October 2023 - Epel-packagers-sig - Fedora mailing-lists

[Bug 2243233] New: golang-github-google-cmp-0.6.0 is available
by bugzilla＠redhat.com 07 Dec '23

07 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2243233 Bug ID: 2243233 Summary: golang-github-google-cmp-0.6.0 is available Product: Fedora Version: rawhide Status: NEW Component: golang-github-google-cmp Keywords: FutureFeature, Triaged Assignee: mikel(a)olasagasti.info Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, go-sig(a)lists.fedoraproject.org, jchaloup(a)redhat.com, mikel(a)olasagasti.info Target Milestone: --- Classification: Fedora Releases retrieved: 0.6.0 Upstream release that is considered latest: 0.6.0 Current version/release in rawhide: 0.5.9-2.fc39 URL: https://github.com/google/go-cmp Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/16240/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/golang-github-google-cmp -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2243233 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 4

[Bug 2162399] New: CVE-2022-46175 yarnpkg: json5: Prototype Pollution in JSON5 via Parse Method [fedora-37]
by bugzilla＠redhat.com 07 Dec '23

07 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2162399 Bug ID: 2162399 Summary: CVE-2022-46175 yarnpkg: json5: Prototype Pollution in JSON5 via Parse Method [fedora-37] Product: Fedora Version: 37 Status: NEW Component: yarnpkg Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: zsvetlik(a)redhat.com Reporter: ahanwate(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, manisandro(a)gmail.com, ngompa13(a)gmail.com, zsvetlik(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2156263 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2162399

1 4

[Bug 2154741] New: Asterisk SELinux preventing /proc/sys/net/ipv4/ip_local_port_range access
by bugzilla＠redhat.com 06 Dec '23

06 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2154741 Bug ID: 2154741 Summary: Asterisk SELinux preventing /proc/sys/net/ipv4/ip_local_port_range access Product: Fedora Version: 37 Hardware: x86_64 OS: Linux Status: NEW Component: asterisk Severity: high Assignee: jsmith.fedora(a)gmail.com Reporter: arcadiy(a)ivanov.biz QA Contact: extras-qa(a)fedoraproject.org CC: bennie.joubert(a)jsdaav.com, epel-packagers-sig(a)lists.fedoraproject.org, jsmith.fedora(a)gmail.com, rbryant(a)redhat.com Target Milestone: --- Classification: Fedora Description of problem: Dec 18 22:47:16 hostname audit[3224]: AVC avc: denied { search } for pid=3224 comm="asterisk" name="net" dev="proc" ino=174 scontext=system_u:system_r:asterisk_t:s0 tcontext=system_u:object_r:sysctl_net_t:s0 tclass=dir permissive=0 Dec 18 22:47:16 hostname asterisk[3224]: [1671421636] libunbound[3224:0] error: failed to read from file: /proc/sys/net/ipv4/ip_local_port_range (Permission denied) Version-Release number of selected component (if applicable): 18.12.1-1.fc37.1 How reproducible: Always Steps to Reproduce: 1. Install 2. Start with SELinux policy active 3. Observe error -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2154741

1 2

[Bug 2152840] New: [abrt] meld: g_settings_set_property(): python3.11 killed by SIGTRAP
by bugzilla＠redhat.com 06 Dec '23

06 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2152840 Bug ID: 2152840 Summary: [abrt] meld: g_settings_set_property(): python3.11 killed by SIGTRAP Product: Fedora Version: 37 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:9486b5cfac5ed9f58f788fce07321270f1211c4b; Component: meld Assignee: dmaphy(a)fedoraproject.org Reporter: kvolny(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: cwickert(a)fedoraproject.org, dmaphy(a)fedoraproject.org, epel-packagers-sig(a)lists.fedoraproject.org, lkundrak(a)v3.sk, michel(a)michel-slm.name Target Milestone: --- Classification: Fedora Description of problem: I've tried to compare two mp3 files ... not sure if meld does binary, I just wanted to try, but if it doesn't, it should throw error instead of crashing. Version-Release number of selected component: meld-3.22.0-1.fc37 Additional info: reporter: libreport-2.17.4 backtrace_rating: 4 cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-org.kde.konsole-a4992fdaf323437892db4897a174631d.scope cmdline: /usr/bin/python3 /usr/bin/meld ./Track11.mp3 $'/home/kvolny/tmp/Záviš/Záviš - 2002 - Sejdeme se na věčnosti/11 Konvenční vagabund.mp3' crash_function: g_settings_set_property executable: /usr/bin/python3.11 journald_cursor: s=b520fb1724e544ef8569f6fc75c0ec83;i=ec9847e;b=4ab27b716b9f4b27a5eb96f87898a2c3;m=1420bc5282;t=5efb17abf6fda;x=bfd15c051fb31584 kernel: 6.0.12-300.fc37.x86_64 rootdir: / runlevel: N 5 type: CCpp uid: 1000 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2152840

