https://bugzilla.redhat.com/show_bug.cgi?id=2235422
Bug ID: 2235422
Summary: CVE-2020-24292 freeimage: buffer overflow in load() in
PluginICO.cpp [fedora-all]
Product: Fedora
Version: 38
Status: NEW
Component: freeimage
Keywords: Security, SecurityTracking
Severity: high
Priority: high
Assignee: bruno(a)wolff.to
Reporter: gsuckevi(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: bruno(a)wolff.to,
epel-packagers-sig(a)lists.fedoraproject.org,
hobbes1069(a)gmail.com, i(a)cicku.me, manisandro(a)gmail.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2235419
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2235422
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2240764
Bug ID: 2240764
Summary: python-xarray-2023.9.0 is available
Product: Fedora
Version: rawhide
Status: NEW
Component: python-xarray
Keywords: FutureFeature, Triaged
Assignee: quantum.analyst(a)gmail.com
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
jonathan(a)almalinux.org,
python-packagers-sig(a)lists.fedoraproject.org,
quantum.analyst(a)gmail.com
Target Milestone: ---
Classification: Fedora
Releases retrieved: 2023.9.0
Upstream release that is considered latest: 2023.9.0
Current version/release in rawhide: 2023.8.0-1.fc40
URL: https://github.com/pydata/xarray
Please consult the package updates policy before you issue an update to a
stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/
More information about the service that created this bug can be found at:
https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M…
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from Anitya:
https://release-monitoring.org/project/19523/
To change the monitoring settings for the project, please visit:
https://src.fedoraproject.org/rpms/python-xarray
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2240764
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2240850
Bug ID: 2240850
Summary: blender-3.6.4 is available
Product: Fedora
Version: rawhide
Status: NEW
Component: blender
Keywords: FutureFeature, Triaged
Assignee: luya_tfz(a)thefinalzone.net
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: code(a)musicinmybrain.net,
design-devel(a)lists.fedoraproject.org,
epel-packagers-sig(a)lists.fedoraproject.org,
kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net,
negativo17(a)gmail.com
Target Milestone: ---
Classification: Fedora
Releases retrieved: 3.6.4
Upstream release that is considered latest: 3.6.4
Current version/release in rawhide: 3.6.3-4.fc40
URL: https://www.blender.org/
Please consult the package updates policy before you issue an update to a
stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/
More information about the service that created this bug can be found at:
https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M…
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from Anitya:
https://release-monitoring.org/project/201/
To change the monitoring settings for the project, please visit:
https://src.fedoraproject.org/rpms/blender
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2240850
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2240662
Bug ID: 2240662
Summary: python-partd-1.4.1 is available
Product: Fedora
Version: rawhide
Status: NEW
Component: python-partd
Keywords: FutureFeature, Triaged
Assignee: quantum.analyst(a)gmail.com
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
jonathan(a)almalinux.org,
python-packagers-sig(a)lists.fedoraproject.org,
quantum.analyst(a)gmail.com
Target Milestone: ---
Classification: Fedora
Releases retrieved: 1.4.1
Upstream release that is considered latest: 1.4.1
Current version/release in rawhide: 1.4.0-4.fc39
URL: https://github.com/dask/partd/
Please consult the package updates policy before you issue an update to a
stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/
More information about the service that created this bug can be found at:
https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M…
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from Anitya:
https://release-monitoring.org/project/15853/
To change the monitoring settings for the project, please visit:
https://src.fedoraproject.org/rpms/python-partd
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2240662
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2246348
Bug ID: 2246348
Summary: requires libraw_r.so
Product: Fedora EPEL
Version: epel9
Hardware: x86_64
OS: Linux
Status: NEW
Component: ImageMagick
Severity: medium
Assignee: luya_tfz(a)thefinalzone.net
Reporter: peljasz(a)yahoo.co.uk
QA Contact: extras-qa(a)fedoraproject.org
CC: blaise(a)gmail.com, davide(a)cavalca.name,
epel-packagers-sig(a)lists.fedoraproject.org,
fedora(a)famillecollet.com, luya_tfz(a)thefinalzone.net,
michel(a)michel-slm.name, ngompa13(a)gmail.com,
pampelmuse(a)gmx.at, sergio(a)serjux.com
Target Milestone: ---
Classification: Fedora
Description of problem:
-> $ dnf update
Last metadata expiration check: 0:00:49 ago on Thu 26 Oct 2023 12:51:34 CEST.
