The following Fedora 39 Security updates need testing: Age URL 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-e16469fdec exercism-3.2.0-1.fc39 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-70baf5e2fe python-pyramid-2.0.2-1.fc39 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-eb391591ee oggvideotools-0.9.1-15.fc39 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-b9c1d0e4c5 moby-engine-24.0.5-1.fc39

The following Fedora 39 Critical Path updates have yet to be approved: Age URL 12 https://bodhi.fedoraproject.org/updates/FEDORA-2023-3b49a21cb4 blivet-gui-2.4.2-1.fc39 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-36556cbc55 kf5-kio-5.109.0-3.fc39 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-d1971fb6db rpm-4.18.92-3.fc39 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-04c5f0e8c5 boost-1.81.0-8.fc39 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-86a3208665 fwupd-1.9.4-1.fc39 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-a64efd6423 passt-0^20230823.ga7e4bfb-1.fc39 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-0331679010 qemu-8.1.0-1.fc39 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-fd962e198c libzip-1.10.1-1.fc39 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-b19a60b701 cockpit-299-1.fc39 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-480df436a5 kf5-solid-5.109.0-2.fc39 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-7d553428ba libsodium-1.0.18-14.fc39 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-e096f95501 openssl-3.1.1-3.fc39 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-0aec0b18ac ibus-1.5.29~rc1-2.fc39 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-ffb20da9a2 grub2-2.06-97.fc39 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-5114bb96cf langpacks-4.0-9.fc39 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-984ad90082 perl-URI-5.21-1.fc39 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-02769b2cb4 perl-DB_File-1.859-1.fc39 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-a870b296bc libsoup3-3.4.2-4.fc39 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-ef40a329fd gtk4-4.12.1-1.fc39 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-8a95627f94 xdg-desktop-portal-1.17.0-3.fc39 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f9fb8e1b3b bluez-5.69-1.fc39 iwd-2.8-1.fc39 libell-0.58-1.fc39 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-d494366a40 gnome-control-center-45~rc-1.fc39 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-a17b1ea4b9 xorg-x11-drv-libinput-1.4.0-1.fc39 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-06f1ae13e8 libinput-1.24.0-1.fc39 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-b817f24456 nautilus-45~beta2-1.fc39 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-45122b156d gnome-desktop3-44.0-6.fc39 gnome-initial-setup-45~beta-6.fc39 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-381ceced47 audit-3.1.2-2.fc39

The following builds have been pushed to Fedora 39 updates-testing

adobe-source-code-pro-fonts-2.042.1.062.1.026-2.fc39 arm-trusted-firmware-2.9-3.fc39 atlantik-0.7.80~20230806.git01397fd-2.fc39 cage-0.1.5-1.fc39 centpkg-0.8.0-1.fc39 cfitsio-4.3.0-1.fc39 cmake-3.27.4-2.fc39 cockpit-composer-47-1.fc39 fcitx5-m17n-5.1.0-1.fc39 freeimage-3.19.0-0.19.svn1909.fc39 gensio-2.7.5-1.fc39 ghc9.4-9.4.7-23.fc39 gnutls-3.8.1-1.fc39 kernel-6.5.0-57.fc39 kernel-headers-6.5.0-1.fc39 kernel-tools-6.5.0-1.fc39 langtable-0.0.63-1.fc39 libeconf-0.5.2-1.fc39 libedit-3.1-48.20230828cvs.fc39 libfullock-1.0.53-1.fc39.1 libtiff-4.4.0-8.fc39 libva-nvidia-driver-0.0.10-3.fc39 lorax-39.4-2.fc39 luajit-2.1.1692716794-1.fc39 mc-4.8.30-1.fc39 mingw-freeimage-3.19.0-0.16.svn1909.fc39 neard-0.19-1.fc39 nodejs-diagnostic-language-server-1.15.0-1.fc39 nodejs-nodemon-2.0.3-9.fc39 perl-CPAN-Plugin-Sysdeps-0.71-1.fc39 podman-4.6.2-1.fc39 privoxy-3.0.34-5.fc39 pyodbc-5.0.0~b1-2.fc39 python-imageio-2.31.2-1.fc39 python-mirrors-countme-0.1.2-1.fc39 python-multiprocess-0.70.15-1.fc39 python-neovim-0.4.3-10.fc39 python-onigurumacffi-1.2.0-1.fc39 python-tifffile-2023.8.25-1.fc39 python-zeroconf-0.86.0-1.fc39 racket-7.4-12.fc39 rust-cargo-c-0.9.19-4.fc39 rust-gimoji-0.6.1-1.fc39 rust-hashlink-0.8.4-1.fc39 rust-nix-0.26.3-1.fc39 rust-openssl-0.10.57-1.fc39 rust-openssl-sys-0.9.92-1.fc39 rust-sys-locale-0.3.1-1.fc39 rust-terminal-light-1.1.1-1.fc39 rust-url-2.4.1-1.fc39 rust-xterm-query-0.2.0-1.fc39 ser2net-4.5.0-1.fc39 teckit-2.5.12-1.fc39 transmission-4.0.4-1.fc39

