The following Fedora 38 Security updates need testing: Age URL 22 https://bodhi.fedoraproject.org/updates/FEDORA-2023-3a6f96ad55 nodejs16-16.19.1-4.fc38 7 https://bodhi.fedoraproject.org/updates/FEDORA-2023-af305bed3d cutter-re-2.2.0-1.fc38 rizin-0.5.1-1.fc38.2 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f36ef5ab9e thunderbird-102.9.0-1.fc38 4 https://bodhi.fedoraproject.org/updates/FEDORA-2023-57f5e7c000 stellarium-1.2-9.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-e3e1f9dd4d redis-7.0.10-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-8ff3ba5fb5 python-markdown-it-py-2.2.0-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-e4a4ea43d8 python-cairosvg-2.7.0-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-d451c1919f mingw-zstd-1.5.4-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-bc1545f9bc mingw-python-certifi-2022.12.7-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f72d3caf36 tar-1.34-8.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-2e38c3756f yarnpkg-1.22.19-5.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-703f133eb3 xen-4.17.0-8.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-76d18cf2fa reposurgeon-4.35-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-354467acba python-flask-restx-1.1.0-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-15c6e4be28 mingw-binutils-2.39-6.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-ea6b94395f dino-0.4.2-1.fc38
The following Fedora 38 Critical Path updates have yet to be approved: Age URL 13 https://bodhi.fedoraproject.org/updates/FEDORA-2023-9249c8591a libqalculate-4.6.0-1.fc38 qalculate-gtk-4.6.0-1.fc38 qalculate-qt-4.6.0-1.fc38 10 https://bodhi.fedoraproject.org/updates/FEDORA-2023-412ebeb345 lorax-38.9-1.fc38 4 https://bodhi.fedoraproject.org/updates/FEDORA-2023-dcaf2f56cf parted-3.5-11.fc38 4 https://bodhi.fedoraproject.org/updates/FEDORA-2023-234783a099 seabios-1.16.2-1.fc38 4 https://bodhi.fedoraproject.org/updates/FEDORA-2023-ea89419c18 kf5-kconfigwidgets-5.104.0-2.fc38 qgnomeplatform-0.9.0-10.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-d63799215f openexr-3.1.6-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-703f133eb3 xen-4.17.0-8.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f72d3caf36 tar-1.34-8.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-027c801280 annobin-11.14-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-d0ac0e140a libblockdev-2.28-5.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-e8ca690ff3 dracut-059-2.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f62a25cdcc grub2-2.06-89.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-01113a4b7b passt-0^20230321.g1ee2f7c-1.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-3b634a65e9 vim-9.0.1423-1.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-056ac7d09d mtools-4.0.43-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-121db447fd libgsf-1.14.50-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-6bae962c9b cmake-3.26.1-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-931b7f44af AusweisApp2-1.26.3-1.fc38 openssl-3.0.8-2.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-b3ebfdadf9 plasma-discover-5.27.3-2.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-23d95660c0 chkconfig-1.22-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-6b0b3cffa9 bind-9.18.13-1.fc38 bind-dyndb-ldap-11.10-14.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-28bd7071d5 initscripts-10.18-1.fc38
The following builds have been pushed to Fedora 38 updates-testing
ImageMagick-7.1.1.4-2.fc38 accountsservice-23.11.69-2.fc38 alt-ergo-2.3.3-6.fc38 amanda-3.5.3-1.fc38 anaconda-38.23.3-1.fc38 archlinux-keyring-20230320-1.fc38 aspell-sk-2.4.7-1.fc38 blivet-gui-2.4.1-1.fc38 borgbackup-1.2.4-1.fc38 chromium-111.0.5563.110-1.fc38 cockpit-288.1-1.fc38 cups-2.4.2-11.fc38 curl-7.87.0-7.fc38 deja-dup-44.1-1.fc38 dl-fedora-0.9.4-1.fc38 dnsperf-2.11.2-1.fc38 fedora-license-data-1.16-1.fc38 firefox-111.0.1-1.fc38 gap-pkg-cvec-2.8.0-1.fc38 gdb-13.1-2.fc38 gnome-shell-44.0-3.fc38 gnome-software-44.0-2.fc38 golang-github-containerd-ttrpc-1.2.1-4.fc38 java-latest-openjdk-19.0.2.0.7-5.rolling.fc38 jc-1.23.1-1.fc38 kicad-7.0.1-2.fc38 libplacebo-5.264.1-1.fc38 libreport-2.17.9-1.fc38 libsemanage-3.5-2.fc38 lsvpd-1.7.14-6.fc38 lua-sec-1.3.1-1.fc38 mingw-gcc-12.2.1-8.fc38 netconsd-0.2-1.fc38 nheko-0.11.3-2.fc38 nmstate-2.2.9-1.fc38 ocaml-csexp-1.5.2-1.fc38 ocaml-dune-3.7.0-2.fc38 ocaml-mdx-2.2.1-3.fc38 ocaml-version-3.6.1-1.fc38 openvpn-2.6.2-1.fc38 perl-Business-ISBN-3.008-1.fc38 perl-Business-ISBN-Data-20230322.001-1.fc38 perl-IO-Socket-IP-0.41-492.fc38 podman-4.4.3-1.fc38 pytest-7.2.2-1.fc38 python-google-auth-2.16.3-1.fc38 python-papermill-2.4.0-4.fc38 python-scikit-build-core-0.2.2-2.fc38 python-virtualenvwrapper-4.8.4-4.fc38 python-zodbpickle-3.0-1.fc38 python3.12-3.12.0~a6-2.fc38 qatengine-1.0.0-1.fc38 qjackctl-0.9.10-1.fc38 qsynth-0.9.10-1.fc38 rubygem-rmagick-5.2.0-2.fc38 rust-1.68.1-1.fc38 tzdata-2023b-1.fc38
Details about builds:
================================================================================ ImageMagick-7.1.1.4-2.fc38 (FEDORA-2023-f992309b7e) An X application for displaying and manipulating images -------------------------------------------------------------------------------- Update Information:
- Fix missing epoch in ImageMagick-heic requires (#2181176) - Update ImageMagick to 7.1.1.4 (#2176749) - Add support to libheif and add html docs - Rebuild rubygem-rmagick -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Kalev Lember klember@redhat.com - 1:7.1.1.4-2 - Fix missing epoch in ImageMagick-heic requires (#2181176) * Wed Mar 22 2023 S��rgio Basto sergio@serjux.com - 1:7.1.1.4-1 - Update ImageMagick to 7.1.1.4 (#2176749) - Add support to libheif and add html docs -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2176749 - ImageMagick-7.1.1.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2176749 [ 2 ] Bug #2181176 - F39FailsToInstall: ImageMagick-heic https://bugzilla.redhat.com/show_bug.cgi?id=2181176 --------------------------------------------------------------------------------
================================================================================ accountsservice-23.11.69-2.fc38 (FEDORA-2023-a5af7d5db0) D-Bus interfaces for querying and manipulating user account information -------------------------------------------------------------------------------- Update Information:
Fix delay during boot for some users -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Ray Strode rstrode@redhat.com - 23.11.69-2 - Fix delay during boot for some users Resolves: #2180768 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2180768 - GDM takes "long" before allowing mouse moves and showing the user list. https://bugzilla.redhat.com/show_bug.cgi?id=2180768 --------------------------------------------------------------------------------
================================================================================ alt-ergo-2.3.3-6.fc38 (FEDORA-2023-120f579d86) Automated theorem prover including linear arithmetic -------------------------------------------------------------------------------- Update Information:
This update fixes a failure to build from source with dune 3.7.0. There are no user-visible changes. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Jerry James loganjerry@gmail.com - 2.3.3-6 - Dune 3.7.0 changed the install location of mli files --------------------------------------------------------------------------------
