October 2024 - Epel-packagers-sig - Fedora mailing-lists

[Bug 2322989] New: CVE-2024-10573 SDL_sound: Buffer overflow when writin decoded PCM samples [fedora-41]
by bugzilla＠redhat.com 02 Dec '25

02 Dec '25

https://bugzilla.redhat.com/show_bug.cgi?id=2322989 Bug ID: 2322989 Summary: CVE-2024-10573 SDL_sound: Buffer overflow when writin decoded PCM samples [fedora-41] Product: Fedora Version: 41 Status: NEW Whiteboard: {"flaws": ["64abda17-c100-4ff2-b094-f3a50bbe9d08"]} Component: SDL_sound Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: hdegoede(a)redhat.com Reporter: mbenatto(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, hdegoede(a)redhat.com, jonathan(a)almalinux.org, redhat-bugzilla(a)linuxnetz.de Blocks: 2322980 (CVE-2024-10573) Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=2322980 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2322980 [Bug 2322980] CVE-2024-10573 mpg123: Buffer overflow when writin decoded PCM samples -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2322989 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 4

[Bug 2322663] New: [abrt] gnome-calendar: g_date_time_add_days(): gnome-calendar killed by SIGSEGV
by bugzilla＠redhat.com 02 Dec '25

02 Dec '25

https://bugzilla.redhat.com/show_bug.cgi?id=2322663 Bug ID: 2322663 Summary: [abrt] gnome-calendar: g_date_time_add_days(): gnome-calendar killed by SIGSEGV Product: Fedora Version: 41 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:abb5d0ab9e6ff7f5ceede07a2d765f2b2c849ee5;VAR IANT_ID=workstation; Component: gnome-calendar Assignee: gnome-sig(a)lists.fedoraproject.org Reporter: goksibg(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, gnome-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, klember(a)redhat.com Target Milestone: --- Classification: Fedora Version-Release number of selected component: gnome-calendar-47~rc-1.fc41 Additional info: reporter: libreport-2.17.15 type: CCpp reason: gnome-calendar killed by SIGSEGV journald_cursor: s=4477940bdaf44bfcbe4a5c7211b942a4;i=77b85;b=1b7c164826e7423a91d3c8fa178b3e34;m=a9b945b;t=625aabb6dd961;x=a5ac5016c14fb54a executable: /usr/bin/gnome-calendar cmdline: /usr/bin/gnome-calendar --gapplication-service cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/dbus-:1.2-org.gnome.Calendar@0.service rootdir: / uid: 1000 kernel: 6.11.5-300.fc41.x86_64 package: gnome-calendar-47~rc-1.fc41 runlevel: N 5 dso_list: /usr/bin/gnome-calendar gnome-calendar-47~rc-1.fc41.x86_64 (Fedora Project) 1727385161 backtrace_rating: 4 crash_function: g_date_time_add_days Truncated backtrace: Thread no. 1 (7 frames) #0 g_date_time_add_days at ../glib/gdatetime.c:1915 #2 update_event_indicators at ../src/gui/event-editor/gcal-date-chooser.c:453 #3 update_event_indicators_in_idle_cb at ../src/gui/event-editor/gcal-date-chooser.c:493 #6 g_main_context_dispatch_unlocked at ../glib/gmain.c:4208 #7 g_main_context_iterate_unlocked.isra.0 at ../glib/gmain.c:4273 #8 g_main_context_iteration at ../glib/gmain.c:4338 #9 g_application_run at ../gio/gapplication.c:2715 Potential duplicate: bug 2236563 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2322663 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 3

[Bug 2320087] New: RFE: mingw support for the fmt package
by bugzilla＠redhat.com 02 Dec '25

02 Dec '25

https://bugzilla.redhat.com/show_bug.cgi?id=2320087 Bug ID: 2320087 Summary: RFE: mingw support for the fmt package Product: Fedora Version: 41 OS: Linux Status: NEW Component: fmt Keywords: RFE Severity: medium Assignee: tchaikov(a)gmail.com Reporter: dg(a)cowlark.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, mark.e.fuller(a)gmx.de, michel(a)michel-slm.name, tchaikov(a)gmail.com, thunderbirdtr(a)fedoraproject.org, vitaly(a)easycoding.org Target Milestone: --- Classification: Fedora I'm using Fedora to cross compile a Windows program using mingw; the program depends on libfmt. It would be nice to have a mingw package for the fmt library. (I'm looking into modifying the spec file myself, but I'm new to Fedora packaging so it might take some time...) Reproducible: Always -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2320087 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 1