Details about builds:

================================================================================ adobe-source-code-pro-fonts-2.042.1.062.1.026-2.fc39 (FEDORA-2023-9d5c034e16) A set of mono-spaced OpenType fonts designed for coding environments -------------------------------------------------------------------------------- Update Information:

Fix fontconfig files and file names -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Robert-Andr�� Mauchin zebob.m@gmail.com - 2.042.1.062.1.026-2 - Fix fontconfig files and file names * Sat Aug 19 2023 bbhtt bbhtt.zn0i8@slmail.me - 2.042.1.062.1.026-1 - Update to 2.042.1.062.1.026 * Sat Aug 19 2023 Akira TAGOH akira@tagoh.org - 2.030.1.050-21 - Convert License tag to SPDX. --------------------------------------------------------------------------------

================================================================================ arm-trusted-firmware-2.9-3.fc39 (FEDORA-2023-c3c5669a77) ARM Trusted Firmware -------------------------------------------------------------------------------- Update Information:

Add support for TI k3 SoCs -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Enric Balletbo i Serra eballetbo@redhat.com - 2.9-3 - Add support for TI k3 SoCs --------------------------------------------------------------------------------

================================================================================ atlantik-0.7.80~20230806.git01397fd-2.fc39 (FEDORA-2023-2c177ef0b7) KDE monopd game client -------------------------------------------------------------------------------- Update Information:

Fix upgrade path if kdeaddons-atlantikdesigner is installed by obsoleting it, as there is no KF5-based version. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Yaakov Selkowitz yselkowi@redhat.com - 0.7.80~20230806.git01397fd-2 - Obsoletes: kdeaddons-atlantikdesigner -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2235214 - dnf upgrade kdegames3'*' produces error messages https://bugzilla.redhat.com/show_bug.cgi?id=2235214 --------------------------------------------------------------------------------

================================================================================ cage-0.1.5-1.fc39 (FEDORA-2023-2e9ba23b85) A Wayland kiosk -------------------------------------------------------------------------------- Update Information:

- Update to 0.1.5 (#2227408) - Convert License tag to SPDX - Update upstream URL and public key - Use source archive from release announcement instead of autogenerated one -------------------------------------------------------------------------------- ChangeLog:

* Sat Aug 26 2023 Aleksei Bavshin alebastr@fedoraproject.org - 0.1.5-1 - Update to 0.1.5 (#2227408) - Convert License tag to SPDX - Update upstream URL and public key - Use source archive from release announcement instead of autogenerated one -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2227408 - cage-0.1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2227408 --------------------------------------------------------------------------------

================================================================================ centpkg-0.8.0-1.fc39 (FEDORA-2023-2303fb78fe) CentOS utility for working with dist-git -------------------------------------------------------------------------------- Update Information:

Update stabilization phase detection (CS-1726) -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Troy Dawson tdawson@redhat.com - 0.8.0-1 - Update stabilization phase detection (CS-1726) - Correctly clone tests/* (CS-1725) - Added current-state option (CS-1551) - Fix exit codes and error messages (Issue: 81) --------------------------------------------------------------------------------

================================================================================ cfitsio-4.3.0-1.fc39 (FEDORA-2023-fe108e1a3c) Library for manipulating FITS data files -------------------------------------------------------------------------------- Update Information:

See https://heasarc.gsfc.nasa.gov/FTP/software/fitsio/c/docs/changes.txt for details -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Sergio Pascual sergiopr@fedoraproject.org - 4.3.0-1 - New upstream version 4.3.0 --------------------------------------------------------------------------------

================================================================================ cmake-3.27.4-2.fc39 (FEDORA-2023-c4473f6c92) Cross-platform make system -------------------------------------------------------------------------------- Update Information:

- Update to cmake-3.27.4. - Add upstream patch to fix linking non-builtin libatomic on some arches. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Bj��rn Esser besser82@fedoraproject.org - 3.27.4-2 - Add upstream patch to fix linking non-builtin libatomic on some arches * Thu Aug 24 2023 Bj��rn Esser besser82@fedoraproject.org - 3.27.4-1 - cmake-3.27.4 Fixes rhbz#2233852 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2233852 - cmake-3.27.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2233852 --------------------------------------------------------------------------------

