https://bugzilla.redhat.com/show_bug.cgi?id=2235414
Bug ID: 2235414
Summary: CVE-2020-21427 freeimage: buffer overflow in
LoadPixelDataRLE8() in PluginBMP.cpp [fedora-all]
Product: Fedora
Version: 38
Status: NEW
Component: freeimage
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: bruno(a)wolff.to
Reporter: gsuckevi(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: bruno(a)wolff.to,
epel-packagers-sig(a)lists.fedoraproject.org,
hobbes1069(a)gmail.com, i(a)cicku.me, manisandro(a)gmail.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2235411
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2235414
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2235407
Bug ID: 2235407
Summary: CVE-2020-21426 freeimage: buffer overflow in
C_IStream::read() in PluginEXR.cpp [fedora-all]
Product: Fedora
Version: 38
Status: NEW
Component: freeimage
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: bruno(a)wolff.to
Reporter: gsuckevi(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: bruno(a)wolff.to,
epel-packagers-sig(a)lists.fedoraproject.org,
hobbes1069(a)gmail.com, i(a)cicku.me, manisandro(a)gmail.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2235404
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2235407
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2235358
Bug ID: 2235358
Summary: CVE-2020-22524 freeimage: buffer overflow in
FreeImage_Load() in Plugin.cpp [fedora-all]
Product: Fedora
Version: 38
Status: NEW
Component: freeimage
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: bruno(a)wolff.to
Reporter: gsuckevi(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: bruno(a)wolff.to,
epel-packagers-sig(a)lists.fedoraproject.org,
hobbes1069(a)gmail.com, i(a)cicku.me, manisandro(a)gmail.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2235356
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2235358
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2192888
Bug ID: 2192888
Summary: python-textual-0.23.0 is available
Product: Fedora
Version: rawhide
Status: NEW
Component: python-textual
Keywords: FutureFeature, Triaged
Assignee: jonathan(a)almalinux.org
Reporter: upstream-release-monitoring(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
jonathan(a)almalinux.org,
python-packagers-sig(a)lists.fedoraproject.org
Target Milestone: ---
Classification: Fedora
Releases retrieved: 0.23.0
Upstream release that is considered latest: 0.23.0
Current version/release in rawhide: 0.22.3-1.fc39
URL: https://pypi.org/project/textual/0.1.0
Please consult the package updates policy before you issue an update to a
stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/
More information about the service that created this bug can be found at:
https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M…
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from Anitya:
https://release-monitoring.org/project/209284/
To change the monitoring settings for the project, please visit:
https://src.fedoraproject.org/rpms/python-textual
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2192888
https://bugzilla.redhat.com/show_bug.cgi?id=2232765
Bug ID: 2232765
Summary: blender-3.6.2 is available
Product: Fedora
Version: rawhide
Status: NEW
Component: blender
Keywords: FutureFeature, Triaged
Assignee: luya_tfz(a)thefinalzone.net
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: code(a)musicinmybrain.net,
design-devel(a)lists.fedoraproject.org,
epel-packagers-sig(a)lists.fedoraproject.org,
kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net,
negativo17(a)gmail.com
Target Milestone: ---
Classification: Fedora
Releases retrieved: 3.3.10, 3.6.2
Upstream release that is considered latest: 3.6.2
Current version/release in rawhide: 3.6.1-2.fc39
URL: https://www.blender.org/
Please consult the package updates policy before you issue an update to a
stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/
More information about the service that created this bug can be found at:
https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M…
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from Anitya:
https://release-monitoring.org/project/201/
To change the monitoring settings for the project, please visit:
https://src.fedoraproject.org/rpms/blender
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2232765
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2235735
Bug ID: 2235735
Summary: FTI on rawhide
Product: Fedora
Version: rawhide
OS: Linux
Status: NEW
Component: python-matplotlib
Severity: high
Assignee: quantum.analyst(a)gmail.com
Reporter: sanjay.ankur(a)gmail.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
gwync(a)protonmail.com,
paulo.cesar.pereira.de.andrade(a)gmail.com,
python-packagers-sig(a)lists.fedoraproject.org,
quantum.analyst(a)gmail.com, tomspur(a)fedoraproject.org
Target Milestone: ---
Classification: Fedora