================================================================================ amanda-3.5.3-1.fc38 (FEDORA-2023-3d0619d767) A network-capable tape backup solution -------------------------------------------------------------------------------- Update Information:
Update to version 3.5.3, which contains fixes for three minor security issues as well as other minor bugfixes. https://github.com/zmanda/amanda/releases/tag/tag-community-3.5.3 -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 16 2023 Orion Poplawski orion@nwra.com - 3.5.3-1 - Update to 3.5.3 - Fixes CVE-2022-37703 (bz#2126849) CVE-2022-37704 (bz#2168789) CVE-2022-37705 (bz#2168797) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2104645 - amanda bugfix for build/test issue and missing 1st char in error message https://bugzilla.redhat.com/show_bug.cgi?id=2104645 [ 2 ] Bug #2126849 - CVE-2022-37703 amanda: information leak (discovery of directory existence) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2126849 [ 3 ] Bug #2168789 - CVE-2022-37704 amanda: rundump: local privilege escalation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2168789 [ 4 ] Bug #2168797 - CVE-2022-37705 amanda: crafted arguments to the runtar SUID binary leads to local privilege escalation to root [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2168797 --------------------------------------------------------------------------------
================================================================================ anaconda-38.23.3-1.fc38 (FEDORA-2023-6671e3a283) Graphical system installer -------------------------------------------------------------------------------- Update Information:
* The installer supports software installation using OSTree containers. * The Welcome application for Live installation media is redesigned. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Packit hello@packit.dev - 38.23.3-1 - Fix virt-install cockpit run on fedora-X images (jkonecny) - For user unit tests, provide valid login.defs (vslavik) - Don't copy binaries in user unit tests (vslavik) - Don't create empty login.defs (vslavik) - Generate the ostreesetup kickstart command (vponcova) - Implement needs_network for rpm_ostree_container (#2125655) (jkonecny) - Move rpm-ostree deps from Lorax to Anaconda (#2125655) (jkonecny) - Deduplicate test data creation func in rpm ostree (jkonecny) - Add release note for ostreecontainer (#2125655) (jkonecny) - Add new OSTree container source test (#2125655) (jkonecny) - Enable RPM OSTree from container source in payload (#2125655) (jkonecny) - Add RPM OSTree source from container (#2125655) (jkonecny) - fedora-welcome: Default to light style (fmuellner) - fedora-welcome: Swap buttons (fmuellner) - fedora-welcome: Drop icons from buttons (fmuellner) - fedora-welcome: Use libadwaita (fmuellner) - fedora-welcome: Use actions instead of clicked callbacks (fmuellner) - fedora-welcome: Port to GTK4 (fmuellner) - fedora-welcome: Tweak button labels (fmuellner) - fedora-welcome: Adjust wording of description (fmuellner) - fedora-welcome: Rename .desktop file (fmuellner) - fedora-welcome: Add back app icon (fmuellner) - fedora-welcome: Replace grids with boxes (fmuellner) - fedora-welcome: Remove secondary screen (fmuellner) - fedora-welcome: Launch .desktop file instead of spawning command (fmuellner) - fedora-welcome: Fix passing command line flags (fmuellner) - fedora-welcome: Use standard Javascript modules (fmuellner) - fedora-welcome: Split out application subclass (fmuellner) - fedora-window: Use show_all() only internally (fmuellner) - fedora-welcome: Stop using deprecated Lang module (fmuellner) - fedora-welcome: Reindent WelcomeWindow class (fmuellner) - fedora-welcome: Use consistent quotes (fmuellner) - fedora-welcome: Use template strings (fmuellner) - fedora-welcome: Use consistent braces (fmuellner) - fedora-welcome: Remove unused imports (fmuellner) - Add config for Fedora Designsuite (luya) - Update translations from Weblate -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2125655 - Support ostree native containers https://bugzilla.redhat.com/show_bug.cgi?id=2125655 --------------------------------------------------------------------------------
================================================================================ archlinux-keyring-20230320-1.fc38 (FEDORA-2023-34ab67a1df) GPG keys used by Arch distribution to sign packages -------------------------------------------------------------------------------- Update Information:
Version 20230320 (#2180086) -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Frantisek Sumsal frantisek@sumsal.cz - 20230320-1 - Version 20230320 (#2180086) --------------------------------------------------------------------------------
================================================================================ aspell-sk-2.4.7-1.fc38 (FEDORA-2023-0ce64d0569) Slovak dictionaries for Aspell -------------------------------------------------------------------------------- Update Information:
Update to upstream. -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 16 2023 J��n ONDREJ (SAL) <ondrejj(at)salstar.sk> - 2.4.7-1 - Update to upstream. --------------------------------------------------------------------------------
================================================================================ blivet-gui-2.4.1-1.fc38 (FEDORA-2023-dd21d81c62) Tool for data storage configuration -------------------------------------------------------------------------------- Update Information:
Automatic update for blivet-gui-2.4.1-1.fc38. ##### **Changelog for blivet- gui** ``` * Fri Mar 24 2023 Packit hello@packit.dev - 2.4.1-1 - New version 2.4.1 (Vojtech Trefny) - ci: Add Packit configuration for downstream builds on release (Vojtech Trefny) - spec: Bump release to 27 for Packit daily builds (Vojtech Trefny) - ci: Use Packit for daily builds in Copr (Vojtech Trefny) - Translated using Weblate (Friulian) (Fabio Tomat) - Translated using Weblate (Indonesian) (Andika Triwidada) - Translated using Weblate (Hebrew) (Yaron Shahrabani) - Translated using Weblate (Georgian) (Temuri Doghonadze) - Translated using Weblate (Russian) (Igor Gorbounov) - Translated using Weblate (Slovak) (Ondrej Sulek) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Swedish) (Luna Jernberg) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Croatian) (Gogo Gogsi) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Turkish) (O��uz Ersen) - Translated using Weblate (Chinese (Simplified) (zh_CN)) (yangyangdaji) - Translated using Weblate (Korean) (���������) - Translated using Weblate (Ukrainian) (Yuri Chornoivan) - Translated using Weblate (Polish) (Piotr Dr��g) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Finnish) (Jiri Gr��nroos) - Update translation files (Weblate) - Translated using Weblate (German) (Ettore Atalan) - Fix various typos discovered by spellintian (Vojtech Trefny) - Translated using Weblate (Chinese (Simplified) (zh_CN)) (yangyangdaji) - Translated using Weblate (French) (Alexandre Hen) - spec: Change license string to the SPDX format required by Fedora (Vojtech Trefny) - Translated using Weblate (Korean) (���������) - Translated using Weblate (German) (Ettore Atalan) - Update translation files (Weblate) - Translated using Weblate (Turkish) (O��uz Ersen) - Sync spec with downstream (Vojtech Trefny) ``` -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Packit hello@packit.dev - 2.4.1-1 - New version 2.4.1 (Vojtech Trefny) - ci: Add Packit configuration for downstream