================================================================================ cockpit-composer-47-1.fc39 (FEDORA-2023-238a30934d) Composer GUI for use with Cockpit -------------------------------------------------------------------------------- Update Information:

Automatic update for cockpit-composer-47-1.fc39. ---- Automatic update for cockpit-composer-46-1.fc39. ##### **Changelog for cockpit-composer** ``` * Fri Aug 25 2023 Packit hello@packit.dev - 46-1 - Fix blueprint config bugs - Update translations - Update NPM dependencies ``` -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Packit hello@packit.dev - 47-1 - Fix OCI sizing bug * Fri Aug 25 2023 Packit hello@packit.dev - 46-1 - Fix blueprint config bugs - Update translations - Update NPM dependencies --------------------------------------------------------------------------------

================================================================================ fcitx5-m17n-5.1.0-1.fc39 (FEDORA-2023-9d6a4688bb) m17n Wrapper for Fcitx5 -------------------------------------------------------------------------------- Update Information:

fcitx5-m17n update -------------------------------------------------------------------------------- ChangeLog:

* Fri Aug 18 2023 Qiyu Yan yanqiyu@fedoraproject.org - 5.1.0-1 - update to upstream release 5.1.0 --------------------------------------------------------------------------------

================================================================================ freeimage-3.19.0-0.19.svn1909.fc39 (FEDORA-2023-2840932fa8) Multi-format image decoder library -------------------------------------------------------------------------------- Update Information:

Update to latest svn revision. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Sandro Mani manisandro@gmail.com - 3.19.0-0.19.svn1909 - Update to svn rev 1909 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2235358 - CVE-2020-22524 freeimage: buffer overflow in FreeImage_Load() in Plugin.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235358 [ 2 ] Bug #2235359 - CVE-2020-22524 mingw-freeimage: freeimage: buffer overflow in FreeImage_Load() in Plugin.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235359 [ 3 ] Bug #2235406 - CVE-2020-21426 mingw-freeimage: freeimage: buffer overflow in C_IStream::read() in PluginEXR.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235406 [ 4 ] Bug #2235407 - CVE-2020-21426 freeimage: buffer overflow in C_IStream::read() in PluginEXR.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235407 [ 5 ] Bug #2235412 - CVE-2020-21427 mingw-freeimage: freeimage: buffer overflow in LoadPixelDataRLE8() in PluginBMP.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235412 [ 6 ] Bug #2235414 - CVE-2020-21427 freeimage: buffer overflow in LoadPixelDataRLE8() in PluginBMP.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235414 [ 7 ] Bug #2235417 - CVE-2020-21428 freeimage: buffer overflow in LoadRGB() in PluginDDS.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235417 [ 8 ] Bug #2235418 - CVE-2020-21428 mingw-freeimage: freeimage: buffer overflow in LoadRGB() in PluginDDS.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235418 --------------------------------------------------------------------------------

================================================================================ gensio-2.7.5-1.fc39 (FEDORA-2023-a81e9a3a1c) General Stream I/O -------------------------------------------------------------------------------- Update Information:

Mostly internal bugfixes relating to windows builds and path cleanups. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Felix Kaechele felix@kaechele.ca - 2.7.5-1 - update to 2.7.5 * Tue Aug 22 2023 Felix Kaechele felix@kaechele.ca - 2.7.4-1 - update to 2.7.4 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2233558 - gensio-2.7.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2233558 --------------------------------------------------------------------------------

================================================================================ ghc9.4-9.4.7-23.fc39 (FEDORA-2023-ff1274fa52) Glasgow Haskell Compiler -------------------------------------------------------------------------------- Update Information:

https://downloads.haskell.org/~ghc/9.4.7/docs/users_guide/9.4.7-notes.html -------------------------------------------------------------------------------- ChangeLog:

* Sun Aug 27 2023 Jens Petersen petersen@redhat.com - 9.4.7-23 - https://downloads.haskell.org/~ghc/9.4.7/docs/users_guide/9.4.7-notes.html --------------------------------------------------------------------------------

================================================================================ gnutls-3.8.1-1.fc39 (FEDORA-2023-7ef3bc8d6d) A TLS protocol implementation -------------------------------------------------------------------------------- Update Information:

Rebase gnutls to version 3.8.1 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Zoltan Fridrich zfridric@redhat.com - 3.8.1-1 - [packit] 3.8.1 upstream release -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2229127 - gnutls-3.8.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2229127 --------------------------------------------------------------------------------

================================================================================ kernel-6.5.0-57.fc39 (FEDORA-2023-9b4432aa10) The Linux kernel -------------------------------------------------------------------------------- Update Information:

