February 2026 - Epel-packagers-sig - Fedora mailing-lists

[Bug 2344661] New: python-pytest-django-4.10.0 is available
by bugzilla＠redhat.com 13 Mar '26

13 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2344661 Bug ID: 2344661 Summary: python-pytest-django-4.10.0 is available Product: Fedora Version: rawhide Status: NEW Component: python-pytest-django Keywords: FutureFeature, Triaged Assignee: mail(a)fabian-affolter.ch Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, mail(a)fabian-affolter.ch, michel(a)michel-slm.name Target Milestone: --- Classification: Fedora Releases retrieved: 4.10.0 Upstream release that is considered latest: 4.10.0 Current version/release in rawhide: 4.9.0-2.fc42 URL: https://pypi.org/project/pytest-django/3.7.0 Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/40846/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/python-pytest-django -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2344661 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 11

[Bug 2435038] New: python-zc-lockfile: FTBFS in Fedora rawhide/f44
by bugzilla＠redhat.com 13 Mar '26

13 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2435038 Bug ID: 2435038 Summary: python-zc-lockfile: FTBFS in Fedora rawhide/f44 Product: Fedora Version: rawhide Status: NEW Component: python-zc-lockfile Assignee: dan(a)radez.net Reporter: releng(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: dan(a)radez.net, epel-packagers-sig(a)lists.fedoraproject.org, jcaratza(a)redhat.com Blocks: 2384424 (F44FTBFS) Target Milestone: --- Classification: Fedora python-zc-lockfile failed to build from source in Fedora rawhide/f44 https://koji.fedoraproject.org/koji/taskinfo?taskID=141203626 For details on the mass rebuild see: https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild Please fix python-zc-lockfile at your earliest convenience and set the bug's status to ASSIGNED when you start fixing it. If the bug remains in NEW state for 8 weeks, python-zc-lockfile will be orphaned. Before branching of Fedora 45, python-zc-lockfile will be retired, if it still fails to build. For more details on the FTBFS policy, please visit: https://docs.fedoraproject.org/en-US/fesco/Fails_to_build_from_source_Fails… Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2384424 [Bug 2384424] Fedora 44 FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2435038 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 5

[Bug 2423129] New: python-zope-testing-6.1 is available
by bugzilla＠redhat.com 13 Mar '26

13 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2423129 Bug ID: 2423129 Summary: python-zope-testing-6.1 is available Product: Fedora Version: rawhide Status: NEW Component: python-zope-testing Keywords: FutureFeature, Triaged Assignee: aurelien(a)bompard.org Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: aurelien(a)bompard.org, dan(a)radez.net, epel-packagers-sig(a)lists.fedoraproject.org, orion(a)nwra.com Target Milestone: --- Classification: Fedora Releases retrieved: 6.1 Upstream release that is considered latest: 6.1 Current version/release in rawhide: 6.0-1.fc44 URL: https://pypi.io/project/zope.testing Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/4116/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/python-zope-testing -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2423129 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 4

[Bug 2441911] New: [abrt] meld: object_set_property(): python3.14 killed by SIGSEGV
by bugzilla＠redhat.com 13 Mar '26