builds on release (Vojtech Trefny) - spec: Bump release to 27 for Packit daily builds (Vojtech Trefny) - ci: Use Packit for daily builds in Copr (Vojtech Trefny) - Translated using Weblate (Friulian) (Fabio Tomat) - Translated using Weblate (Indonesian) (Andika Triwidada) - Translated using Weblate (Hebrew) (Yaron Shahrabani) - Translated using Weblate (Georgian) (Temuri Doghonadze) - Translated using Weblate (Russian) (Igor Gorbounov) - Translated using Weblate (Slovak) (Ondrej Sulek) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Swedish) (Luna Jernberg) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Croatian) (Gogo Gogsi) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Turkish) (O��uz Ersen) - Translated using Weblate (Chinese (Simplified) (zh_CN)) (yangyangdaji) - Translated using Weblate (Korean) (���������) - Translated using Weblate (Ukrainian) (Yuri Chornoivan) - Translated using Weblate (Polish) (Piotr Dr��g) - Translated using Weblate (Kazakh) (Baurzhan Muftakhidinov) - Translated using Weblate (Finnish) (Jiri Gr��nroos) - Update translation files (Weblate) - Translated using Weblate (German) (Ettore Atalan) - Fix various typos discovered by spellintian (Vojtech Trefny) - Translated using Weblate (Chinese (Simplified) (zh_CN)) (yangyangdaji) - Translated using Weblate (French) (Alexandre Hen) - spec: Change license string to the SPDX format required by Fedora (Vojtech Trefny) - Translated using Weblate (Korean) (���������) - Translated using Weblate (German) (Ettore Atalan) - Update translation files (Weblate) - Translated using Weblate (Turkish) (O��uz Ersen) - Sync spec with downstream (Vojtech Trefny) --------------------------------------------------------------------------------
================================================================================ borgbackup-1.2.4-1.fc38 (FEDORA-2023-d5249ad1da) A deduplicating backup program with compression and authenticated encryption -------------------------------------------------------------------------------- Update Information:
new upstream version 1.2.4 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Felix Schwarz fschwarz@fedoraproject.org - 1.2.4-1 - update to 1.2.4 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2075715 - borgbackup-1.2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2075715 --------------------------------------------------------------------------------
================================================================================ chromium-111.0.5563.110-1.fc38 (FEDORA-2023-afb29b2fce) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information:
update to 111.0.5563.110. Fixes the following security issues: CVE-2023-1528 CVE-2023-1529 CVE-2023-1530 CVE-2023-1531 CVE-2023-1532 CVE-2023-1533 CVE-2023-1534 -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 22 2023 Than Ngo than@redhat.com - 111.0.5563.110-1 - update to 111.0.5563.110 --------------------------------------------------------------------------------
================================================================================ cockpit-288.1-1.fc38 (FEDORA-2023-beb634be28) Web Console for Linux servers -------------------------------------------------------------------------------- Update Information:
Automatic update for cockpit-288.1-1.fc38. ---- Automatic update for cockpit-288-1.fc38. ##### **Changelog for cockpit** ``` * Thu Mar 23 2023 Packit hello@packit.dev - 288-1 - Accounts: Show shell and home directory on detail page - Accounts: Custom user ID during account creation - Overview: Support additional timeservers with chronyd - Metrics: Show longer time span by default - Storage: Mounting filesystems at boot time - Services: Units need to be re-pinned - API removal: Remove cockpit.dbus.publish() and .meta() - Development: Cockpit now supports the esbuild bundler ``` -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Packit hello@packit.dev - 288.1-1 - Fix broken "SELinux" menu entry * Thu Mar 23 2023 Packit hello@packit.dev - 288-1 - Accounts: Show shell and home directory on detail page - Accounts: Custom user ID during account creation - Overview: Support additional timeservers with chronyd - Metrics: Show longer time span by default - Storage: Mounting filesystems at boot time - Services: Units need to be re-pinned - API removal: Remove cockpit.dbus.publish() and .meta() - Development: Cockpit now supports the esbuild bundler --------------------------------------------------------------------------------
================================================================================ cups-2.4.2-11.fc38 (FEDORA-2023-b3bbea1560) CUPS printing system -------------------------------------------------------------------------------- Update Information:
Prevent using FORTIFY_SOURCE=2 -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Siddhesh Poyarekar siddhesh@redhat.com - 1:2.4.2-11 - Drop unnecessary LDFLAGS addition. --------------------------------------------------------------------------------
================================================================================ curl-7.87.0-7.fc38 (FEDORA-2023-0de03a9232) A utility for getting files from remote servers (FTP, HTTP, and others) -------------------------------------------------------------------------------- Update Information:
- fix SSH connection too eager reuse still (CVE-2023-27538) - fix HSTS double- free (CVE-2023-27537) - fix GSS delegation too eager connection re-use (CVE-2023-27536) - fix FTP too eager connection reuse (CVE-2023-27535) - fix SFTP path ~ resolving discrepancy (CVE-2023-27534) - fix TELNET option IAC injection (CVE-2023-27533) -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Kamil Dudka kdudka@redhat.com - 7.87.0-7 - fix SSH connection too eager reuse still (CVE-2023-27538) - fix HSTS double-free (CVE-2023-27537) - fix GSS delegation too eager connection re-use (CVE-2023-27536) - fix FTP too eager connection reuse (CVE-2023-27535) - fix SFTP path ~ resolving discrepancy (CVE-2023-27534) - fix TELNET option IAC injection (CVE-2023-27533) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2180427 - CVE-2023-27533 curl: TELNET option IAC injection [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180427 [ 2 ] Bug #2180429 - CVE-2023-27535 curl: FTP too eager connection reuse [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180429 [ 3 ] Bug #2180431 - CVE-2023-27536 curl: GSS delegation too eager connection re-use [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180431 [ 4 ] Bug #2180434 - CVE-2023-27534 curl: SFTP path ~ resolving discrepancy [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180434 [ 5 ] Bug #2180435 - CVE-2023-27538 curl: SSH connection too eager reuse still [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180435 --------------------------------------------------------------------------------
================================================================================ deja-dup-44.1-1.fc38 (FEDORA-2023-ad16e6abc9) Simple backup tool and frontend for duplicity -------------------------------------------------------------------------------- Update Information:
44.1 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Gwyn Ciesla gwync@protonmail.com - 44.1-1 - 44.1 * Wed Mar 1 2023 Gwyn Ciesla gwync@protonmail.com - 44.0-3 - migrated to SPDX license -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181640 - deja-dup-44.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181640 --------------------------------------------------------------------------------
