May 2024 - Epel-packagers-sig - Fedora mailing-lists

[Bug 2278142] New: msmtp-1.8.26 is available
by bugzilla＠redhat.com 02 Jun '25

02 Jun '25

https://bugzilla.redhat.com/show_bug.cgi?id=2278142 Bug ID: 2278142 Summary: msmtp-1.8.26 is available Product: Fedora Version: rawhide Status: NEW Component: msmtp Keywords: FutureFeature, Triaged Assignee: lemenkov(a)gmail.com Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, gbcox(a)bzb.us, lemenkov(a)gmail.com, ndevos(a)redhat.com, wart(a)kobold.org Target Milestone: --- Classification: Fedora Releases retrieved: 1.8.26 Upstream release that is considered latest: 1.8.26 Current version/release in rawhide: 1.8.25-3.fc40 URL: https://marlam.de/msmtp/ Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/2024/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/msmtp -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2278142 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 16

[Bug 2222350] New: CVE-2022-38900 yarnpkg: decode-uri-component: improper input validation resulting in DoS [epel-8]
by bugzilla＠redhat.com 30 May '25

30 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2222350 Bug ID: 2222350 Summary: CVE-2022-38900 yarnpkg: decode-uri-component: improper input validation resulting in DoS [epel-8] Product: Fedora EPEL Version: epel8 Status: NEW Component: yarnpkg Keywords: Security, SecurityTracking Severity: high Priority: high Assignee: zsvetlik(a)redhat.com Reporter: mrehak(a)redhat.com CC: epel-packagers-sig(a)lists.fedoraproject.org, manisandro(a)gmail.com, ngompa13(a)gmail.com, zsvetlik(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2170644 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2222350 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 4

[Bug 2255116] New: [abrt] gnome-calendar: gtk_list_box_row_get_child(): gnome-calendar killed by SIGSEGV
by bugzilla＠redhat.com 28 May '25

28 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2255116 Bug ID: 2255116 Summary: [abrt] gnome-calendar: gtk_list_box_row_get_child(): gnome-calendar killed by SIGSEGV Product: Fedora Version: 39 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:ca7a59a53752557e80062383671d27cc665e7a45;VAR IANT_ID=workstation; Component: gnome-calendar Assignee: gnome-sig(a)lists.fedoraproject.org Reporter: eazel7(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, gnome-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, klember(a)redhat.com Target Milestone: --- Classification: Fedora Version-Release number of selected component: gnome-calendar-45.1-1.fc39 Additional info: reporter: libreport-2.17.11 type: CCpp reason: gnome-calendar killed by SIGSEGV journald_cursor: s=3452a52fb1ca43a28acf90fd9dda0129;i=33aaf;b=cb83aca6892849e3b74afa430acf9ff8;m=15f98ec181;t=60ccc6150421e;x=607631cee761312 executable: /usr/bin/gnome-calendar cmdline: /usr/bin/gnome-calendar --gapplication-service cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/dbus-:1.2-org.gnome.Calendar@1.service rootdir: / uid: 1000 kernel: 6.6.6-200.fc39.x86_64 package: gnome-calendar-45.1-1.fc39 runlevel: N 5 dso_list: /usr/bin/gnome-calendar gnome-calendar-45.1-1.fc39.x86_64 (Fedora Project) 1702679189 backtrace_rating: 4 crash_function: gtk_list_box_row_get_child Truncated backtrace: Thread no. 1 (8 frames) #0 gtk_list_box_row_get_child at ../gtk/gtklistbox.c:3009 #1 gcal_agenda_view_remove_event at ../src/gui/views/gcal-agenda-view.c:585 #2 remove_event_from_subscriber at ../src/core/gcal-timeline.c:255 #3 timeline_source_dispatch at ../src/core/gcal-timeline.c:774 #5 g_main_context_dispatch_unlocked at ../glib/gmain.c:4284 #6 g_main_context_iterate_unlocked.isra.0 at ../glib/gmain.c:4349 #7 g_main_context_iteration at ../glib/gmain.c:4414 #8 g_application_run at ../gio/gapplication.c:2577 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2255116 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 3

[Bug 2239437] New: gnome-calendar-45.0 is available
by bugzilla＠redhat.com 28 May '25

28 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2239437 Bug ID: 2239437 Summary: gnome-calendar-45.0 is available Product: Fedora Version: rawhide Status: NEW Component: gnome-calendar Keywords: FutureFeature, Triaged Assignee: gnome-sig(a)lists.fedoraproject.org Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, gnome-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, klember(a)redhat.com Target Milestone: --- Classification: Fedora Releases retrieved: 45.0 Upstream release that is considered latest: 45.0 Current version/release in rawhide: 45~rc-1.fc40 URL: https://wiki.gnome.org/Apps/Calendar Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/10906/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/gnome-calendar -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2239437 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 16