13 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2441911 Bug ID: 2441911 Summary: [abrt] meld: object_set_property(): python3.14 killed by SIGSEGV Product: Fedora Version: rawhide Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:0658cb71683309ffd256ab56549f72c71215ed3d;VAR IANT_ID=workstation; Component: meld Assignee: dmaphy(a)fedoraproject.org Reporter: mikhail.v.gavrilov(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: dmaphy(a)fedoraproject.org, epel-packagers-sig(a)lists.fedoraproject.org, lkundrak(a)v3.sk, michel(a)michel-slm.name Target Milestone: --- Classification: Fedora Description of problem: The crash happening every time when I compare two files in the Meld application. Version-Release number of selected component: meld-3.23.1-2.fc44 Additional info: reporter: libreport-2.17.15 type: CCpp reason: python3.14 killed by SIGSEGV journald_cursor: s=9130ed940b014d0d8cf0a94bfe59cc17;i=7a7f9;b=e41dd5bd38224e7d977ee9465b802955;m=261ad6e2;t=64aeb0a0c9dcd;x=508ff623f3361f9d executable: /usr/bin/python3.14 cmdline: /usr/bin/python3 /usr/bin/meld cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-gnome-org.gnome.Meld-17898.scope rootdir: / uid: 1000 kernel: 6.19.0-0f2acd3148e0+ package: meld-3.23.1-2.fc44 runlevel: /bin/sh: line 1: runlevel: command not found backtrace_rating: 4 crash_function: object_set_property comment: The crash happening every time when I compare two files in the Meld application. Truncated backtrace: Thread no. 1 (103 frames) #0 object_set_property at ../gobject/gobject.c:2214 #1 g_object_new_internal at ../gobject/gobject.c:2710 #4 _gtk_builder_construct at ../gtk/gtkbuilder.c:733 #5 builder_construct at ../gtk/gtkbuilderparser.c:139 #6 end_element at ../gtk/gtkbuilderparser.c:1075 #7 emit_end_element at ../glib/gmarkup.c:1048 #8 g_markup_parse_context_parse at ../glib/gmarkup.c:1606 #9 _gtk_builder_parser_parse_buffer at ../gtk/gtkbuilderparser.c:1262 #10 gtk_builder_extend_with_template at ../gtk/gtkbuilder.c:1194 #11 gtk_widget_init_template at ../gtk/gtkwidget.c:17046 #12 ffi_call_unix64 at ../src/x86/unix64.S:104 #13 ffi_call_int at ../src/x86/ffi64.c:676 #14 ffi_call at ../src/x86/ffi64.c:713 #15 pygi_invoke_c_callable at ../gi/pygi-invoke.c:722 #16 pygi_function_cache_invoke at ../gi/pygi-cache.c:753 #17 pygi_callable_info_invoke at ../gi/pygi-invoke.c:767 #18 _callable_info_vectorcall at ../gi/pygi-info.c:515 #19 _function_info_vectorcall at ../gi/pygi-info.c:579 #20 _PyObject_VectorcallTstate at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Include/internal/pycore_call.h:169 #21 PyObject_Vectorcall at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:327 #22 _PyEval_EvalFrameDefault at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Python/generated_cases.c.h:4082 #23 _PyEval_EvalFrame at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Include/internal/pycore_ceval.h:120 #24 _PyEval_Vector at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Python/ceval.c:2083 #25 _PyFunction_Vectorcall.constprop.1 at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:413 #26 _PyObject_VectorcallTstate at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Include/internal/pycore_call.h:169 #27 method_vectorcall at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/classobject.c:73 #28 _PyObject_VectorcallTstate.constprop.4 at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Include/internal/pycore_call.h:169 #29 PyObject_CallMethod at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:645 #30 pygobject__g_instance_init at ../gi/pygobject-object.c:759 #32 g_type_create_instance at ../gobject/gtype.c:1900 #33 g_object_new_internal at ../gobject/gobject.c:2666 #35 g_object_new_with_properties at ../gobject/gobject.c:2828 #36 pygobject_constructv at ../gi/pygobject-object.c:654 #37 pygobject_init at ../gi/pygobject-object.c:1024 #38 wrap_init at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/typeobject.c:9726 #39 wrapperdescr_raw_call at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/descrobject.c:523 #40 wrapperdescr_call at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/descrobject.c:570 #41 _PyObject_Call at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:361 #42 PyObject_Call at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:373 #43 _PyEval_EvalFrameDefault at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Python/generated_cases.c.h:2657 #44 _PyEval_EvalFrame at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Include/internal/pycore_ceval.h:120 #45 _PyEval_Vector at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Python/ceval.c:2083 #46 _PyFunction_Vectorcall at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:413 #47 _PyObject_VectorcallDictTstate at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:135 #48 _PyObject_Call_Prepend at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:504 #49 call_method at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/typeobject.c:2937 #50 slot_tp_init at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/typeobject.c:10483 #51 type_call at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/typeobject.c:2321 #52 _PyObject_MakeTpCall.constprop.0 at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:242 #53 _PyObject_VectorcallTstate at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Include/internal/pycore_call.h:167 #55 PyObject_Vectorcall at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:327 #56 _PyEval_EvalFrameDefault at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Python/generated_cases.c.h:1622 #57 _PyEval_Vector at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Python/ceval.c:2083 #58 _PyFunction_Vectorcall at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:413 #59 _PyObject_VectorcallTstate at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Include/internal/pycore_call.h:169 #60 method_vectorcall at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/classobject.c:95 #61 PyObject_Call at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:373 #62 _PyEval_EvalFrameDefault at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Python/generated_cases.c.h:2657 #63 _PyEval_Vector at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Python/ceval.c:2083 #64 _PyFunction_Vectorcall at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/call.c:413 #65 _PyObject_VectorcallTstate at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Include/internal/pycore_call.h:169 #66 method_vectorcall at /usr/src/debug/python3.14-3.14.3-1.fc45.x86_64/Objects/classobject.c:95 #67 pygi_signal_closure_marshal at ../gi/pygi-signal-closure.c:235 #70 signal_emit_valist_unlocked at ../gobject/gsignal.c:3561 #73 gtk_button_clicked at ../gtk/gtkbutton.c:1541 #74 gtk_button_do_release at ../gtk/gtkbutton.c:1845 #76 gtk_real_button_released at ../gtk/gtkbutton.c:1963 #79 signal_emit_valist_unlocked at ../gobject/gsignal.c:3561 #82 multipress_released_cb at ../gtk/gtkbutton.c:666 #83 _gtk_marshal_VOID__INT_DOUBLE_DOUBLEv at gtk/gtkmarshalers.c:4804 #84 _g_closure_invoke_va at ../gobject/gclosure.c:980 #85 signal_emit_valist_unlocked at ../gobject/gsignal.c:3465 #88 gtk_gesture_multi_press_end at ../gtk/gtkgesturemultipress.c:287 #89 g_cclosure_marshal_VOID__BOXEDv at ../gobject/gmarshal.c:1686 #90 _g_closure_invoke_va at ../gobject/gclosure.c:980 #91 signal_emit_valist_unlocked at ../gobject/gsignal.c:3465 #94 _gtk_gesture_set_recognized at ../gtk/gtkgesture.c:347 #95 _gtk_gesture_check_recognized at ../gtk/gtkgesture.c:388 #96 gtk_gesture_handle_event at ../gtk/gtkgesture.c:796 #98 gtk_gesture_single_handle_event at ../gtk/gtkgesturesingle.c:222 #99 gtk_event_controller_handle_event at ../gtk/gtkeventcontroller.c:230 #100 _gtk_widget_run_controllers at ../gtk/gtkwidget.c:7462 #101 _gtk_marshal_BOOLEAN__BOXEDv at gtk/gtkmarshalers.c:130 #102 _g_closure_invoke_va at ../gobject/gclosure.c:980 #103 signal_emit_valist_unlocked at ../gobject/gsignal.c:3465 #106 gtk_widget_event_internal.part.0.lto_priv.0 at ../gtk/gtkwidget.c:7827 #107 propagate_event_up at ../gtk/gtkmain.c:2591 #108 propagate_event at ../gtk/gtkmain.c:2694 #109 gtk_propagate_event at ../gtk/gtkmain.c:2728 #110 gtk_main_do_event at ../gtk/gtkmain.c:1924 #112 _gdk_event_emit at ../gdk/gdkevents.c:73 #116 g_main_context_dispatch_unlocked at ../glib/gmain.c:4425 #117 g_main_context_iterate_unlocked at ../glib/gmain.c:4490 #118 g_main_context_iteration at ../glib/gmain.c:4556 #119 g_application_run at ../gio/gapplication.c:2742 #120 ffi_call_unix64 at ../src/x86/unix64.S:104 #121 ffi_call_int at ../src/x86/ffi64.c:676 #122 ffi_call at ../src/x86/ffi64.c:713 #123 pygi_invoke_c_callable at ../gi/pygi-invoke.c:722 #124 pygi_function_cache_invoke at ../gi/pygi-cache.c:753 #125 pygi_callable_info_invoke at ../gi/pygi-invoke.c:767 #126 _callable_info_vectorcall at ../gi/pygi-info.c:515 #127 _function_info_vectorcall at ../gi/pygi-info.c:579 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2441911 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 3