The 6.5.0 release kernel contains a number of important updates across the tree. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fedora Kernel Team kernel-team@fedoraproject.org [6.5.0-57.eln130] - Linux v6.5.0 * Sun Aug 27 2023 Fedora Kernel Team kernel-team@fedoraproject.org [6.5.0-0.rc7.28f20a19294d.56.eln130] - Linux v6.5.0-0.rc7.28f20a19294d * Sat Aug 26 2023 Fedora Kernel Team kernel-team@fedoraproject.org [6.5.0-0.rc7.7d2f353b2682.55.eln130] - redhat/kernel.spec.template: update compression variables to support zstd (Brian Masney) - Linux v6.5.0-0.rc7.7d2f353b2682 * Fri Aug 25 2023 Fedora Kernel Team kernel-team@fedoraproject.org [6.5.0-0.rc7.4f9e7fabf864.54.eln130] - Linux v6.5.0-0.rc7.4f9e7fabf864 * Thu Aug 24 2023 Fedora Kernel Team kernel-team@fedoraproject.org [6.5.0-0.rc7.93f5de5f648d.53.eln130] - Consolidate configs to common for 6.5 (Justin M. Forbes) - Remove unused config entry for Fedora (Justin M. Forbes) - Linux v6.5.0-0.rc7.93f5de5f648d * Wed Aug 23 2023 Fedora Kernel Team kernel-team@fedoraproject.org [6.5.0-0.rc7.89bf6209cad6.52.eln130] - redhat/self-test: Remove rpmlint test (Prarit Bhargava) - Remove the armv7 config directory from Fedora again (Justin M. Forbes) - Enable CONFIG_EXPERT for both RHEL and Fedora (Justin M. Forbes) - Linux v6.5.0-0.rc7.89bf6209cad6 * Tue Aug 22 2023 Fedora Kernel Team kernel-team@fedoraproject.org [6.5.0-0.rc7.f7757129e3de.51.eln130] - redhat/configs: Enable CONFIG_DEVICE_PRIVATE on aarch64 (David Hildenbrand) [2231407] - redhat/configs: disable CONFIG_ROCKCHIP_ERRATUM_3588001 for RHEL (Mark Salter) - redhat: shellcheck fixes (Prarit Bhargava) --------------------------------------------------------------------------------

================================================================================ kernel-headers-6.5.0-1.fc39 (FEDORA-2023-9b4432aa10) Header files for the Linux kernel for use by glibc -------------------------------------------------------------------------------- Update Information:

The 6.5.0 release kernel contains a number of important updates across the tree. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Justin M. Forbes jforbes@fedoraproject.org - 6.5.0-1 - Linux v6.5 --------------------------------------------------------------------------------

================================================================================ kernel-tools-6.5.0-1.fc39 (FEDORA-2023-9b4432aa10) Assortment of tools for the Linux kernel -------------------------------------------------------------------------------- Update Information:

The 6.5.0 release kernel contains a number of important updates across the tree. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Justin M. Forbes jforbes@fedoraproject.org - 6.5.0-1 - Linux v6.5 --------------------------------------------------------------------------------

================================================================================ langtable-0.0.63-1.fc39 (FEDORA-2023-af9b1b6258) Guessing reasonable defaults for locale, keyboard layout, territory, and language. -------------------------------------------------------------------------------- Update Information:

Update to 0.0.63 Add more translations from CLDR Get translation changes from CLDR Japanese: prefer anthy over kkc (Thanks to adam Williamson: https://github.com/mike-fabian/langtable/pull/17) Use skipTerritory also in list_keyboards(), list_consolefonts(), and list_timezones() (Resolves: https://github.com/mike-fabian/langtable/issues/18) -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Mike FABIAN mfabian@redhat.com - 0.0.63-1 - Update to 0.0.63 - Add more translations from CLDR - Get translation changes from CLDR - Japanese: prefer anthy over kkc (Thanks to adam Williamson: https://github.com/mike-fabian/langtable/pull/17) - Use skipTerritory also in list_keyboards(), list_consolefonts(), and list_timezones() (Resolves: https://github.com/mike-fabian/langtable/issues/18) --------------------------------------------------------------------------------

================================================================================ libeconf-0.5.2-1.fc39 (FEDORA-2023-86b710bb4f) Enhanced config file parser library -------------------------------------------------------------------------------- Update Information:

Rebase to 0.5.2 to fix CVE-2023-22652 and CVE-2023-30079 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Iker Pedrosa ipedrosa@redhat.com - 0.5.2-1 - Update to 0.5.2 (RH#1980774) - Fix CVE-2023-22652 (RH#2212464) - Fix CVE-2023-30079 (RH#2235236) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1980774 - libeconf-0.5.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1980774 [ 2 ] Bug #2212464 - CVE-2023-22652 libeconf: stack-based buffer overflow in read_file() in lib/getfilecontents.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2212464 [ 3 ] Bug #2235236 - CVE-2023-30079 libeconf: Stack overflow in function read_file at atlibeconf/lib/getfilecontents.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235236 --------------------------------------------------------------------------------

================================================================================ libedit-3.1-48.20230828cvs.fc39 (FEDORA-2023-0dfffe8186) The NetBSD Editline library -------------------------------------------------------------------------------- Update Information:

Changes in version 20230828: - Improvements in malloc/free handling - PR/57095: Change readline's `replace_history_entry` to not make a copy of the string to replace since `H_REPLACE` already makes a copy (fixes memory leak) - Add an entry point for the complete function for FreeBSD compatibility with sh - Don't clear the handle to el "sel" and set it earlier to prevent handling a signal before the handle is set - Remove unused stuff, and limit the scope of some of the used ones - Align types with readline-8.2 - PR/57376: readline file completion does not quote; do the same - Pass lint - Fix some const qualifiers - Avoid various use-after-free issues -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Jerry James loganjerry@gmail.com - 3.1-48.20230828cvs - New version (20230828-3.1) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2235154 - libedit-20230828-3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2235154 --------------------------------------------------------------------------------

================================================================================ libfullock-1.0.53-1.fc39.1 (FEDORA-2023-f08741bd94) Fast User Level LOCK (FULLOCK) library for C/C++ -------------------------------------------------------------------------------- Update Information:

Updates to libfullock-1.0.53 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Hirotaka Wakabayashi hiwkby@yahoo.com - 1.0.53-1 - Updates to libfullock-1.0.53 --------------------------------------------------------------------------------

================================================================================ libtiff-4.4.0-8.fc39 (FEDORA-2023-9d251e80b1) Library of functions for manipulating TIFF format image files -------------------------------------------------------------------------------- Update Information:

Enabled LERC compression support -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Nikola Forr�� nforro@redhat.com - 4.4.0-8 - Enable support for LERC compression (#2234459) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2234459 - Missing LERC compression support in libtiff https://bugzilla.redhat.com/show_bug.cgi?id=2234459 --------------------------------------------------------------------------------

================================================================================ libva-nvidia-driver-0.0.10-3.fc39 (FEDORA-2023-297f93516b) A VA-API implemention using NVIDIA's NVDEC -------------------------------------------------------------------------------- Update Information:

Replace the rpmfusion package and provide alt name -------------------------------------------------------------------------------- ChangeLog:

* Sun Aug 27 2023 Davide Cavalca dcavalca@fedoraproject.org - 0.0.10-3 - Replace the rpmfusion package and provide alt name -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2235392 - libva-nvidia-driver should replace the nvidia-vaapi-driver rpmfusion package https://bugzilla.redhat.com/show_bug.cgi?id=2235392 --------------------------------------------------------------------------------

================================================================================ lorax-39.4-2.fc39 (FEDORA-2023-c7901f7bcd) Tool for creating the anaconda install images -------------------------------------------------------------------------------- Update Information:

This update backports a change to leave qualcomm (qcom) firmwares off the x86_64 installer image. They aren't useful on x86_64 hardware, and take up 30M of space. This brings the network install image sizes back down under the CD size limit we still enforce because we're old school, man. We remember CDs. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Adam Williamson awilliam@redhat.com - 39.4-2 - Backport PR #1338 to cut qcom firmwares and save space -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2231605 - Fedora 39: Everything boot x86_64 image exceeds maximum size https://bugzilla.redhat.com/show_bug.cgi?id=2231605 [ 2 ] Bug #2231607 - Fedora 39: Server boot x86_64 image exceeds maximum size https://bugzilla.redhat.com/show_bug.cgi?id=2231607 --------------------------------------------------------------------------------

================================================================================ luajit-2.1.1692716794-1.fc39 (FEDORA-2023-be0c4dcd09) Just-In-Time Compiler for Lua -------------------------------------------------------------------------------- Update Information:

Update to rolling release version of luajit -------------------------------------------------------------------------------- ChangeLog:

* Sat Aug 26 2023 Andreas Schneider asn@redhat.com - 2.1.1692716794 - Update to rolling release version of luajit - Adapted patches and cleaned up spec file --------------------------------------------------------------------------------