================================================================================ dl-fedora-0.9.4-1.fc38 (FEDORA-2023-b59c2c5f10) Fedora image download tool -------------------------------------------------------------------------------- Update Information:
- add new F38 spins: Budgie and Sway - change koji target to --koji mirror option - if mirror redirect fails then fallback to primary - run with qemu -cpu host option -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Jens Petersen petersen@redhat.com - 0.9.4-1 - add new F38 spins: Budgie and Sway - change koji target to --koji mirror option - if mirror redirect fails then fallback to primary - run with qemu -cpu host option --------------------------------------------------------------------------------
================================================================================ dnsperf-2.11.2-1.fc38 (FEDORA-2023-f4792156c6) Benchmarking authorative and recursing DNS servers -------------------------------------------------------------------------------- Update Information:
Hopefully final long option fix -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 17 2023 Petr Men����k pemensik@redhat.com - 2.11.2-1 - Update to 2.11.2 * Sat Mar 11 2023 Petr Men����k pemensik@redhat.com - 2.11.1-1 - Update to 2.11.1 --------------------------------------------------------------------------------
================================================================================ fedora-license-data-1.16-1.fc38 (FEDORA-2023-d7891ddcae) Fedora Linux license data -------------------------------------------------------------------------------- Update Information:
several new licenses added -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Miroslav Such�� msuchy@redhat.com 1.16-1 - Add public-domain text for python-multiprocess - Add public domain text for versioneer in python-llvmlite - Add Martin-Birgmeier - Add public domain license in perl-libxml-perl - Add public domain license in perl-Math-Int64 - Add public domain license in perl-Net-OpenID-Consumer - Add public domain license in perl-Net-OpenID-Server - Add public domain license in perl-perlfaq - Update GPL-2.0-only_WITH_389-exception.toml - Add new file: GPL-2.0-only WITH 389-exception - Add public-domain text for jo - Add public-domain license texts for abseil-cpp - Update public-domain-text.txt for ecl - Update public-domain-text.txt for gap-pkg-profiling - Update public-domain-text.txt for icu4j - Update public-domain-text.txt for mona - Update public-domain-text.txt for pl - Update public-domain-text.txt for pvs-sbcl - Add Blessing - Add new file: HPND-sell-variant-MIT-disclaimer - Add new file: OFFIS - Add new file: UCAR - Add new file: TPL-1.0 - Add new file: Brian-Gladman-3-Clause - Add new file: OpenPBS.toml - Update public-domain-text.txt for python-pdfminer - Add MagniComp-EULA as not-allowed --------------------------------------------------------------------------------
================================================================================ firefox-111.0.1-1.fc38 (FEDORA-2023-2e7d25b9ca) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information:
- Updated to latest upstream (111.0.1) -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 22 2023 Martin Stransky stransky@redhat.com- 111.0.1-1 - Updated to 111.0.1 * Tue Mar 21 2023 Jan Grulich jgrulich@redhat.com - 111.0-3 - libwebrtc: backport upstream fix/improvement for DmaBuf screen sharing * Tue Mar 21 2023 Martin Stransky stransky@redhat.com- 111.0-2 - Added libproxy support (rhbz#2177806) - Added build fixes on arm --------------------------------------------------------------------------------
================================================================================ gap-pkg-cvec-2.8.0-1.fc38 (FEDORA-2023-c2bcbb5217) Compact vectors over finite fields -------------------------------------------------------------------------------- Update Information:
Changes in version 2.8.0: - Adjust to revised `MatrixObj` interface in GAP 4.13 - Various janitorial changes -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Jerry James loganjerry@gmail.com - 2.8.0-1 - Version 2.8.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181429 - gap-pkg-cvec-2.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181429 --------------------------------------------------------------------------------
================================================================================ gdb-13.1-2.fc38 (FEDORA-2023-b771537e6e) A stub package for GNU source-level debugger -------------------------------------------------------------------------------- Update Information:
Backport fix for RHBZ 2177655. (Luis Machado) -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Kevin Buettner kevinb@redhat.com - 13.1-2 - Backport fix for RHBZ 2177655. (Luis Machado) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2177655 - gdb broken on aarch64 by rebase to gdb 13.1 https://bugzilla.redhat.com/show_bug.cgi?id=2177655 --------------------------------------------------------------------------------
================================================================================ gnome-shell-44.0-3.fc38 (FEDORA-2023-3c08f9c1b2) Window management and application launching for GNOME -------------------------------------------------------------------------------- Update Information:
This update backports a fix to the screenshot code which will make it so screenshots are once again added to the "recent files" list and a notification is shown when you take one, as intended. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Adam Williamson awilliam@redhat.com - 44.0-3 - Backport a fix for screenshot notifications --------------------------------------------------------------------------------
================================================================================ gnome-software-44.0-2.fc38 (FEDORA-2023-49b5dec107) A software center for GNOME -------------------------------------------------------------------------------- Update Information:
Prefer Fedora Flatpaks before RPM before other sources for apps -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Milan Crha mcrha@redhat.com - 44.0-2 - Resolves: #2181367 (Prefer Fedora Flatpaks before RPM before other sources for apps) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181367 - Incorrect priority order of app sources https://bugzilla.redhat.com/show_bug.cgi?id=2181367 --------------------------------------------------------------------------------
================================================================================ golang-github-containerd-ttrpc-1.2.1-4.fc38 (FEDORA-2023-20069f6fa9) GRPC for low-memory environments -------------------------------------------------------------------------------- Update Information:
Update ttrpc to v1.2.1 -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #2176347 - golang-github-containerd-ttrpc-1.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2176347 --------------------------------------------------------------------------------
================================================================================ java-latest-openjdk-19.0.2.0.7-5.rolling.fc38 (FEDORA-2023-b24f737e1e) OpenJDK 19 Runtime Environment -------------------------------------------------------------------------------- Update Information:
Using icons whcih are now part of the portble tarball -------------------------------------------------------------------------------- ChangeLog:
--------------------------------------------------------------------------------
