-recursor-4.3.5-1.el8

The following builds have been pushed to Fedora EPEL 8 updates-testing

gnome-shell-extension-topicons-plus-25-1.el8 inxi-3.1.08-1.el8 openbgpd-6.8p0-1.el8 rpki-client-6.8p0-1.el8 tcpreplay-4.3.3-3.el8

Details about builds:

================================================================================ gnome-shell-extension-topicons-plus-25-1.el8 (FEDORA-EPEL-2020-5a3f87696b) Move all legacy tray icons to the top panel -------------------------------------------------------------------------------- Update Information:

Create EPEL 8 branch for TopIcons Plus. -------------------------------------------------------------------------------- ChangeLog:

-------------------------------------------------------------------------------- References:

[ 1 ] Bug #1886815 - Please build gnome-shell-extension-topicons-plus for EPEL 8 https://bugzilla.redhat.com/show_bug.cgi?id=1886815 --------------------------------------------------------------------------------

================================================================================ inxi-3.1.08-1.el8 (FEDORA-EPEL-2020-601ae5fd2c) A full featured system information script -------------------------------------------------------------------------------- Update Information:

Update to 3.1.08. -------------------------------------------------------------------------------- ChangeLog:

* Wed Oct 21 2020 Vasiliy N. Glazov vascom2@gmail.com - 3.1.08-1 - Update to 3.1.08 --------------------------------------------------------------------------------

================================================================================ openbgpd-6.8p0-1.el8 (FEDORA-EPEL-2020-85fe8d4e17) OpenBGPD Routing Daemon -------------------------------------------------------------------------------- Update Information:

OpenBGPD 6.8p0 ============== Portable release based on OpenBSD 6.8. It includes the following changes to the previous release: * In `bgpctl(8)`, the `reload` command now takes a 'reason' argument to use as Administrative Shutdown Communication to its neighbors. * Added `bgpctl(8)` support for VPNv6 in the family option of the `show rib` command. * Added `bgpctl(8)` support for JSON formatted output in various `show` commands. * Support to build OpenBGPD on Alpine Linux added. -------------------------------------------------------------------------------- ChangeLog:

* Tue Oct 20 2020 Robert Scheck robert@fedoraproject.org 6.8p0-1 - Upgrade to 6.8p0 (#1889826) * Tue Jul 28 2020 Fedora Release Engineering releng@fedoraproject.org - 6.7p0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1889826 - openbgpd-6.8p0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1889826 --------------------------------------------------------------------------------

================================================================================ rpki-client-6.8p0-1.el8 (FEDORA-EPEL-2020-d96758b687) RPKI validator to support BGP Origin Validation -------------------------------------------------------------------------------- Update Information:

rpki-client 6.8p0 ================= Portable release based on OpenBSD 6.8. It includes the following changes to the previous release: * Improve how repositories are downloaded: do not fetch symlinks and clean extraneous files in the repositories after download using the cryptographically signed RPKI manifest listings. * Fix a bug where `rpki-client` could hang after calling `rsync`. * Remove the `-f` option, no longer needed. * Improved validation of the trust anchors. * Add new option `-s timeout` to make `rpki-client` automatically terminate after a timeout (default 1 hour). This helps when `rpki-client` is run via `cron` to prevent a hanging process to cause problems. Portability improvements: * Replace `warnc()` with `warnx()` + `strerror()` * Replace `b64_pton()` with code using the `libcrypto EVP_Decode*` functionality. * Adjust for OpenSSL 1.1.x compatible use of the `EVP_ENCODE_CTX` struct. -------------------------------------------------------------------------------- ChangeLog:

* Tue Oct 20 2020 Robert Scheck robert@fedoraproject.org 6.8p0-1 - Upgrade to 6.8p0 (#1889618) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1889618 - rpki-client-6.8p0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1889618 --------------------------------------------------------------------------------

================================================================================ tcpreplay-4.3.3-3.el8 (FEDORA-EPEL-2020-6ef54b7a2d) Replay captured network traffic -------------------------------------------------------------------------------- Update Information:

Patch CVE-2020-24265 and CVE-2020-24266. -------------------------------------------------------------------------------- ChangeLog:

* Wed Oct 21 2020 Bojan Smojver <bojan@rexursive com> - 4.3.3-2 - CVE-2020-24265 * Wed Jul 29 2020 Fedora Release Engineering releng@fedoraproject.org - 4.3.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1889806 - CVE-2020-24265 tcpreplay: heap buffer overflow could result in a crash [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1889806 [ 2 ] Bug #1889807 - CVE-2020-24265 tcpreplay: heap buffer overflow could result in a crash [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1889807 [ 3 ] Bug #1889809 - CVE-2020-24266 tcpreplay: heap buffer overflow in get_l2len() could result in a crash [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1889809 [ 4 ] Bug #1889810 - CVE-2020-24266 tcpreplay: heap buffer overflow in get_l2len() could result in a crash [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1889810 --------------------------------------------------------------------------------