================================================================================ mc-4.8.30-1.fc39 (FEDORA-2023-3ad3f84dd5) User-friendly text console file manager and visual shell -------------------------------------------------------------------------------- Update Information:

update to 4.8.30 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Jindrich Novy jnovy@redhat.com - 1:4.8.30-1 - update to 4.8.30 - remove upstreamed mc-configure-c99.patch --------------------------------------------------------------------------------

================================================================================ mingw-freeimage-3.19.0-0.16.svn1909.fc39 (FEDORA-2023-2840932fa8) MinGW Windows freeimage library -------------------------------------------------------------------------------- Update Information:

Update to latest svn revision. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Sandro Mani manisandro@gmail.com - 3.19.0-0.16.svn1889 - Update to r1909 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2235358 - CVE-2020-22524 freeimage: buffer overflow in FreeImage_Load() in Plugin.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235358 [ 2 ] Bug #2235359 - CVE-2020-22524 mingw-freeimage: freeimage: buffer overflow in FreeImage_Load() in Plugin.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235359 [ 3 ] Bug #2235406 - CVE-2020-21426 mingw-freeimage: freeimage: buffer overflow in C_IStream::read() in PluginEXR.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235406 [ 4 ] Bug #2235407 - CVE-2020-21426 freeimage: buffer overflow in C_IStream::read() in PluginEXR.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235407 [ 5 ] Bug #2235412 - CVE-2020-21427 mingw-freeimage: freeimage: buffer overflow in LoadPixelDataRLE8() in PluginBMP.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235412 [ 6 ] Bug #2235414 - CVE-2020-21427 freeimage: buffer overflow in LoadPixelDataRLE8() in PluginBMP.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235414 [ 7 ] Bug #2235417 - CVE-2020-21428 freeimage: buffer overflow in LoadRGB() in PluginDDS.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235417 [ 8 ] Bug #2235418 - CVE-2020-21428 mingw-freeimage: freeimage: buffer overflow in LoadRGB() in PluginDDS.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235418 --------------------------------------------------------------------------------

================================================================================ neard-0.19-1.fc39 (FEDORA-2023-7497d2af37) Near Field Communication (NFC) manager -------------------------------------------------------------------------------- Update Information:

Update to 0.19 -------------------------------------------------------------------------------- ChangeLog:

* Sun Aug 27 2023 Peter Robinson pbrobinson@fedoraproject.org - 0.19-1 - Update to 0.19 --------------------------------------------------------------------------------

================================================================================ nodejs-diagnostic-language-server-1.15.0-1.fc39 (FEDORA-2023-73e81eedcc) Diagnostic language server that integrate with linters -------------------------------------------------------------------------------- Update Information:

Update to version 1.15.0 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Andreas Schneider asn@redhat.com - 1.15.0-1 - Update to version 1.15.0 - Fixes rhbz#2226028 * Thu Jul 20 2023 Fedora Release Engineering releng@fedoraproject.org - 1.13.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2226028 - nodejs-diagnostic-language-server: FTBFS in Fedora rawhide/f39 https://bugzilla.redhat.com/show_bug.cgi?id=2226028 --------------------------------------------------------------------------------

================================================================================ nodejs-nodemon-2.0.3-9.fc39 (FEDORA-2023-0d02e70b42) Simple monitor script for use during development of a node.js app -------------------------------------------------------------------------------- Update Information:

Allow to use nodemon with all nodejs versions -------------------------------------------------------------------------------- ChangeLog:

* Wed Aug 9 2023 Honza Horak hhorak@redhat.com - 2.0.3-9 - Let nodemon work with any Node.js version Resolves: #2230317 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2230317 - nodejs-nodemon cannot be installed with non-default nodejs version https://bugzilla.redhat.com/show_bug.cgi?id=2230317 --------------------------------------------------------------------------------

================================================================================ perl-CPAN-Plugin-Sysdeps-0.71-1.fc39 (FEDORA-2023-683f2678ae) CPAN client plugin for installing system dependencies -------------------------------------------------------------------------------- Update Information:

This release updates a mappaing from upstream to Fedora packages. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Petr Pisar ppisar@redhat.com - 0.71-1 - 0.71 bump -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2235053 - perl-CPAN-Plugin-Sysdeps-0.71 is available https://bugzilla.redhat.com/show_bug.cgi?id=2235053 --------------------------------------------------------------------------------

================================================================================ podman-4.6.2-1.fc39 (FEDORA-2023-3452358237) Manage Pods, Containers and Container Images -------------------------------------------------------------------------------- Update Information:

Automatic update for podman-4.6.2-1.fc39. ##### **Changelog for podman** ``` * Mon Aug 28 2023 Packit hello@packit.dev - 5:4.6.2-1 - [packit] 4.6.2 upstream release ``` -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Packit hello@packit.dev - 5:4.6.2-1 - [packit] 4.6.2 upstream release --------------------------------------------------------------------------------