================================================================================ jc-1.23.1-1.fc38 (FEDORA-2023-d0c26dc6ca) Serialize the output of CLI tools and file-types to structured JSON -------------------------------------------------------------------------------- Update Information:
Update v1.23.1 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Artur Frenszek-Iwicki fedora@svgames.pl - 1.23.1-1 - Update to v1.23.1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181400 - jc-1.23.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181400 --------------------------------------------------------------------------------
================================================================================ kicad-7.0.1-2.fc38 (FEDORA-2023-d4498de4a0) EDA software suite for creation of schematic diagrams and PCBs -------------------------------------------------------------------------------- Update Information:
Put redhat-lsb-core back -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Steven A. Falco stevenfalco@gmail.com - 1:7.0.1-2 - Put redhat-lsb-core back --------------------------------------------------------------------------------
================================================================================ libplacebo-5.264.1-1.fc38 (FEDORA-2023-869535e476) Reusable library for GPU-accelerated video/image rendering primitives -------------------------------------------------------------------------------- Update Information:
This bugfix release fixes a major regression in the v5.264.0 tone-mapping redesign which resulted in garbage pixels (and unnecessary tone-mapping) when using an ICC output profile, as well as other minor miscellaneous fixes. Fixes: - fix linear tone mapping resulting in garbage pixels appearing in and around black and near-black regions - fix ICC profiles incorrectly resulting in tone- mapping being enabled - fix minimum meson version being incorrectly set - fix HDR10 static metadata minimum brightness not being sent when using HDR passthrough - fix left-over debug junk that could possibly cause a shader miscompilation on older GLSL - fix a possible memleak in pl_renderer - fix several hypothetical sources of UB inside internal code - various minor fixes to misleading or missing log messages -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Nicolas Chauvet kwizart@gmail.com - 5.264.1-1 - Update to 5.264.1 --------------------------------------------------------------------------------
================================================================================ libreport-2.17.9-1.fc38 (FEDORA-2023-a9d3b9efc8) Generic library for reporting various problems -------------------------------------------------------------------------------- Update Information:
Update to 2.17.9 (bugfix release). -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Packit hello@packit.dev - 2.17.9-1 - Release version 2.17.9 (Michal Srb) - reporter-bugzilla: Fix string interpolation (Mat��j Grabovsk��) - reporter-bugzilla: Replace flags with just keyword arg (Michal Srb) - reporter-bugzilla: Make sure that the creator of a bug is always in CC (Michal Srb) - reporter-bugzilla: Don't fail if reported_to file doesn't exist (Michal Srb) - reporter-bugzilla: Fix reporting when the bug already exists (Michal Srb) - use $XDG_CONFIG_HOME to access user's configuration files (Yann Droneaud) - Update translations (mgrabovsky) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2175415 - reporter-bugzilla doesn't read user's bugzilla.conf https://bugzilla.redhat.com/show_bug.cgi?id=2175415 [ 2 ] Bug #2175891 - [abrt] libreport-plugin-bugzilla: create_new_file_at(): dump_dir.py:1464:create_new_file_at:FileNotFoundError: [Errno 2] No such file or directory: 'reported_to' https://bugzilla.redhat.com/show_bug.cgi?id=2175891 [ 3 ] Bug #2176481 - A `non-existing reported_to directory`error when trying to report Anaconda bugs. https://bugzilla.redhat.com/show_bug.cgi?id=2176481 [ 4 ] Bug #2177132 - libreport crashes when I tries report selinux issue. https://bugzilla.redhat.com/show_bug.cgi?id=2177132 [ 5 ] Bug #2180286 - Too many mail notifications on new bug fill https://bugzilla.redhat.com/show_bug.cgi?id=2180286 [ 6 ] Bug #2180609 - [abrt] libreport-plugin-bugzilla: create_new_file_at(): dump_dir.py:1464:create_new_file_at:FileNotFoundError: [Errno 2] No such file or directory: 'reported_to' https://bugzilla.redhat.com/show_bug.cgi?id=2180609 --------------------------------------------------------------------------------
================================================================================ libsemanage-3.5-2.fc38 (FEDORA-2023-115bd7738b) SELinux binary policy manipulation library -------------------------------------------------------------------------------- Update Information:
libsemanage: include more parameters in the module checksum The check_ext_changes option currently assumes that as long as the module content is unchanged, it is safe to assume that the policy.linked file doesn't need to be rebuilt. However, there are some additional parameters that can affect the content of this policy file, namely: * the disable_dontaudit and preserve_tunables flags * the target_platform and policyvers configuration values Include these in the checksum so that the option works correctly when only some of these input values are changed versus the current state. Fixes: 286a679fadc4 ("libsemanage: optionally rebuild policy when modules are changed externally") See also bug 2173959 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Petr Lautrbach lautrbach@redhat.com - 3.5-2 - Include more parameters in the module checksum (#2173959) --------------------------------------------------------------------------------
================================================================================ lsvpd-1.7.14-6.fc38 (FEDORA-2023-2a69ee8b15) VPD/hardware inventory utilities for Linux -------------------------------------------------------------------------------- Update Information:
this update fixes following bug: - lsvpd not reporting the correct I/O microcode for HBA, PCIe, SAS adapters, HDD, etc -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Than Ngo than@redhat.com - 1.7.14-6 - lsvpd is not reporting the correct I/O microcode for HBA, PCIe, SAS adapters, HDD, etc * Thu Feb 16 2023 Than Ngo than@redhat.com - 1.7.14-5 - migrated to SPDX license --------------------------------------------------------------------------------
================================================================================ lua-sec-1.3.1-1.fc38 (FEDORA-2023-7db41153aa) Lua binding for OpenSSL library -------------------------------------------------------------------------------- Update Information:
# LuaSec 1.3.1 - Fix: check if PSK is available -------------------------------------------------------------------------------- ChangeLog:
* Mon Mar 20 2023 Robert Scheck robert@fedoraproject.org 1.3.1-1 - Upgrade to 1.3.1 (#2179984) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2179984 - lua-sec-1.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2179984 --------------------------------------------------------------------------------
================================================================================ mingw-gcc-12.2.1-8.fc38 (FEDORA-2023-f5fcbb26b3) MinGW Windows cross-compiler (GCC) for C -------------------------------------------------------------------------------- Update Information:
Split out libstdc++ into subpackage. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Sandro Mani manisandro@gmail.com - 12.2.1-8 - Split out libstdc++ -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181524 - RFE: split libstdc++ to a separate subpackage (mingw{32,64}-libstdc++?) to avoid some mingw packages dependency on mingw{32,64}-gcc-c++ https://bugzilla.redhat.com/show_bug.cgi?id=2181524 --------------------------------------------------------------------------------
================================================================================ netconsd-0.2-1.fc38 (FEDORA-2023-f25098f499) The Netconsole Daemon -------------------------------------------------------------------------------- Update Information:
Update to 0.2 to address CVE-2023-28753; Fixes: RHBZ#2181655 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Davide Cavalca dcavalca@fedoraproject.org - 0.2-1 - Update to 0.2 to address CVE-2023-28753; Fixes: RHBZ#2181655 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181655 - netconsd-0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181655 --------------------------------------------------------------------------------
================================================================================ nheko-0.11.3-2.fc38 (FEDORA-2023-b3fccee4f4) Desktop client for the Matrix protocol -------------------------------------------------------------------------------- Update Information:
Backported upstream patch with GCC 13 build fix. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Vitaly Zaitsev vitaly@easycoding.org - 0.11.3-2 - Backported upstream patch with GCC 13 build fix. --------------------------------------------------------------------------------
================================================================================ nmstate-2.2.9-1.fc38 (FEDORA-2023-a226c4298d) Declarative network manager API -------------------------------------------------------------------------------- Update Information:
Upgrade to 2.2.9 -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Gris Ge fge@redhat.com - 2.2.9-1 - Upgrade to 2.2.9 * Wed Mar 22 2023 Gris Ge fge@redhat.com - 2.2.8-2 - Enable packit --------------------------------------------------------------------------------
================================================================================ ocaml-csexp-1.5.2-1.fc38 (FEDORA-2023-f3a941f112) Parsing and printing of S-expressions in canonical form -------------------------------------------------------------------------------- Update Information:
Changes in ocaml-csexp 1.5.2: - Fix `Csexp.serialised_length`. Previously, it would under count by 2 because it did not take the parentheses into account. ([#22](https://github.com/ocaml-dune/csexp/pull/22), jchavarri) Changes in ocaml-version 3 6.1: - Expose 4.08.1 and 4.14.1 (MisterDA [#60](https://github.com/ocurrent/ocaml-version/pull/60)) See https://github.com/ocaml/dune/releases/tag/3.7.0 for changes in ocaml-dune 3.7.0. In addition, we have made one downstream change. Upstream, the `map_workspace_root` setting defaults to true if the dune lang setting is 3.0 or greater. We have made it default to false in all cases, because the true setting has been found to prevent generating good debuginfo. If a project explicitly sets `map_workspace_root`, we do not change it; this is a change in the default only. The ocaml-mdx build is a simple rebuild due to the ocaml-csexp and ocaml- version updates. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Jerry James loganjerry@gmail.com - 1.5.2-1 - Version 1.5.2 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181428 - ocaml-csexp-1.5.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181428 --------------------------------------------------------------------------------
================================================================================ ocaml-dune-3.7.0-2.fc38 (FEDORA-2023-f3a941f112) Composable build system for OCaml and Reason -------------------------------------------------------------------------------- Update Information:
Changes in ocaml-csexp 1.5.2: - Fix `Csexp.serialised_length`. Previously, it would under count by 2 because it did not take the parentheses into account. ([#22](https://github.com/ocaml-dune/csexp/pull/22), jchavarri) Changes in ocaml-version 3 6.1: - Expose 4.08.1 and 4.14.1 (MisterDA [#60](https://github.com/ocurrent/ocaml-version/pull/60)) See https://github.com/ocaml/dune/releases/tag/3.7.0 for changes in ocaml-dune 3.7.0. In addition, we have made one downstream change. Upstream, the `map_workspace_root` setting defaults to true if the dune lang setting is 3.0 or greater. We have made it default to false in all cases, because the true setting has been found to prevent generating good debuginfo. If a project explicitly sets `map_workspace_root`, we do not change it; this is a change in the default only. The ocaml-mdx build is a simple rebuild due to the ocaml-csexp and ocaml- version updates. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Jerry James loganjerry@gmail.com - 3.7.0-2 - Rebuild for ocaml-csexp 1.5.2 * Tue Mar 21 2023 Jerry James loganjerry@gmail.com - 3.7.0-1 - Version 3.7.0 - The fiber subpackage has been removed - Add debuginfo patch to produce good debuginfo again -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181428 - ocaml-csexp-1.5.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181428 --------------------------------------------------------------------------------
================================================================================ ocaml-mdx-2.2.1-3.fc38 (FEDORA-2023-f3a941f112) Executable code blocks inside markdown files -------------------------------------------------------------------------------- Update Information:
Changes in ocaml-csexp 1.5.2: - Fix `Csexp.serialised_length`. Previously, it would under count by 2 because it did not take the parentheses into account. ([#22](https://github.com/ocaml-dune/csexp/pull/22), jchavarri) Changes in ocaml-version 3 6.1: - Expose 4.08.1 and 4.14.1 (MisterDA [#60](https://github.com/ocurrent/ocaml-version/pull/60)) See https://github.com/ocaml/dune/releases/tag/3.7.0 for changes in ocaml-dune 3.7.0. In addition, we have made one downstream change. Upstream, the `map_workspace_root` setting defaults to true if the dune lang setting is 3.0 or greater. We have made it default to false in all cases, because the true setting has been found to prevent generating good debuginfo. If a project explicitly sets `map_workspace_root`, we do not change it; this is a change in the default only. The ocaml-mdx build is a simple rebuild due to the ocaml-csexp and ocaml- version updates. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Jerry James loganjerry@gmail.com - 2.2.1-3 - Rebuild for ocaml-csexp 1.5.2 * Tue Mar 21 2023 Jerry James loganjerry@gmail.com - 2.2.1-2 - Rebuild for ocaml-version 3.6.1 - Re-enable debuginfo now that dune is fixed -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181428 - ocaml-csexp-1.5.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181428 --------------------------------------------------------------------------------
================================================================================ ocaml-version-3.6.1-1.fc38 (FEDORA-2023-f3a941f112) Manipulate, parse and generate OCaml compiler version strings -------------------------------------------------------------------------------- Update Information:
Changes in ocaml-csexp 1.5.2: - Fix `Csexp.serialised_length`. Previously, it would under count by 2 because it did not take the parentheses into account. ([#22](https://github.com/ocaml-dune/csexp/pull/22), jchavarri) Changes in ocaml-version 3 6.1: - Expose 4.08.1 and 4.14.1 (MisterDA [#60](https://github.com/ocurrent/ocaml-version/pull/60)) See https://github.com/ocaml/dune/releases/tag/3.7.0 for changes in ocaml-dune 3.7.0. In addition, we have made one downstream change. Upstream, the `map_workspace_root` setting defaults to true if the dune lang setting is 3.0 or greater. We have made it default to false in all cases, because the true setting has been found to prevent generating good debuginfo. If a project explicitly sets `map_workspace_root`, we do not change it; this is a change in the default only. The ocaml-mdx build is a simple rebuild due to the ocaml-csexp and ocaml- version updates. -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 21 2023 Jerry James loganjerry@gmail.com - 3.6.1-1 - Version 3.6.1 - Re-enable debuginfo generation now that dune is fixed -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181428 - ocaml-csexp-1.5.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181428 --------------------------------------------------------------------------------
================================================================================ openvpn-2.6.2-1.fc38 (FEDORA-2023-ab8cd01951) A full-featured TLS VPN solution (beta release) -------------------------------------------------------------------------------- Update Information:
Update to upstream OpenVPN 2.6.2. This is just a bugfix release. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 David Sommerseth davids@openvpn.net -2.6.2-1 - Update to upstream OpenVPN 2.6.2 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181616 - openvpn-2.6.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181616 --------------------------------------------------------------------------------
================================================================================ perl-Business-ISBN-3.008-1.fc38 (FEDORA-2023-5b3f14cd81) Perl module to work with International Standard Book Numbers -------------------------------------------------------------------------------- Update Information:
3.008 - Fix test t/errors.t which fails with Business-ISBN-Data-20230316.001. An ISBN that was invalid is now valid. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Jitka Plesnikova jplesnik@redhat.com - 3.008-1 - 3.008 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181237 - perl-Business-ISBN-3.007-5.fc39 FTBFS: t/errors.t: Failed test 'ISBN 9786316294241 error text mentions 'group'' https://bugzilla.redhat.com/show_bug.cgi?id=2181237 [ 2 ] Bug #2181377 - perl-Business-ISBN-3.008 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181377 --------------------------------------------------------------------------------
================================================================================ perl-Business-ISBN-Data-20230322.001-1.fc38 (FEDORA-2023-b80bcf5b8f) The data pack for Business::ISBN -------------------------------------------------------------------------------- Update Information:
20230322.001 - ISBN data for 20230322.001 ---- March 2023 update. -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Jitka Plesnikova jplesnik@redhat.com - 20230322.001-1 - 20230322.001 bump * Fri Mar 17 2023 Paul Howarth paul@city-fan.org - 20230316.001-1 - 20230316.001 bump (rhbz#2179198) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2179198 - perl-Business-ISBN-Data-20230316.001 is available https://bugzilla.redhat.com/show_bug.cgi?id=2179198 [ 2 ] Bug #2180986 - perl-Business-ISBN-Data-20230322.001 is available https://bugzilla.redhat.com/show_bug.cgi?id=2180986 --------------------------------------------------------------------------------
================================================================================ perl-IO-Socket-IP-0.41-492.fc38 (FEDORA-2023-c69051efba) Drop-in replacement for IO::Socket::INET supporting both IPv4 and IPv6 -------------------------------------------------------------------------------- Update Information:
Remove build dependency to not needed Socket6 package -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Michal Josef ��pa��ek mspacek@redhat.com - 0.41-492 - Remove not needed Socket6 package in build --------------------------------------------------------------------------------
================================================================================ podman-4.4.3-1.fc38 (FEDORA-2023-43eac1fa90) Manage Pods, Containers and Container Images -------------------------------------------------------------------------------- Update Information:
auto bump to v4.4.3 -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 RH Container Bot rhcontainerbot@fedoraproject.org - 5:4.4.3-1 - auto bump to v4.4.3 * Mon Mar 6 2023 Lokesh Mandvekar lsm5@fedoraproject.org - 5:4.4.2-3 - migrated to SPDX license --------------------------------------------------------------------------------
================================================================================ pytest-7.2.2-1.fc38 (FEDORA-2023-18f4d425e8) Simple powerful testing with Python -------------------------------------------------------------------------------- Update Information:
Bugfix pytest release https://docs.pytest.org/en/7.2.x/changelog.html#pytest-7-2-2-2023-03-03 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Miro Hron��ok mhroncok@redhat.com - 7.2.2-1 - Update to 7.2.2 - Changelog: https://docs.pytest.org/en/7.2.x/changelog.html#pytest-7-2-2-2023-03-03 - Fixes: rhbz#2175310 * Fri Feb 10 2023 Stephen Gallagher sgallagh@redhat.com - 7.2.1-2 - Don't build tests and docs on RHEL to reduce dependencies -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2175310 - pytest-7.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2175310 --------------------------------------------------------------------------------
================================================================================ python-google-auth-2.16.3-1.fc38 (FEDORA-2023-04ccb82965) Google Auth Python Library -------------------------------------------------------------------------------- Update Information:
Update python-google-auth to 2.16.3 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Jason Montleon jmontleo@redhat.com - 1:2.16.3-1 - Update to 2.16.3 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2171196 - python-google-auth-2.16.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2171196 --------------------------------------------------------------------------------
================================================================================ python-papermill-2.4.0-4.fc38 (FEDORA-2023-81c9edccbe) Parameterize and run Jupyter and nteract Notebooks -------------------------------------------------------------------------------- Update Information:
New package: python papermill -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Ankur Sinha (Ankur Sinha Gmail) sanjay.ankur@gmail.com - 2.4.0-4 - feat: upload sources (fixes rhbz#2173665) * Fri Mar 24 2023 Ankur Sinha (Ankur Sinha Gmail) sanjay.ankur@gmail.com - 2.4.0-3 - feat: update as per review comments - spelling corrections - add extra subpkgs - generate man page in build - parallelise pytest - correct BRs * Fri Mar 24 2023 Ankur Sinha (Ankur Sinha Gmail) sanjay.ankur@gmail.com - 2.4.0-2 - feat: ready for review * Fri Mar 24 2023 Ankur Sinha (Ankur Sinha Gmail) sanjay.ankur@gmail.com - 2.4.0-1 - init -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2173665 - Review Request: python-papermill - Parametrize and run Jupyter and nteract Notebooks https://bugzilla.redhat.com/show_bug.cgi?id=2173665 --------------------------------------------------------------------------------