[Bug 2315359] New: [abrt] luajit: lgi_marshal_2lua(): luajit-2.1.1720049189 killed by SIGSEGV
by bugzilla＠redhat.com 02 Dec '25

02 Dec '25

https://bugzilla.redhat.com/show_bug.cgi?id=2315359 Bug ID: 2315359 Summary: [abrt] luajit: lgi_marshal_2lua(): luajit-2.1.1720049189 killed by SIGSEGV Product: Fedora Version: 41 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:acbe7108455b6b7b87a0a5b7be713e92457fa183;VAR IANT_ID=workstation; Component: luajit Assignee: asn(a)redhat.com Reporter: jsk_priv(a)gmx.de QA Contact: extras-qa(a)fedoraproject.org CC: asn(a)redhat.com, epel-packagers-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, sipoyare(a)redhat.com Target Milestone: --- Classification: Fedora Description of problem: Starting GIMP Version-Release number of selected component: luajit-2.1.1720049189-1.fc41 Additional info: reporter: libreport-2.17.15 type: CCpp reason: luajit-2.1.1720049189 killed by SIGSEGV journald_cursor: s=a72e61f4f9af41b0809571c51e467864;i=1b2e241;b=3aa7d1c473b2411a97830c1d89580486;m=aa29309af;t=6231eaf6565d3;x=fae5db4c52ebaf68 executable: /usr/bin/luajit-2.1.1720049189 cmdline: /usr/bin/luajit /usr/lib64/gimp/3.0/extensions/org.gimp.extension.goat-exercises/goat-exercise-lua.lua -gimp 274 119 118 -query 1 cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-gnome-gimp-135729.scope rootdir: / uid: 1000 kernel: 6.11.0-63.fc41.x86_64 package: luajit-2.1.1720049189-1.fc41 runlevel: N 5 backtrace_rating: 4 crash_function: lgi_marshal_2lua comment: Starting GIMP Truncated backtrace: Thread no. 1 (14 frames) #0 lgi_marshal_2lua at /builddir/build/BUILD/lua-lgi-0.9.2-build/lua51-lua-lgi-0.9.2-20.fc41/lgi/marshal.c:1269 #1 lgi_marshal_field at /builddir/build/BUILD/lua-lgi-0.9.2-build/lua51-lua-lgi-0.9.2-20.fc41/lgi/marshal.c:1522 #2 lj_BC_FUNCC at buildvm_x86.dasc:859 #3 lgi_marshal_access at /builddir/build/BUILD/lua-lgi-0.9.2-build/lua51-lua-lgi-0.9.2-20.fc41/lgi/marshal.c:1547 #4 lj_BC_FUNCC at buildvm_x86.dasc:859 #5 lua_call at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/lj_api.c:1122 #6 lj_cf_package_require at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/lib_package.c:464 #7 lj_BC_FUNCC at buildvm_x86.dasc:859 #8 lua_pcall at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/lj_api.c:1122 #9 docall at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/luajit.c:122 #10 handle_script at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/luajit.c:292 #11 pmain at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/luajit.c:549 #12 lj_BC_FUNCC at buildvm_x86.dasc:859 #13 lua_cpcall at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/lj_api.c:1179 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2315359 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 1

[Bug 2314803] New: [abrt] luajit: lgi_marshal_2lua(): luajit-2.1.1720049189 killed by SIGSEGV
by bugzilla＠redhat.com 02 Dec '25

