https://bugzilla.redhat.com/show_bug.cgi?id=2242181
Bug ID: 2242181
Summary: CVE-2023-43665 python-django3: python-django:
Denial-of-service possibility in
django.utils.text.Truncator [fedora-all]
Product: Fedora
Version: 38
Status: NEW
Component: python-django3
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: michel(a)michel-slm.name
Reporter: gsuckevi(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
michel(a)michel-slm.name
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2241046
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2242181
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2237871
Bug ID: 2237871
Summary: CVE-2023-41164 python-django3: python-django:
Potential denial of service vulnerability in
``django.utils.encoding.uri_to_iri()`` [fedora-all]
Product: Fedora
Version: 38
Status: NEW
Component: python-django3
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: michel(a)michel-slm.name
Reporter: ybuenos(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
michel(a)michel-slm.name
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2237258
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2237871
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2219382
Bug ID: 2219382
Summary: TRIAGE-CVE-2023-36053 python-django3: python-django:
Potential regular expression denial of service
vulnerability in EmailValidator/URLValidator
[fedora-all]
Product: Fedora
Version: 38
Status: NEW
Component: python-django3
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: michel(a)michel-slm.name
Reporter: gsuckevi(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
michel(a)michel-slm.name
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2218004
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2219382
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2267653
Bug ID: 2267653
Summary: CVE-2024-27351 python-django3: python-django:
Potential regular expression denial-of-service in
django.utils.text.Truncator.words() [epel-all]
Product: Fedora EPEL
Version: epel8
Status: NEW
Component: python-django3
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: michel(a)michel-slm.name
Reporter: btarraso(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
michel(a)michel-slm.name
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2266045
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2267653
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2237869
Bug ID: 2237869
Summary: CVE-2023-41164 python-django3: python-django:
Potential denial of service vulnerability in
``django.utils.encoding.uri_to_iri()`` [epel-all]
Product: Fedora EPEL
Version: epel8
Status: NEW
Component: python-django3
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: michel(a)michel-slm.name
Reporter: ybuenos(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
michel(a)michel-slm.name
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2237258
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2237869
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2273293
Bug ID: 2273293
Summary: python-matplotlib-3.8.4 is available
Product: Fedora
Version: rawhide
Status: NEW
Component: python-matplotlib
Keywords: FutureFeature, Triaged
Assignee: quantum.analyst(a)gmail.com
Reporter: upstream-release-monitoring(a)fedoraproject.org
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
gwync(a)protonmail.com,
paulo.cesar.pereira.de.andrade(a)gmail.com,
python-packagers-sig(a)lists.fedoraproject.org,
quantum.analyst(a)gmail.com, tomspur(a)fedoraproject.org
Target Milestone: ---
Classification: Fedora
Releases retrieved: 3.8.4
Upstream release that is considered latest: 3.8.4
Current version/release in rawhide: 3.8.3-1.fc41
URL: https://matplotlib.org
Please consult the package updates policy before you issue an update to a
stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/
More information about the service that created this bug can be found at:
https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M…
Please keep in mind that with any upstream change, there may also be packaging
changes that need to be made. Specifically, please remember that it is your
responsibility to review the new version to ensure that the licensing is still
correct and that no non-free or legally problematic items have been added
upstream.
Based on the information from Anitya:
https://release-monitoring.org/project/3919/
To change the monitoring settings for the project, please visit:
https://src.fedoraproject.org/rpms/python-matplotlib
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2273293
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2274364
Bug ID: 2274364
Summary: cannot find glslang with find_package(glslang
REQUIRED) for glslang 14.1.0
Product: Fedora
Version: rawhide
OS: Linux
Status: NEW
Component: glslang
Severity: high
Assignee: airlied(a)redhat.com
Reporter: topazus(a)outlook.com
QA Contact: extras-qa(a)fedoraproject.org
CC: airlied(a)redhat.com, ajax(a)redhat.com,
epel-packagers-sig(a)lists.fedoraproject.org,
jexposit(a)redhat.com
Target Milestone: ---
Classification: Fedora
```
❯ cat CMakeLists.txt
cmake_minimum_required(VERSION 3.24)
project(
test
VERSION "1.0.0"
LANGUAGES CXX C
)
find_package(glslang REQUIRED)
ruby in 🌐 fedora in ~/fedora-src/cmake-test via △ v3.28.3
❯ rm -rf build/ && cmake . -B build/
-- The CXX compiler identification is GNU 14.0.1
-- The C compiler identification is GNU 14.0.1
-- Detecting CXX compiler ABI info
-- Detecting CXX compiler ABI info - done
-- Check for working CXX compiler: /usr/lib64/ccache/c++ - skipped
-- Detecting CXX compile features
-- Detecting CXX compile features - done
-- Detecting C compiler ABI info
-- Detecting C compiler ABI info - done
-- Check for working C compiler: /usr/lib64/ccache/cc - skipped
-- Detecting C compile features
-- Detecting C compile features - done
CMake Error at /usr/share/cmake/Modules/CMakeFindDependencyMacro.cmake:76
(find_package):
By not providing "FindSPIRV-Tools-opt.cmake" in CMAKE_MODULE_PATH this
project has asked CMake to find a package configuration file provided by
"SPIRV-Tools-opt", but CMake did not find one.
Could not find a package configuration file provided by "SPIRV-Tools-opt"
with any of the following names:
SPIRV-Tools-optConfig.cmake
spirv-tools-opt-config.cmake
Add the installation prefix of "SPIRV-Tools-opt" to CMAKE_PREFIX_PATH or
set "SPIRV-Tools-opt_DIR" to a directory containing one of the above files.
If "SPIRV-Tools-opt" provides a separate development package or SDK, be
sure it has been installed.
Call Stack (most recent call first):
/usr/lib64/cmake/glslang/glslang-config.cmake:38 (find_dependency)
CMakeLists.txt:8 (find_package)
-- Configuring incomplete, errors occurred!
ruby in 🌐 fedora in ~/fedora-src/cmake-test via △ v3.28.3
❯ rpm -q glslang-devel
glslang-devel-14.1.0-1.fc41.x86_64
```
Reproducible: Always
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2274364
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…