September 2024 - Epel-packagers-sig

[Bug 2128273] New: Please port your pcre dependency to pcre2. Pcre has been deprecated
by bugzilla＠redhat.com 09 Jun '26

09 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2128273 Bug ID: 2128273 Summary: Please port your pcre dependency to pcre2. Pcre has been deprecated Product: Fedora Version: rawhide Status: NEW Component: ccze Assignee: dcavalca(a)fb.com Reporter: ljavorsk(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: dcavalca(a)fb.com, epel-packagers-sig(a)lists.fedoraproject.org, michel(a)michel-slm.name, pahan(a)hubbitus.info Target Milestone: --- Classification: Fedora Pcre has been deprecated since Fedora 38. Please consider porting to the new pcre2 version. Fedora change that describes the pcre deprecation is located here: https://fedoraproject.org/wiki/PcreDeprecation FESCo approval is located here: https://pagure.io/fesco/issue/2862 If your component has already ported to pcre2 or you don't Require/BuildRequire any pcre subpackage, feel free to close this Bugzilla. This Bugzilla was created automatically and some issues might have occurred along the way. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2128273

1 2

[Bug 2314486] New: CVE-2024-45230 python-django3: Potential denial-of-service vulnerability in django.utils.html.urlize() [epel-all]
by bugzilla＠redhat.com 09 Jun '26

09 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2314486 Bug ID: 2314486 Summary: CVE-2024-45230 python-django3: Potential denial-of-service vulnerability in django.utils.html.urlize() [epel-all] Product: Fedora EPEL Version: epel8 Status: NEW Whiteboard: {"flaws": ["4fdc933a-92b1-4da5-856a-07a95761c0fb"]} Component: python-django3 Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: michel(a)michel-slm.name Reporter: mbenatto(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, michel(a)michel-slm.name Blocks: 2314485 (CVE-2024-45230) Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=2314485 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2314485 [Bug 2314485] CVE-2024-45230 python-django: Potential denial-of-service vulnerability in django.utils.html.urlize() -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2314486 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 3

[Bug 2252960] New: Handle correctly 'NO FOUND' in memached delete method
by bugzilla＠redhat.com 09 Jun '26

09 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2252960 Bug ID: 2252960 Summary: Handle correctly 'NO FOUND' in memached delete method Product: Fedora EPEL Version: epel8 Status: NEW Component: python-django3 Assignee: michel(a)michel-slm.name Reporter: zhechka.toteva(a)cern.ch QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, michel(a)michel-slm.name Target Milestone: --- Classification: Fedora Created attachment 2002824 --> https://bugzilla.redhat.com/attachment.cgi?id=2002824&action=edit patch that fixes the bug Description of problem: Version-Release number of selected component (if applicable): python3-django3-3.2.20-1.el8.noarch How reproducible: With python-memcached 1.58.8 present in EPEL8 if a non-existing key is attempted for deletion it raises an error ``` File "/usr/lib/python3.6/site-packages/memcache.py", line 584, in _deletetouch % (cmd, ' or '.join(expected), line)) ``` Actual results: Expected results: Additional info: The fix is attached. The bug officially was fixed in 4.1, by commit https://github.com/django/django/commit/05f3a6186efefc9fca2204a745b992501c6… Cheers Zhechka -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2252960 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 1

[Bug 2307605] New: Suggestion: package GUI separately
by bugzilla＠redhat.com 08 Jun '26

08 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2307605 Bug ID: 2307605 Summary: Suggestion: package GUI separately Product: Fedora Version: rawhide Status: NEW Component: heaptrack Assignee: jgrulich(a)redhat.com Reporter: yann(a)droneaud.fr QA Contact: extras-qa(a)fedoraproject.org CC: barsnick(a)gmx.net, epel-packagers-sig(a)lists.fedoraproject.org, extras-qa(a)fedoraproject.org, jgrulich(a)redhat.com, kde-sig(a)lists.fedoraproject.org Target Milestone: --- Link ID: Red Hat Bugzilla 1807819 Classification: Fedora +++ This bug was initially created as a clone of Bug #1807819 +++ As noted in bug #1807819, heaptrack should be split in two packages: a CLI package, and a GUI package: > Description of problem: > heaptrack's GUI, which pulls in a boatload of KDE library dependencies, could be packaged separately. > Additional info: > heaptrack's GUI has a lot of KDE lib dependencies, which one may or may not desire to have on their system. (I personally try to avoid these.) The basic tool itself, which includes a command line analyzer, requires only Qt libraries, which are a much smaller system "burden". > I have noticed that other distributions do this separation as well, but haven't checked their actual packaging. I would update the suggestion bug #1807819 with a request to split in 3 packages: a CLI package, a GUI package, and a development package for /usr/include/heaptrack_api.h. Regards. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2307605 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 2