1 2

[Bug 2150951] New: CVE-2022-37325 asterisk: Remote Crash Vulnerability in H323 channel add on [fedora-all]
by bugzilla＠redhat.com 06 Dec '23

06 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2150951 Bug ID: 2150951 Summary: CVE-2022-37325 asterisk: Remote Crash Vulnerability in H323 channel add on [fedora-all] Product: Fedora Version: 37 Status: NEW Component: asterisk Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: jsmith.fedora(a)gmail.com Reporter: zmiele(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: bennie.joubert(a)jsdaav.com, epel-packagers-sig(a)lists.fedoraproject.org, jsmith.fedora(a)gmail.com, rbryant(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2150949 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2150951

1 4

[Bug 2150945] New: CVE-2022-42705 asterisk: Use after free in res_pjsip_pubsub.c [fedora-all]
by bugzilla＠redhat.com 06 Dec '23

06 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2150945 Bug ID: 2150945 Summary: CVE-2022-42705 asterisk: Use after free in res_pjsip_pubsub.c [fedora-all] Product: Fedora Version: 37 Status: NEW Component: asterisk Keywords: Security, SecurityTracking Severity: low Priority: low Assignee: jsmith.fedora(a)gmail.com Reporter: zmiele(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: bennie.joubert(a)jsdaav.com, epel-packagers-sig(a)lists.fedoraproject.org, jsmith.fedora(a)gmail.com, rbryant(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2150943 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2150945

1 4

[Bug 2150942] New: asterisk: GetConfig AMI Action can read files outside of Asterisk directory [fedora-all]
by bugzilla＠redhat.com 06 Dec '23

06 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2150942 Bug ID: 2150942 Summary: asterisk: GetConfig AMI Action can read files outside of Asterisk directory [fedora-all] Product: Fedora Version: 37 Status: NEW Component: asterisk Keywords: Security, SecurityTracking Severity: low Priority: low Assignee: jsmith.fedora(a)gmail.com Reporter: zmiele(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: bennie.joubert(a)jsdaav.com, epel-packagers-sig(a)lists.fedoraproject.org, jsmith.fedora(a)gmail.com, rbryant(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2150940 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2150942

1 4

[Bug 2148411] New: [abrt] meld: on_file_changed(): meldwindow.py:305:on_file_changed:AttributeError: 'NewDiffTab' object has no attribute 'on_file_changed'
by bugzilla＠redhat.com 06 Dec '23

06 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2148411 Bug ID: 2148411 Summary: [abrt] meld: on_file_changed(): meldwindow.py:305:on_file_changed:AttributeError: 'NewDiffTab' object has no attribute 'on_file_changed' Product: Fedora Version: 37 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:e13b807f71fa093e5be53da5a641faaf0126d837;VAR IANT_ID=workstation; Component: meld Assignee: dmaphy(a)fedoraproject.org Reporter: f.j.panag(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: cwickert(a)fedoraproject.org, dmaphy(a)fedoraproject.org, epel-packagers-sig(a)lists.fedoraproject.org, lkundrak(a)v3.sk, michel(a)michel-slm.name, oliver(a)linux-kernel.at Target Milestone: --- Classification: Fedora Version-Release number of selected component: meld-3.22.0-1.fc37 Additional info: reporter: libreport-2.17.4 cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-gnome-org.gnome.Meld-697504.scope cmdline: /usr/bin/python3 /usr/bin/meld crash_function: on_file_changed exception_type: AttributeError executable: /usr/bin/meld interpreter: python3-3.11.0-1.fc37.x86_64 kernel: 6.0.9-300.fc37.x86_64 runlevel: N 5 type: Python3 uid: 1000 Truncated backtrace: meldwindow.py:305:on_file_changed:AttributeError: 'NewDiffTab' object has no attribute 'on_file_changed' Traceback (most recent call last): File "/usr/lib/python3.11/site-packages/meld/meldwindow.py", line 305, in on_file_changed page.on_file_changed(filename) ^^^^^^^^^^^^^^^^^^^^ AttributeError: 'NewDiffTab' object has no attribute 'on_file_changed' Local variables in innermost frame: self: <meldwindow.MeldWindow object at 0x7f05549df700 (MeldWindow at 0x5652bd02a2b0)> srcpage: <filediff.FileDiff object at 0x7f0550a4b640 (FileDiff at 0x5652bdade590)> filename: '/home/fotis/Downloads/incubator-nuttx/net/tcp/tcp_conn.c' page: <newdifftab.NewDiffTab object at 0x7f0552093b40 (NewDiffTab at 0x5652bd09bab0)> Potential duplicate: bug 2145206 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2148411