[Bug 2441656] New: cpp-httplib-0.33.1 is available
by bugzilla＠redhat.com 12 Mar '26

12 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2441656 Bug ID: 2441656 Summary: cpp-httplib-0.33.1 is available Product: Fedora Version: rawhide Status: NEW Component: cpp-httplib Keywords: FutureFeature, Triaged Assignee: pemensik(a)redhat.com Reporter: upstream-release-monitoring(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, orion(a)nwra.com, pemensik(a)redhat.com Target Milestone: --- Classification: Fedora Releases retrieved: 0.33.0, 0.33.1 Upstream release that is considered latest: 0.33.1 Current version/release in rawhide: 0.32.0-1.fc45 URL: https://github.com/yhirose/cpp-httplib Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/274636/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/cpp-httplib -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2441656 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 22

[Bug 2435891] New: F43FailsToInstall: python3-bleach+css
by bugzilla＠redhat.com 12 Mar '26

12 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2435891 Bug ID: 2435891 Summary: F43FailsToInstall: python3-bleach+css Product: Fedora Version: 43 Status: NEW Component: python-bleach Assignee: Tom.Rix(a)amd.com Reporter: fti-bugs(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, igor.raits(a)gmail.com, michel(a)michel-slm.name, romain.geissler(a)amadeus.com, Tom.Rix(a)amd.com Blocks: 2339435 (F43FailsToInstall) Target Milestone: --- Classification: Fedora Hello, Please note that this comment was generated automatically by https://pagure.io/releng/blob/main/f/scripts/ftbfs-fti/follow-policy.py If you feel that this output has mistakes, please open an issue at https://pagure.io/releng/ Your package (python-bleach) Fails To Install in Fedora 43: can't install python3-bleach+css: - nothing provides (python3.14dist(tinycss2) < 1.5~~ with python3.14dist(tinycss2) >= 1.1) needed by python3-bleach+css-6.2.0-7.fc43.noarch If you know about this problem and are planning on fixing it, please acknowledge so by setting the bug status to ASSIGNED. If you don't have time to maintain this package, consider orphaning it, so maintainers of dependent packages realize the problem. If you don't react accordingly to the policy for FTBFS/FTI bugs (https://docs.fedoraproject.org/en-US/fesco/Fails_to_build_from_source_Fails…) your package may be orphaned in 8+ weeks. P.S. The data was generated solely from koji buildroot, so it might be newer than the latest compose or the content on mirrors. To reproduce, use the koji/local repo only, e.g. in mock: $ mock -r fedora-43-x86_64 --config-opts mirrored=False install python3-bleach+css P.P.S. If this bug has been reported in the middle of upgrading multiple dependent packages, please consider using side tags: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/#updating-inter-d… Thanks! Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2339435 [Bug 2339435] Fedora 43 Fails To install Tracker -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2435891 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 7

[Bug 2428892] New: CVE-2026-22776 cpp-httplib: cpp-httplib: Denial of Service due to excessive memory usage from compressed HTTP request bodies [epel-9]
by bugzilla＠redhat.com 12 Mar '26

12 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2428892 Bug ID: 2428892 Summary: CVE-2026-22776 cpp-httplib: cpp-httplib: Denial of Service due to excessive memory usage from compressed HTTP request bodies [epel-9] Product: Fedora EPEL Version: epel9 Status: NEW Whiteboard: {"flaws": ["326bbcb3-d645-45c1-adc6-0eaab3ff8fe3"]} Component: cpp-httplib Keywords: Security, SecurityTracking Severity: high Priority: high Assignee: davide(a)cavalca.name Reporter: saroy(a)redhat.com CC: davide(a)cavalca.name, epel-packagers-sig(a)lists.fedoraproject.org, orion(a)nwra.com, pemensik(a)redhat.com Blocks: 2428732 (CVE-2026-22776) Target Milestone: --- Classification: Fedora Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. The following link provides references to all essential vulnerability management information. If something is wrong or missing, please contact a member of PSIRT. https://spaces.redhat.com/display/PRODSEC/Vulnerability+Management+-+Essent… Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2428732 [Bug 2428732] CVE-2026-22776 cpp-httplib: cpp-httplib: Denial of Service due to excessive memory usage from compressed HTTP request bodies -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2428892 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 2