[Bug 2300986] New: netbox: FTBFS in Fedora rawhide/f41
by bugzilla＠redhat.com 08 Jun '26

08 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2300986 Bug ID: 2300986 Summary: netbox: FTBFS in Fedora rawhide/f41 Product: Fedora Version: rawhide Status: NEW Component: netbox Assignee: jonathan(a)almalinux.org Reporter: releng(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, jonathan(a)almalinux.org, ngompa13(a)gmail.com Blocks: 2260875 (F41FTBFS) Target Milestone: --- Classification: Fedora netbox failed to build from source in Fedora rawhide/f41 https://koji.fedoraproject.org/koji/taskinfo?taskID=120698912 For details on the mass rebuild see: https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild Please fix netbox at your earliest convenience and set the bug's status to ASSIGNED when you start fixing it. If the bug remains in NEW state for 8 weeks, netbox will be orphaned. Before branching of Fedora 42, netbox will be retired, if it still fails to build. For more details on the FTBFS policy, please visit: https://docs.fedoraproject.org/en-US/fesco/Fails_to_build_from_source_Fails… Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2260875 [Bug 2260875] Fedora 41 FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2300986 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 7

[Bug 2300828] New: gtk-layer-shell: FTBFS in Fedora rawhide/f41
by bugzilla＠redhat.com 08 Jun '26

08 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2300828 Bug ID: 2300828 Summary: gtk-layer-shell: FTBFS in Fedora rawhide/f41 Product: Fedora Version: rawhide Status: NEW Component: gtk-layer-shell Assignee: ego.cordatus(a)gmail.com Reporter: releng(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: ego.cordatus(a)gmail.com, epel-packagers-sig(a)lists.fedoraproject.org Blocks: 2260875 (F41FTBFS) Target Milestone: --- Classification: Fedora gtk-layer-shell failed to build from source in Fedora rawhide/f41 https://koji.fedoraproject.org/koji/taskinfo?taskID=120673341 For details on the mass rebuild see: https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild Please fix gtk-layer-shell at your earliest convenience and set the bug's status to ASSIGNED when you start fixing it. If the bug remains in NEW state for 8 weeks, gtk-layer-shell will be orphaned. Before branching of Fedora 42, gtk-layer-shell will be retired, if it still fails to build. For more details on the FTBFS policy, please visit: https://docs.fedoraproject.org/en-US/fesco/Fails_to_build_from_source_Fails… Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2260875 [Bug 2260875] Fedora 41 FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2300828 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 5

[Bug 2300820] New: golang-x-vuln: FTBFS in Fedora rawhide/f41
by bugzilla＠redhat.com 08 Jun '26

08 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2300820 Bug ID: 2300820 Summary: golang-x-vuln: FTBFS in Fedora rawhide/f41 Product: Fedora Version: rawhide Status: NEW Component: golang-x-vuln Assignee: asm(a)redhat.com Reporter: releng(a)fedoraproject.org CC: asm(a)redhat.com, epel-packagers-sig(a)lists.fedoraproject.org, go-sig(a)lists.fedoraproject.org Blocks: 2260875 (F41FTBFS) Target Milestone: --- Classification: Fedora golang-x-vuln failed to build from source in Fedora rawhide/f41 https://koji.fedoraproject.org/koji/taskinfo?taskID=120671923 For details on the mass rebuild see: https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild Please fix golang-x-vuln at your earliest convenience and set the bug's status to ASSIGNED when you start fixing it. If the bug remains in NEW state for 8 weeks, golang-x-vuln will be orphaned. Before branching of Fedora 42, golang-x-vuln will be retired, if it still fails to build. For more details on the FTBFS policy, please visit: https://docs.fedoraproject.org/en-US/fesco/Fails_to_build_from_source_Fails… Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2260875 [Bug 2260875] Fedora 41 FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2300820 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 6

[Bug 2290451] New: Please branch and build python-myst-parser in epel9
by bugzilla＠redhat.com 08 Jun '26

08 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2290451 Bug ID: 2290451 Summary: Please branch and build python-myst-parser in epel9 Product: Fedora Version: rawhide Status: NEW Component: python-myst-parser Assignee: ksurma(a)redhat.com Reporter: davide(a)cavalca.name CC: epel-packagers-sig(a)lists.fedoraproject.org, jonathan(a)almalinux.org, ksurma(a)redhat.com, lbalhar(a)redhat.com, python-packagers-sig(a)lists.fedoraproject.org Blocks: 1914423 (EPELPackagersSIG) Target Milestone: --- Classification: Fedora Please branch and build python-myst-parser in epel9. If you do not wish to maintain python-myst-parser in epel9, or do not think you will be able to do this in a timely manner, the EPEL Packagers SIG would be happy to be a co-maintainer of the package; please add the epel-packagers-sig group through https://src.fedoraproject.org/rpms/python-myst-parser/addgroup and grant it commit access, or collaborator access on epel* branches. Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1914423 [Bug 1914423] Tracker for epel-packagers-sig -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2290451 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 5