While building one of my packages that depends on python3-matplotlib, i noticed
the build failing with these errors on all arches:
```
DEBUG util.py:442: Error:
DEBUG util.py:442: Problem 1: package
python3-matplotlib-tk-3.7.2-4.fc40.aarch64 from build requires python3-tkinter,
but none of the providers can be installed
DEBUG util.py:442: - package python3-matplotlib-3.7.2-4.fc40.aarch64 from
build requires python3-matplotlib-tk(aarch-64) = 3.7.2-4.fc40, but none of the
providers can be installed
DEBUG util.py:442: - package python3-tkinter-3.12.0~rc1-1.fc40.aarch64 from
build requires libtk8.6.so()(64bit), but none of the providers can be installed
DEBUG util.py:442: - conflicting requests
DEBUG util.py:442: - nothing provides tcl = 1:8.6.12 needed by
tk-1:8.6.12-5.fc39.aarch64 from build
DEBUG util.py:442: Problem 2: package python3-matplotlib-3.7.2-4.fc40.aarch64
from build requires python3-matplotlib-tk(aarch-64) = 3.7.2-4.fc40, but none of
the providers can be installed
DEBUG util.py:442: - package python3-matplotlib-tk-3.7.2-4.fc40.aarch64 from
build requires python3-tkinter, but none of the providers can be installed
DEBUG util.py:442: - package python3-nitime-0.8.1-15.fc39.aarch64 from build
requires python3.12dist(matplotlib), but none of the providers can be installed
DEBUG util.py:442: - package python3-tkinter-3.12.0~rc1-1.fc40.aarch64 from
build requires libtk8.6.so()(64bit), but none of the providers can be installed
DEBUG util.py:442: - conflicting requests
DEBUG util.py:442: - nothing provides tcl = 1:8.6.12 needed by
tk-1:8.6.12-5.fc39.aarch64 from build
DEBUG util.py:444: (try to add '--skip-broken' to skip uninstallable packages)
```
Some update that requires a matplotlib re-build perhaps?
Reproducible: Always
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2235735
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2222969
Bug ID: 2222969
Summary: Installation requires dependent package that cannot be
found
Product: Fedora EPEL
Version: epel9
Status: NEW
Component: python-openpyxl
Assignee: jujens(a)jujens.eu
Reporter: kiltedknight(a)verizon.net
CC: epel-packagers-sig(a)lists.fedoraproject.org,
igor.raits(a)gmail.com, jonathan(a)almalinux.org,
jujens(a)jujens.eu
Target Milestone: ---
Classification: Fedora
Description of problem:
Attempts to install to Rocky Linux 9 from EPEL fail due to an inability to find
a dependent package
Version-Release number of selected component (if applicable):
3.0.10-2.el9.noarch
How reproducible:
Configure basic repositories, add EPEL repository, run "dnf install"
Steps to Reproduce:
1. dnf install python3-openpyxl
Actual results:
$ sudo dnf install python3-openpyxl
Last metadata expiration check: 1:59:32 ago on Fri 14 Jul 2023 10:21:04 AM EDT.
Error:
Problem: conflicting requests
- nothing provides python3.9dist(et-xmlfile) needed by
python3-openpyxl-3.0.10-2.el9.noarch
(try to add '--skip-broken' to skip uninstallable packages or '--nobest' to use
not only best candidate packages)
Expected results:
Package is installed
Additional info:
This occurs with both python3-openpyxl and python-openpyxl.
The following is the output of a repolist:
repo id repo name
appstream Rocky Linux 9 - AppStream
baseos Rocky Linux 9 - BaseOS
cloudstack Apache CloudStack for
Enterprise Linux 9 - x86_64
crb Rocky Linux 9 - CRB
epel Extra Packages for
Enterprise Linux 9 - x86_64
extras Rocky Linux 9 - Extras
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2222969
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2225683
RHEL Program Management <pm-rhel(a)redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |CLOSED
Resolution|--- |MIGRATED
Last Closed|2023-07-26 15:17:25 |2023-09-14 14:24:24
--- Comment #12 from RHEL Program Management <pm-rhel(a)redhat.com> ---
This BZ has been automatically migrated to the issues.redhat.com Red Hat Issue
Tracker. All future work related to this report will be managed there.
Due to differences in account names between systems, some fields were not
replicated. Be sure to add yourself to Jira issue's "Watchers" field to
continue receiving updates and add others to the "Need Info From" field to
continue requesting information.
To find the migrated issue, look in the "Links" section for a direct link to
the new issue location. The issue key will have an icon of 2 footprints next to
it, and begin with "RHEL-" followed by an integer. You can also find this
issue by visiting https://issues.redhat.com/issues/?jql= and searching the
"Bugzilla Bug" field for this BZ's number, e.g. a search like:
"Bugzilla Bug" = 1234567
In the event you have trouble locating or viewing this issue, you can file an
issue by sending mail to rh-issues(a)redhat.com. You can also visit
https://access.redhat.com/articles/7032570 for general account information.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2225683
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…