Error:
Problem: cannot install the best update candidate for package
ImageMagick-libs-6.9.12.93-1.el9.x86_64
- problem with installed package ImageMagick-libs-6.9.12.93-1.el9.x86_64
- package ImageMagick-libs-6.9.12.93-1.el9.x86_64 from @System requires
libraw_r.so.20()(64bit), but none of the providers can be installed
- cannot install the best update candidate for package
LibRaw-0.20.2-6.el9.x86_64
- cannot install both LibRaw-0.21.1-1.el9.x86_64 from appstream and
LibRaw-0.20.2-6.el9.x86_64 from @System
- cannot install both LibRaw-0.21.1-1.el9.x86_64 from appstream and
LibRaw-0.20.2-4.el9.x86_64 from appstream
- cannot install both LibRaw-0.21.1-1.el9.x86_64 from appstream and
LibRaw-0.20.2-5.el9.x86_64 from appstream
- cannot install both LibRaw-0.21.1-1.el9.x86_64 from appstream and
LibRaw-0.20.2-6.el9.x86_64 from appstream
(try to add '--skip-broken' to skip uninstallable packages or '--nobest' to use
not only best candidate packages)
Version-Release number of selected component (if applicable):
How reproducible:
Steps to Reproduce:
1.
2.
3.
Actual results:
Expected results:
Additional info:
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2246348
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2241844
Bug ID: 2241844
Summary: notmuch: -mutt and -vim subpackages are not
installable from EPEL 9
Product: Fedora EPEL
Version: epel9
Status: NEW
Component: notmuch
Assignee: mjg(a)fedoraproject.org
Reporter: carl(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
mjg(a)fedoraproject.org
Depends On: 2088496
Target Milestone: ---
Classification: Fedora
Description of problem:
notmuch-mutt and notmuch-vim are not installable from EPEL 9 due to missing
dependencies.
Version-Release number of selected component (if applicable):
notmuch-mutt-0.36-5.el9
notmuch-vim-0.36-5.el9
How reproducible:
always
Steps to Reproduce:
1. dnf install notmuch-mutt notmuch-vim
Actual results:
Error:
Problem 1: conflicting requests
- nothing provides perl(Mail::Box::Maildir) needed by
notmuch-mutt-0.36-5.el9.noarch
Problem 2: conflicting requests
- nothing provides rubygem-mail needed by notmuch-vim-0.36-5.el9.x86_64
Expected results:
successful installation
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=2088496
[Bug 2088496] please provide an EPEL 9 build of rubygem-mail
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2241844
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2247068
Bug ID: 2247068
Summary: python-nbconvert-7.10.0 is available
Product: Fedora
Version: rawhide
Status: NEW
Component: python-nbconvert
Keywords: FutureFeature, Triaged
Assignee: nonamedotc(a)gmail.com
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
jonathan(a)almalinux.org, lbalhar(a)redhat.com,
mhroncok(a)redhat.com, nonamedotc(a)gmail.com,
python-packagers-sig(a)lists.fedoraproject.org
Target Milestone: ---
Classification: Fedora
Releases retrieved: 7.10.0
Upstream release that is considered latest: 7.10.0
Current version/release in rawhide: 7.9.1-1.fc40
URL: https://jupyter.org/
Please consult the package updates policy before you issue an update to a
stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/
More information about the service that created this bug can be found at:
https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M…
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from Anitya:
https://release-monitoring.org/project/10522/
To change the monitoring settings for the project, please visit:
https://src.fedoraproject.org/rpms/python-nbconvert
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2247068
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…