1 3

[Bug 2125635] New: [abrt] zbar-qt: XCreateGC(): zbarcam-qt killed by SIGSEGV
by bugzilla＠redhat.com 05 Dec '23

05 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2125635 Bug ID: 2125635 Summary: [abrt] zbar-qt: XCreateGC(): zbarcam-qt killed by SIGSEGV Product: Fedora Version: 37 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:078632a70931f6bcf0d3a737df94c2bb4c797b8b;VAR IANT_ID=workstation; Component: zbar Assignee: gwync(a)protonmail.com Reporter: remyabel(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: dougsland(a)redhat.com, epel-packagers-sig(a)lists.fedoraproject.org, gwync(a)protonmail.com, mchehab(a)infradead.org, mr.marcelo.barbosa(a)gmail.com, negativo17(a)gmail.com Target Milestone: --- Classification: Fedora Version-Release number of selected component: zbar-qt-0.23.90-5.fc37 Additional info: reporter: libreport-2.17.2 backtrace_rating: 3 cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-org.gnome.Terminal.slice/vte-spawn-3fe4439d-5e15-4c55-880f-64488f2bf4b7.scope cmdline: zbarcam-qt crash_function: XCreateGC executable: /usr/bin/zbarcam-qt journald_cursor: s=759f6b6667fc40deb238abf796413863;i=4906;b=8bb2ff6253eb43b991e38d34d1424771;m=ea673b49;t=5e83e9c99f6b5;x=320ffbe6a9d0ebd3 kernel: 5.19.7-300.fc37.x86_64 rootdir: / runlevel: N 5 type: CCpp uid: 1000 Truncated backtrace: Thread no. 1 (10 frames) #0 XCreateGC at /usr/src/debug/libX11-1.8.1-2.fc37.x86_64/src/CrGC.c:74 #1 _zbar_window_attach at window/x.c:168 #2 zbar_window_attach at /usr/src/debug/zbar-0.23.90-5.fc37.x86_64/zbar/window.c:73 #3 zbar::Window::attach at ./include/zbar/Window.h:75 #4 zbar::QZBar::changeEvent at qt/QZBar.cpp:337 #5 QWidget::event at kernel/qwidget.cpp:8975 #6 QApplicationPrivate::notify_helper at kernel/qapplication.cpp:3637 #7 QCoreApplication::notifyInternal2 at kernel/qcoreapplication.cpp:1064 #8 QWidget::setParent at kernel/qwidget.cpp:10505 #10 QLayoutPrivate::reparentChildWidgets at kernel/qlayout.cpp:841 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2125635

1 2

[Bug 2186901] New: python-dask-2023.4.0 is available
by bugzilla＠redhat.com 04 Dec '23

04 Dec '23

https://bugzilla.redhat.com/show_bug.cgi?id=2186901 Bug ID: 2186901 Summary: python-dask-2023.4.0 is available Product: Fedora Version: rawhide Status: NEW Component: python-dask Keywords: FutureFeature, Triaged Assignee: quantum.analyst(a)gmail.com Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, jonathan(a)almalinux.org, python-packagers-sig(a)lists.fedoraproject.org, quantum.analyst(a)gmail.com Target Milestone: --- Classification: Fedora Releases retrieved: 2023.4.0 Upstream release that is considered latest: 2023.4.0 Current version/release in rawhide: 2023.3.2-1.fc39~bootstrap URL: https://github.com/dask/dask/ Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/18909/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/python-dask -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2186901

1 21

2025

2024

2023

2022

2021

Epel-packagers-sig October 2023