[Bug 2256783] New: FTBFS with autoconf 2.72
by bugzilla＠redhat.com 21 May '25

21 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2256783 Bug ID: 2256783 Summary: FTBFS with autoconf 2.72 Product: Fedora Version: rawhide OS: Linux Status: NEW Component: gmime Severity: medium Assignee: alexl(a)redhat.com Reporter: fberat(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: alexl(a)redhat.com, epel-packagers-sig(a)lists.fedoraproject.org, gnome-sig(a)lists.fedoraproject.org, mclasen(a)redhat.com, rstrode(a)redhat.com, walter.pete(a)yandex.com Target Milestone: --- Classification: Fedora The component fails to build with autoconf 2.72 due to its use of Autoconf internal variables in its configure.ac file. the following section needs to be adapted (or better removed): dnl ************************************* dnl *** Checks for large file support *** dnl ************************************* AC_ARG_ENABLE([largefile], AC_HELP_STRING([--enable-largefile], [enable support for large files [[default=yes]]]),, [enable_largefile="yes"]) [...] if test "x$ac_cv_sys_file_offset_bits" != "xno"; then LFS_CFLAGS="$LFS_CFLAGS -D_FILE_OFFSET_BITS=$ac_cv_sys_file_offset_bits" enable_largefile="yes" fi else LFS_CFLAGS="" fi AM_CONDITIONAL(ENABLE_LARGEFILE, test "x$enable_largefile" = "xyes") The main problem of this section being the check against `$ac_cv_sys_file_offset_bits` which no longer exists. Leading to further failures. AC_SYS_LARGEFILE will define _FILE_OFFSET_BITS if necessary. Reproducible: Always -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2256783 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 8

[Bug 2281507] New: CVE-2024-34083 python-aiosmtpd: aiosmtpd: servers based on aiosmtpd accept extra unencrypted commands [fedora-all]
by bugzilla＠redhat.com 20 May '25

20 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2281507 Bug ID: 2281507 Summary: CVE-2024-34083 python-aiosmtpd: aiosmtpd: servers based on aiosmtpd accept extra unencrypted commands [fedora-all] Product: Fedora Version: 40 Status: NEW Component: python-aiosmtpd Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: aurelien(a)bompard.org Reporter: ybuenos(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: aurelien(a)bompard.org, epel-packagers-sig(a)lists.fedoraproject.org, michel(a)michel-slm.name, psimovec(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2281505 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2281507 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 6

[Bug 2281497] New: CVE-2024-35190 asterisk: wrongly matches ALL unauthorized SIP requests [fedora-all]
by bugzilla＠redhat.com 20 May '25

20 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2281497 Bug ID: 2281497 Summary: CVE-2024-35190 asterisk: wrongly matches ALL unauthorized SIP requests [fedora-all] Product: Fedora Version: 40 Status: NEW Component: asterisk Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: jsmith.fedora(a)gmail.com Reporter: ybuenos(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: bennie.joubert(a)jsdaav.com, epel-packagers-sig(a)lists.fedoraproject.org, jsmith.fedora(a)gmail.com, rbryant(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2281495 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2281497 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 6

[Bug 2280857] New: [abrt] cinnamon: __call__(): Gio.py:349:__call__:gi.repository.GLib.GError: g-io-error-quark: GDBus.Error:org.gnome.gjs.JSError.TypeError: type is undefined (36)
by bugzilla＠redhat.com 20 May '25