02 Dec '25

https://bugzilla.redhat.com/show_bug.cgi?id=2314803 Bug ID: 2314803 Summary: [abrt] luajit: lgi_marshal_2lua(): luajit-2.1.1720049189 killed by SIGSEGV Product: Fedora Version: 41 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:acbe7108455b6b7b87a0a5b7be713e92457fa183;VAR IANT_ID=workstation; Component: luajit Assignee: asn(a)redhat.com Reporter: espionage724(a)posteo.net QA Contact: extras-qa(a)fedoraproject.org CC: asn(a)redhat.com, epel-packagers-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, sipoyare(a)redhat.com Target Milestone: --- Classification: Fedora Description of problem: Opened GIMP Version-Release number of selected component: luajit-2.1.1720049189-1.fc41 Additional info: reporter: libreport-2.17.15 type: CCpp reason: luajit-2.1.1720049189 killed by SIGSEGV journald_cursor: s=97aa099c66af4d0a9db6d9ecbc74c7fa;i=8413;b=9895525df7fb4d8cb7c1ba05199f57c7;m=25509a8e0;t=622fdde5f0896;x=9e145a75df6ff5f4 executable: /usr/bin/luajit-2.1.1720049189 cmdline: /usr/bin/luajit /usr/lib64/gimp/3.0/extensions/org.gimp.extension.goat-exercises/goat-exercise-lua.lua -gimp 274 117 116 -query 1 cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-gnome-gimp-38056.scope rootdir: / uid: 1000 kernel: 6.11.0-63.fc41.x86_64 package: luajit-2.1.1720049189-1.fc41 runlevel: N 5 backtrace_rating: 4 crash_function: lgi_marshal_2lua comment: Opened GIMP Truncated backtrace: Thread no. 1 (14 frames) #0 lgi_marshal_2lua at /builddir/build/BUILD/lua-lgi-0.9.2-build/lua51-lua-lgi-0.9.2-20.fc41/lgi/marshal.c:1269 #1 lgi_marshal_field at /builddir/build/BUILD/lua-lgi-0.9.2-build/lua51-lua-lgi-0.9.2-20.fc41/lgi/marshal.c:1522 #2 lj_BC_FUNCC at buildvm_x86.dasc:859 #3 lgi_marshal_access at /builddir/build/BUILD/lua-lgi-0.9.2-build/lua51-lua-lgi-0.9.2-20.fc41/lgi/marshal.c:1547 #4 lj_BC_FUNCC at buildvm_x86.dasc:859 #5 lua_call at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/lj_api.c:1122 #6 lj_cf_package_require at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/lib_package.c:464 #7 lj_BC_FUNCC at buildvm_x86.dasc:859 #8 lua_pcall at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/lj_api.c:1122 #9 docall at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/luajit.c:122 #10 handle_script at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/luajit.c:292 #11 pmain at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/luajit.c:549 #12 lj_BC_FUNCC at buildvm_x86.dasc:859 #13 lua_cpcall at /usr/src/debug/luajit-2.1.1720049189-1.fc41.x86_64/src/lj_api.c:1179 Potential duplicate: bug 2309471 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2314803 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 2

[Bug 2313888] New: [abrt] gnome-calendar: gdk_memory_depth_merge(): gnome-calendar killed by SIGSEGV
by bugzilla＠redhat.com 02 Dec '25

02 Dec '25

https://bugzilla.redhat.com/show_bug.cgi?id=2313888 Bug ID: 2313888 Summary: [abrt] gnome-calendar: gdk_memory_depth_merge(): gnome-calendar killed by SIGSEGV Product: Fedora Version: 41 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:c2b8f4f9a2ee713e81d82fa663c1f711b5334d26;VAR IANT_ID=kde; Component: gnome-calendar Assignee: gnome-sig(a)lists.fedoraproject.org Reporter: nicolas.fella(a)gmx.de QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, gnome-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, klember(a)redhat.com Target Milestone: --- Classification: Fedora Description of problem: Crashed on startup Version-Release number of selected component: gnome-calendar-47~beta-1.fc41 Additional info: reporter: libreport-2.17.15 type: CCpp reason: gnome-calendar killed by SIGSEGV journald_cursor: s=15d764b5fd894146be4f7cbf96ed849c;i=8a3bad5;b=eb37a68e9ed941188395ea111e8c7226;m=893c5cd7;t=622952be0288b;x=3d1b2789b365628f executable: /usr/bin/gnome-calendar cmdline: gnome-calendar cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-org.kde.konsole@cf64e7ad4d5742b7a0d16abce2db794b.service rootdir: / uid: 1000 kernel: 6.11.0-63.fc41.x86_64 package: gnome-calendar-47~beta-1.fc41 runlevel: N 5 dso_list: /usr/bin/gnome-calendar gnome-calendar-47~beta-1.fc41.x86_64 (Fedora Project) 1726873938 backtrace_rating: 4 crash_function: gdk_memory_depth_merge comment: Crashed on startup Truncated backtrace: Thread no. 1 (8 frames) #0 gdk_memory_depth_merge at ../gdk/gdkmemoryformat.c:1562 #1 gdk_vulkan_context_begin_frame at ../gdk/gdkvulkancontext.c:626 #2 gdk_draw_context_begin_frame_full at ../gdk/gdkdrawcontext.c:397 #3 gsk_gpu_frame_begin at ../gsk/gpu/gskgpuframe.c:209 #4 gsk_gpu_renderer_render at ../gsk/gpu/gskgpurenderer.c:446 #5 gsk_renderer_render at ../gsk/gskrenderer.c:495 #6 gtk_widget_render at ../gtk/gtkwidget.c:11998 #7 surface_render at ../gtk/gtkwindow.c:4742 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2313888 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 2