[Bug 2426698] New: CVE-2026-21428 cpp-httplib: cpp-httplib: Server-Side Request Forgery via header injection [epel-9]
by bugzilla＠redhat.com 12 Mar '26

12 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2426698 Bug ID: 2426698 Summary: CVE-2026-21428 cpp-httplib: cpp-httplib: Server-Side Request Forgery via header injection [epel-9] Product: Fedora EPEL Version: epel9 Status: NEW Whiteboard: {"flaws": ["23ac8221-652b-442c-8405-d6f6b2afec2c"]} Component: cpp-httplib Keywords: Security, SecurityTracking Severity: high Priority: high Assignee: davide(a)cavalca.name Reporter: pogwuche(a)redhat.com CC: davide(a)cavalca.name, epel-packagers-sig(a)lists.fedoraproject.org, orion(a)nwra.com, pemensik(a)redhat.com Blocks: 2426666 (CVE-2026-21428) Target Milestone: --- Classification: Fedora Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. The following link provides references to all essential vulnerability management information. If something is wrong or missing, please contact a member of PSIRT. https://spaces.redhat.com/display/PRODSEC/Vulnerability+Management+-+Essent… Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2426666 [Bug 2426666] CVE-2026-21428 cpp-httplib: cpp-httplib: Server-Side Request Forgery via header injection -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2426698 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 3

[Bug 2435040] New: python-zope-testing: FTBFS in Fedora rawhide/f44
by bugzilla＠redhat.com 12 Mar '26

12 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2435040 Bug ID: 2435040 Summary: python-zope-testing: FTBFS in Fedora rawhide/f44 Product: Fedora Version: rawhide Status: NEW Component: python-zope-testing Assignee: aurelien(a)bompard.org Reporter: releng(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: aurelien(a)bompard.org, dan(a)radez.net, epel-packagers-sig(a)lists.fedoraproject.org, orion(a)nwra.com Blocks: 2384424 (F44FTBFS) Target Milestone: --- Classification: Fedora python-zope-testing failed to build from source in Fedora rawhide/f44 https://koji.fedoraproject.org/koji/taskinfo?taskID=141203667 For details on the mass rebuild see: https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild Please fix python-zope-testing at your earliest convenience and set the bug's status to ASSIGNED when you start fixing it. If the bug remains in NEW state for 8 weeks, python-zope-testing will be orphaned. Before branching of Fedora 45, python-zope-testing will be retired, if it still fails to build. For more details on the FTBFS policy, please visit: https://docs.fedoraproject.org/en-US/fesco/Fails_to_build_from_source_Fails… Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2384424 [Bug 2384424] Fedora 44 FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2435040 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 7

[Bug 2432570] New: python-django-cache-url-3.4.6 is available
by bugzilla＠redhat.com 12 Mar '26

12 Mar '26

https://bugzilla.redhat.com/show_bug.cgi?id=2432570 Bug ID: 2432570 Summary: python-django-cache-url-3.4.6 is available Product: Fedora Version: rawhide Status: NEW Component: python-django-cache-url Keywords: FutureFeature, Triaged Assignee: michel(a)michel-slm.name Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: davide(a)cavalca.name, epel-packagers-sig(a)lists.fedoraproject.org, michel(a)michel-slm.name Target Milestone: --- Classification: Fedora Releases retrieved: 3.4.6 Upstream release that is considered latest: 3.4.6 Current version/release in rawhide: 3.4.5-2.fc44 URL: https://pypi.org/project/django-cache-url/3.1.0 Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_M… Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/71136/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/python-django-cache-url -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2432570 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…

1 13

2026

2025

2024

2023

2022

2021

Epel-packagers-sig February 2026