20 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2280857 Bug ID: 2280857 Summary: [abrt] cinnamon: __call__(): Gio.py:349:__call__:gi.repository.GLib.GError: g-io-error-quark: GDBus.Error:org.gnome.gjs.JSError.TypeError: type is undefined (36) Product: Fedora Version: 40 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:fc69d83853bbb5ba6357513c90c6eb0168652112;VAR IANT_ID=cinnamon; Component: cinnamon Assignee: leigh123linux(a)googlemail.com Reporter: filmfan2142(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, leigh123linux(a)googlemail.com, miketwebster(a)gmail.com, riehecky(a)fnal.gov Target Milestone: --- Classification: Fedora Version-Release number of selected component: cinnamon-6.0.4-6.fc40 Additional info: reporter: libreport-2.17.15 kernel: 6.8.9-300.fc40.x86_64 cmdline: cinnamon-settings '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' cgroup: 0::/user.slice/user-1000.slice/session-5.scope uid: 1000 reason: Gio.py:349:__call__:gi.repository.GLib.GError: g-io-error-quark: GDBus.Error:org.gnome.gjs.JSError.TypeError: type is undefined (36) executable: /usr/share/cinnamon/cinnamon-settings/cinnamon-settings.py type: Python3 package: cinnamon-6.0.4-6.fc40 runlevel: N 5 exception_type: gi.repository.GLib.GError crash_function: __call__ interpreter: cinnamon-6.0.4-6.fc40.x86_64 Truncated backtrace: Gio.py:349:__call__:gi.repository.GLib.GError: g-io-error-quark: GDBus.Error:org.gnome.gjs.JSError.TypeError: type is undefined (36) Traceback (most recent call last): File "/usr/share/cinnamon/cinnamon-settings/bin/Spices.py", line 781, in _install_finished self.send_proxy_signal('ReloadXlet', '(ss)', uuid, self.collection_type.upper()) File "/usr/share/cinnamon/cinnamon-settings/bin/Spices.py", line 270, in send_proxy_signal getattr(self._proxy, command)(*args) File "/usr/lib64/python3.12/site-packages/gi/overrides/Gio.py", line 349, in __call__ result = self.dbus_proxy.call_sync(self.method_name, arg_variant, ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ gi.repository.GLib.GError: g-io-error-quark: GDBus.Error:org.gnome.gjs.JSError.TypeError: type is undefined (36) Local variables in innermost frame: self: <gi.overrides.Gio._DBusProxyMethodCall object at 0x7ff24887ef90> args: ('CBlack', 'THEME') kwargs: {} signature: '(ss)' arg_variant: GLib.Variant('(ss)', ('CBlack', 'THEME')) Potential duplicate: bug 2035596 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2280857 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 2

[Bug 2283271] New: [abrt] gnome-calendar: gcal_date_chooser_day_get_date(): gnome-calendar killed by SIGSEGV
by bugzilla＠redhat.com 19 May '25

19 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2283271 Bug ID: 2283271 Summary: [abrt] gnome-calendar: gcal_date_chooser_day_get_date(): gnome-calendar killed by SIGSEGV Product: Fedora Version: rawhide Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:844fb481027285f020859b86186f23f850c81a94;VAR IANT_ID=workstation; Component: gnome-calendar Assignee: gnome-sig(a)lists.fedoraproject.org Reporter: derekenz(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, gnome-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, klember(a)redhat.com Target Milestone: --- Classification: Fedora Description of problem: Launched the Calendar app from the dock. After clicking the X on the right to close the app, a few seconds later a message apears saying gnome-calendar quit unexpectedly. Version-Release number of selected component: gnome-calendar-46.1-1.fc41 Additional info: reporter: libreport-2.17.15 type: CCpp reason: gnome-calendar killed by SIGSEGV journald_cursor: s=d2a3c695abd4492abe4b1780b3a1b25a;i=2cc9;b=11fc1bdfbfdb412d81d3872386799a70;m=a9ea39b9;t=619513d5a5fba;x=bb64d8ab08fdaf7e executable: /usr/bin/gnome-calendar cmdline: /usr/bin/gnome-calendar --gapplication-service cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/dbus-:1.2-org.gnome.Calendar@2.service rootdir: / uid: 1000 kernel: 6.9.0-64.fc41.x86_64 package: gnome-calendar-46.1-1.fc41 runlevel: N 5 dso_list: /usr/bin/gnome-calendar gnome-calendar-46.1-1.fc41.x86_64 (Fedora Project) 1716621885 comment: Launched the Calendar app from the dock. After clicking the X on the right to close the app, a few seconds later a message apears saying gnome-calendar quit unexpectedly. backtrace_rating: 4 crash_function: gcal_date_chooser_day_get_date Truncated backtrace: Thread no. 1 (7 frames) #0 gcal_date_chooser_day_get_date at ../src/gui/event-editor/gcal-date-chooser-day.c:203 #1 update_event_indicators at ../src/gui/event-editor/gcal-date-chooser.c:452 #2 update_event_indicators_in_idle_cb at ../src/gui/event-editor/gcal-date-chooser.c:493 #5 g_main_context_dispatch_unlocked at ../glib/gmain.c:4152 #6 g_main_context_iterate_unlocked.isra.0 at ../glib/gmain.c:4217 #7 g_main_context_iteration at ../glib/gmain.c:4282 #8 g_application_run at ../gio/gapplication.c:2712 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2283271 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 2

[Bug 2280535] New: CVE-2024-34459 mingw-libxml2: libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c [fedora-all]
by bugzilla＠redhat.com 16 May '25

16 May '25

https://bugzilla.redhat.com/show_bug.cgi?id=2280535 Bug ID: 2280535 Summary: CVE-2024-34459 mingw-libxml2: libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c [fedora-all] Product: Fedora Version: 40 Status: NEW Component: mingw-libxml2 Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: rjones(a)redhat.com Reporter: rkeshri(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, rjones(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2280532 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2280535 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 8

2025

2024

2023

2022

2021

Epel-packagers-sig May 2024