[Bug 2310261] New: Error in bash completation script
by bugzilla＠redhat.com 02 Dec '25

02 Dec '25

https://bugzilla.redhat.com/show_bug.cgi?id=2310261 Bug ID: 2310261 Summary: Error in bash completation script Product: Fedora Version: 41 OS: Linux Status: NEW Component: lldpad Severity: medium Assignee: aconole(a)redhat.com Reporter: msuchy(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: aconole(a)redhat.com, cleech(a)redhat.com, epel-packagers-sig(a)lists.fedoraproject.org, jiri(a)pirko.cz Target Milestone: --- Classification: Fedora After upgrading to Fedora 41 I get: LC_ALL=cs_CZ.utf-8 bash /usr/share/bash-completion/bash_completion /etc/bash_completion.d/lldpad: řádek 19: have: příkaz nenalezen /etc/bash_completion.d/lldptool: řádek 41: have: příkaz nenalezen /etc/bash_completion.d/nanoblogger.bash_completion: řádek 5: have: příkaz nenalezen it state that command have is not found. Interesting that with the locale set to C or en_US, this does not happen. Reproducible: Always -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2310261 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 4

[Bug 2264279] New: python-zarr-2.17.0 is available
by bugzilla＠redhat.com 25 Nov '25

25 Nov '25

https://bugzilla.redhat.com/show_bug.cgi?id=2264279 Bug ID: 2264279 Summary: python-zarr-2.17.0 is available Product: Fedora Version: rawhide Status: NEW Component: python-zarr Keywords: FutureFeature, Triaged Assignee: quantum.analyst(a)gmail.com Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, jonathan(a)almalinux.org, python-packagers-sig(a)lists.fedoraproject.org, quantum.analyst(a)gmail.com Target Milestone: --- Classification: Fedora Releases retrieved: 2.17.0 Upstream release that is considered latest: 2.17.0 Current version/release in rawhide: 2.16.1-1.fc40 URL: https://github.com/zarr-developers/zarr Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/19522/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/python-zarr -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2264279 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 47

[Bug 2277126] New: sdbus-cpp-2.0.0 is available
by bugzilla＠redhat.com 21 Nov '25

21 Nov '25

https://bugzilla.redhat.com/show_bug.cgi?id=2277126 Bug ID: 2277126 Summary: sdbus-cpp-2.0.0 is available Product: Fedora Version: rawhide Status: NEW Component: sdbus-cpp Keywords: FutureFeature, Triaged Assignee: mblaha(a)redhat.com Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, mblaha(a)redhat.com Target Milestone: --- Classification: Fedora Releases retrieved: 1.6.0, 2.0.0 Upstream release that is considered latest: 2.0.0 Current version/release in rawhide: 1.5.0-2.fc41 URL: https://github.com/Kistler-Group/sdbus-cpp Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/70626/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/sdbus-cpp -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2277126 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 3

[Bug 2273611] New: golang-x-sync-0.7.0 is available
by bugzilla＠redhat.com 08 Nov '25

08 Nov '25

https://bugzilla.redhat.com/show_bug.cgi?id=2273611 Bug ID: 2273611 Summary: golang-x-sync-0.7.0 is available Product: Fedora Version: rawhide Status: NEW Component: golang-x-sync Keywords: FutureFeature, Triaged Assignee: asm(a)redhat.com Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: asm(a)redhat.com, epel-packagers-sig(a)lists.fedoraproject.org, go-sig(a)lists.fedoraproject.org, jchaloup(a)redhat.com Target Milestone: --- Classification: Fedora Releases retrieved: 0.7.0 Upstream release that is considered latest: 0.7.0 Current version/release in rawhide: 0.1.0-4.fc40 URL: https://golang.org/x/sync Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/369039/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/golang-x-sync -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2273611 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 35

2025

2024

2023

2022

2021

Epel-packagers-sig October 2024