================================================================================ python-scikit-build-core-0.2.2-2.fc38 (FEDORA-2023-85fb81543e) Build backend for CMake based projects -------------------------------------------------------------------------------- Update Information:
Initial release of scikit-build-core on Fedora -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Miro Hron��ok miro@hroncok.cz - 0.2.2-2 - Move the Requires, Recommends and Suggests to python3-scikit-build-core * Mon Mar 20 2023 Cristian Le cristian.le@mpsd.mpg.de - 0.2.2-1 - Initial import (#2179414). -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2179414 - Review Request: python-scikit-build-core - Build backend for CMake based projects https://bugzilla.redhat.com/show_bug.cgi?id=2179414 --------------------------------------------------------------------------------
================================================================================ python-virtualenvwrapper-4.8.4-4.fc38 (FEDORA-2023-42aa6de549) Enhancements to virtualenv -------------------------------------------------------------------------------- Update Information:
This update prevents a warning issued by grep when invoking virtualenvwrapper commands. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Nils Philippsen nils@redhat.com - 4.8.4-4 - Use `grep -E` instead of deprecated `egrep` --------------------------------------------------------------------------------
================================================================================ python-zodbpickle-3.0-1.fc38 (FEDORA-2023-de13d24649) Fork of Python 2 pickle module for ZODB -------------------------------------------------------------------------------- Update Information:
Changes in version 3.0: - Build Linux binary wheels for Python 3.11. - Add preliminary support for Python 3.12a5. - Drop support for Python 2.7, 3.5, 3.6. - Drop support for deprecated ``python setup.py test``. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Jerry James loganjerry@gmail.com - 3.0-1 - Version 3.0 * Thu Feb 23 2023 Jerry James loganjerry@gmail.com - 2.6-2 - Dynamically generate BuildRequires --------------------------------------------------------------------------------
================================================================================ python3.12-3.12.0~a6-2.fc38 (FEDORA-2023-7e2eb74b21) Version 3.12 of the Python interpreter -------------------------------------------------------------------------------- Update Information:
Increase the test timeout in %check We saw test failures lately mostly on ppc64le due to test_compile taking more than 30 minutes. There is no benefit for the users. -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Miro Hron��ok mhroncok@redhat.com - 3.12.0~a6-2 - Increase the test timeout during package build --------------------------------------------------------------------------------
================================================================================ qatengine-1.0.0-1.fc38 (FEDORA-2023-c2825e313f) Intel QuickAssist Technology (QAT) OpenSSL Engine -------------------------------------------------------------------------------- Update Information:
Update to qatengine v1.0.0 -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 22 2023 Yogaraj Alamenda yogarajx.alamenda@intel.com - 1.0.0-1 - Update to qatengine v1.0.0 --------------------------------------------------------------------------------
================================================================================ qjackctl-0.9.10-1.fc38 (FEDORA-2023-8368bc2ee4) Qt based JACK control application -------------------------------------------------------------------------------- Update Information:
Update to version 0.9.10 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Christoph Karl <pampelmuse [AT] gmx [DOT] at> - 0.9.10-1 - Update to version 0.9.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181178 - qjackctl-0.9.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181178 --------------------------------------------------------------------------------
================================================================================ qsynth-0.9.10-1.fc38 (FEDORA-2023-7fbe023a60) Qt based Fluidsynth GUI front end -------------------------------------------------------------------------------- Update Information:
Update to version 0.9.10 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Christoph Karl <pampelmuse [AT] gmx [DOT] at> - 0.9.10-1 - Update to version 0.9.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181179 - qsynth-0.9.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181179 --------------------------------------------------------------------------------
================================================================================ rubygem-rmagick-5.2.0-2.fc38 (FEDORA-2023-f992309b7e) Ruby binding to ImageMagick -------------------------------------------------------------------------------- Update Information:
- Fix missing epoch in ImageMagick-heic requires (#2181176) - Update ImageMagick to 7.1.1.4 (#2176749) - Add support to libheif and add html docs - Rebuild rubygem-rmagick -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Mamoru TASAKA mtasaka@fedoraproject.org - 5.2.0-2 - F-39: Rebuild against ImageMagick 7.1.1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2176749 - ImageMagick-7.1.1.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2176749 [ 2 ] Bug #2181176 - F39FailsToInstall: ImageMagick-heic https://bugzilla.redhat.com/show_bug.cgi?id=2181176 --------------------------------------------------------------------------------
================================================================================ rust-1.68.1-1.fc38 (FEDORA-2023-d6df41f77c) The Rust Programming Language -------------------------------------------------------------------------------- Update Information:
* Treat `$prefix-clang` as `clang` in linker detection code * Fix a panic in the compiler -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 23 2023 Josh Stone jistone@redhat.com - 1.68.1-1 - Update to 1.68.1. --------------------------------------------------------------------------------
================================================================================ tzdata-2023b-1.fc38 (FEDORA-2023-44401c9103) Timezone data -------------------------------------------------------------------------------- Update Information:
Resolves: #2181427 Rebase to tzdata-2023b - Lebanon will transition to DST on April 20/21, not March 25/26. ---- Rebase to tzdata-2023a - Egypt reintroduced DST, from April through October. - Morocco springs forward April 23, not April 30. - Palestine delayed the start of DST this year. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 24 2023 Patsy Griffin patsy@redhat.com - 2023b-1 - Rebase to tzdata-2023b - Lebanon will transition to DST on April 20/21, not March 25/26. * Thu Mar 23 2023 Patsy Griffin patsy@redhat.com - 2023a-1 - Rebase to tzdata-2023a - Egypt reintroduced DST, from April through October. - Morocco springs forward April 23, not April 30. - Palestine delayed the start of DST this year. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2181027 - tzdata-2023a is available https://bugzilla.redhat.com/show_bug.cgi?id=2181027 --------------------------------------------------------------------------------