[Bug 2282190] New: [abrt] gnome-calendar: gsk_gpu_rect_to_float(): gnome-calendar killed by SIGSEGV
by bugzilla＠redhat.com 08 Jun '26

08 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2282190 Bug ID: 2282190 Summary: [abrt] gnome-calendar: gsk_gpu_rect_to_float(): gnome-calendar killed by SIGSEGV Product: Fedora Version: rawhide Hardware: aarch64 Status: NEW Whiteboard: abrt_hash:271004e47371354f8e804bfd96875745030b3467;VAR IANT_ID=workstation; Component: gnome-calendar Assignee: gnome-sig(a)lists.fedoraproject.org Reporter: lbrabec(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, gnome-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, klember(a)redhat.com Target Milestone: --- Classification: Fedora Version-Release number of selected component: gnome-calendar-46.1-1.fc41 Additional info: reporter: libreport-2.17.15 type: CCpp reason: gnome-calendar killed by SIGSEGV journald_cursor: s=4be9692be83b4b349e825c71185a4294;i=63cb;b=d15a528605f64006a121d31cee39321a;m=a9ff144;t=618f4202f1e62;x=50165e49d77b271e executable: /usr/bin/gnome-calendar cmdline: /usr/bin/gnome-calendar --gapplication-service cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/dbus-:1.2-org.gnome.Calendar@0.service rootdir: / uid: 1000 kernel: 6.9.0-64.fc41.aarch64 package: gnome-calendar-46.1-1.fc41 runlevel: N 5 backtrace_rating: 4 crash_function: gsk_gpu_rect_to_float Truncated backtrace: Thread no. 1 (24 frames) #0 gsk_gpu_rect_to_float at ../gsk/gskrectprivate.h:129 #1 gsk_gpu_color_op at ../gsk/gpu/gskgpucolorop.c:67 #2 gsk_gpu_node_processor_add_color_node at ../gsk/gpu/gskgpunodeprocessor.c:1885 #3 gsk_gpu_node_processor_add_container_node at ../gsk/gpu/gskgpunodeprocessor.c:3815 #7 gsk_gpu_node_processor_process at ../gsk/gpu/gskgpunodeprocessor.c:400 #8 gsk_gpu_frame_record_rect at ../gsk/gpu/gskgpuframe.c:573 #9 gsk_gpu_frame_record at ../gsk/gpu/gskgpuframe.c:606 #10 gsk_gpu_frame_render at ../gsk/gpu/gskgpuframe.c:666 #11 gsk_gpu_renderer_render at ../gsk/gpu/gskgpurenderer.c:411 #12 gsk_renderer_render at ../gsk/gskrenderer.c:510 #13 gtk_widget_render at ../gtk/gtkwidget.c:11997 #14 surface_render at ../gtk/gtkwindow.c:4752 #15 _gdk_marshal_BOOLEAN__BOXEDv at gdk/gdkmarshalers.c:130 #16 _g_closure_invoke_va at ../gobject/gclosure.c:897 #17 signal_emit_valist_unlocked at ../gobject/gsignal.c:3424 #20 gdk_surface_paint_on_clock at ../gdk/gdksurface.c:1370 #22 _g_closure_invoke_va at ../gobject/gclosure.c:897 #23 signal_emit_valist_unlocked at ../gobject/gsignal.c:3424 #26 _gdk_frame_clock_emit_paint at ../gdk/gdkframeclock.c:736 #27 gdk_frame_clock_paint_idle at ../gdk/gdkframeclockidle.c:641 #30 g_main_context_dispatch_unlocked at ../glib/gmain.c:4152 #31 g_main_context_iterate_unlocked.isra.0 at ../glib/gmain.c:4217 #32 g_main_context_iteration at ../glib/gmain.c:4282 #33 g_application_run at ../gio/gapplication.c:2712 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2282190 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 3

[Bug 2268272] New: TRIAGE CVE-2024-2236 mingw-libgcrypt: libgcrypt: timing based side-channel in RSA implementation [fedora-all]
by bugzilla＠redhat.com 08 Jun '26

08 Jun '26

https://bugzilla.redhat.com/show_bug.cgi?id=2268272 Bug ID: 2268272 Summary: TRIAGE CVE-2024-2236 mingw-libgcrypt: libgcrypt: timing based side-channel in RSA implementation [fedora-all] Product: Fedora Version: 39 Status: NEW Component: mingw-libgcrypt Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: rjones(a)redhat.com Reporter: rgatica(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: cfergeau(a)redhat.com, elima(a)redhat.com, epel-packagers-sig(a)lists.fedoraproject.org, marcandre.lureau(a)redhat.com, rjones(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2268268 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2268272 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 15

2026

2025

2024

2023

2022

2021

Epel-packagers-sig September 2024