================================================================================ privoxy-3.0.34-5.fc39 (FEDORA-2023-064de380aa) Privacy enhancing proxy -------------------------------------------------------------------------------- Update Information:

pcre2 corrections. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Gwyn Ciesla gwync@protonmail.com - 3.0.34-5 - Additional pcre2 patches from upstream. --------------------------------------------------------------------------------

================================================================================ pyodbc-5.0.0~b1-2.fc39 (FEDORA-2023-028aa659e3) Python DB API 2.0 Module for ODBC -------------------------------------------------------------------------------- Update Information:

Move /usr/pyodbc.pyi to /usr/lib64/python3.X/site-packages/pyodbc.pyi as originally intended -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Ond��ej Sloup osloup@redhat.com - 5.0.0~b1-2 - Move /usr/pyodbc.pyi to /usr/lib64/python3.X/site-packages/pyodbc.pyi as originally intended * Mon Aug 28 2023 Ond��ej Sloup osloup@redhat.com - 5.0.0~b1-1 - Rebase to the newest version, test the beta (rhbz#2235122) - This release drops Python 2 and adds Python 3.12 support * Fri Jul 21 2023 Fedora Release Engineering releng@fedoraproject.org - 4.0.39-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2155256 - pyodbc fails to build with Python 3.12: error: PyUnicode_FromUnicode was not declared in this scope https://bugzilla.redhat.com/show_bug.cgi?id=2155256 [ 2 ] Bug #2235122 - pyodbc-5.0.0b1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2235122 --------------------------------------------------------------------------------

================================================================================ python-imageio-2.31.2-1.fc39 (FEDORA-2023-bdd0d87e9c) Python IO of image, video, scientific, and volumetric data formats. -------------------------------------------------------------------------------- Update Information:

Minor fixes and enhancements. See details here; https://github.com/imageio/imageio/blob/master/CHANGELOG.md#v2312-2023-08-26 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Sergio Pascual sergiopr@fis.ucm.es - 2.31.2-1 - New upstream source (2.31.2) --------------------------------------------------------------------------------

================================================================================ python-mirrors-countme-0.1.2-1.fc39 (FEDORA-2023-dea0e79f37) Parse access_log and count hosts accessing DNF mirrors -------------------------------------------------------------------------------- Update Information:

This release fixes a couple of issues: - Crashes with log files containing data which couldn���t be decoded as UTF-8. - Progress bar going haywire when it would go over 100% (e.g. when decoding compressed files where recorded and actual file sizes don���t match). - Don���t depend on `python3-poetry`, which prevented installing the package on Fedora 37. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Nils Philippsen nils@redhat.com - 0.1.2-1 - Version 0.1.2 - Drop dependency on Poetry (#2223835) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2223835 - F37FailsToInstall: python3-mirrors-countme https://bugzilla.redhat.com/show_bug.cgi?id=2223835 --------------------------------------------------------------------------------

================================================================================ python-multiprocess-0.70.15-1.fc39 (FEDORA-2023-dd6ebb456a) Better multiprocessing and multithreading in python -------------------------------------------------------------------------------- Update Information:

Update to 0.70.15 (close RHBZ#2224813) -------------------------------------------------------------------------------- ChangeLog:

* Sun Aug 27 2023 Benjamin A. Beasley code@musicinmybrain.net - 0.70.15-1 - Update to 0.70.15 (close RHBZ#2224813) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2224813 - python-multiprocess-0.70.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=2224813 --------------------------------------------------------------------------------

================================================================================ python-neovim-0.4.3-10.fc39 (FEDORA-2023-8a508ad967) Python client to Neovim -------------------------------------------------------------------------------- Update Information:

Fix build on Fedora with Python 3.12 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Andreas Schneider asn@redhat.com - 0.4.3-11 - Fix build on Fedora with Python 3.12 * Fri Jul 21 2023 Fedora Release Engineering releng@fedoraproject.org - 0.4.3-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Thu Jun 15 2023 Python Maint python-maint@redhat.com - 0.4.3-9 - Rebuilt for Python 3.12 --------------------------------------------------------------------------------

================================================================================ python-onigurumacffi-1.2.0-1.fc39 (FEDORA-2023-240bef9ff7) Python cffi bindings for the Oniguruma regex engine -------------------------------------------------------------------------------- Update Information:

Initial package. Closes rhbz#2232782. -------------------------------------------------------------------------------- ChangeLog:

* Tue Aug 15 2023 Maxwell G maxwell@gtmx.me - 1.2.0-1 - Initial package. Closes rhbz#2232782. -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2232782 - Review Request: python-onigurumacffi - Python cffi bindings for the Oniguruma regex engine https://bugzilla.redhat.com/show_bug.cgi?id=2232782 --------------------------------------------------------------------------------

================================================================================ python-tifffile-2023.8.25-1.fc39 (FEDORA-2023-7aeb1730e5) Read and write TIFF(r) files -------------------------------------------------------------------------------- Update Information:

Minor improvements. See details here: https://github.com/cgohlke/tifffile/blob/master/CHANGES.rst -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Sergio Pascual sergiopr@fedoraproject.org - 2023.8.25-1 - New upstream source 2023.8.25 - SPDX migration --------------------------------------------------------------------------------

================================================================================ python-zeroconf-0.86.0-1.fc39 (FEDORA-2023-eb4e041363) Pure Python Multicast DNS Service Discovery Library -------------------------------------------------------------------------------- Update Information:

Update to 0.86.0 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Peter Robinson pbrobinson@fedoraproject.org - 0.86.0-1 - Update to 0.86.0 --------------------------------------------------------------------------------

================================================================================ racket-7.4-12.fc39 (FEDORA-2023-b90f48842f) General purpose programming language -------------------------------------------------------------------------------- Update Information:

disable ppc64le (#2226390) -------------------------------------------------------------------------------- ChangeLog:

* Sat Aug 26 2023 Jens Petersen petersen@redhat.com - 7.4-12 - disable ppc64le (#2226390) * Fri Jul 21 2023 Fedora Release Engineering releng@fedoraproject.org - 7.4-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Wed Apr 26 2023 Florian Weimer fweimer@redhat.com - 7.4-10 - Port configure script to C99 * Fri Jan 20 2023 Fedora Release Engineering releng@fedoraproject.org - 7.4-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Sat Jul 23 2022 Fedora Release Engineering releng@fedoraproject.org - 7.4-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Fri Jan 21 2022 Fedora Release Engineering releng@fedoraproject.org - 7.4-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Sat Jan 8 2022 Miro Hron��ok mhroncok@redhat.com - 7.4-6 - Rebuilt for https://fedoraproject.org/wiki/Changes/LIBFFI34 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2226390 - [ppc64le] racket: FTBFS in Fedora rawhide/f39 https://bugzilla.redhat.com/show_bug.cgi?id=2226390 --------------------------------------------------------------------------------

================================================================================ rust-cargo-c-0.9.19-4.fc39 (FEDORA-2023-b5d191d12b) Helper program to build and install c-like libraries -------------------------------------------------------------------------------- Update Information:

Add helper macros for invoking `cargo cbuild` and `cargo cinstall`, similar to the existing macros that wrap `cargo build` and `cargo install`. -------------------------------------------------------------------------------- ChangeLog:

* Tue Aug 22 2023 Fabio Valentini decathorpe@gmail.com - 0.9.19-4 - Fix license tag for binary subpackage to exclude invalid MPL-2.0+ --------------------------------------------------------------------------------

================================================================================ rust-gimoji-0.6.1-1.fc39 (FEDORA-2023-58e436385d) Easily add emojis to your git commit messages ���� -------------------------------------------------------------------------------- Update Information:

- Update gimoji to version 0.6.1. - Initial packaging of the terminal-light and xterm-query crates. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fabio Valentini decathorpe@gmail.com - 0.6.1-1 - Update to version 0.6.1; Fixes RHBZ#2232779 --------------------------------------------------------------------------------

================================================================================ rust-hashlink-0.8.4-1.fc39 (FEDORA-2023-a42455cd4a) HashMap-like containers that hold their key-value pairs in a user controllable order -------------------------------------------------------------------------------- Update Information:

Update to version 0.8.4. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fabio Valentini decathorpe@gmail.com - 0.8.4-1 - Update to version 0.8.4; Fixes RHBZ#2235469 --------------------------------------------------------------------------------

================================================================================ rust-nix-0.26.3-1.fc39 (FEDORA-2023-a7986f0f31) Rust friendly bindings to *nix APIs -------------------------------------------------------------------------------- Update Information:

Update to version 0.26.3. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fabio Valentini decathorpe@gmail.com - 0.26.3-1 - Update to version 0.26.3 --------------------------------------------------------------------------------

================================================================================ rust-openssl-0.10.57-1.fc39 (FEDORA-2023-1238eb239a) OpenSSL bindings -------------------------------------------------------------------------------- Update Information:

- Update the openssl crate to version 0.10.57. - Update the openssl-sys crate to version 0.9.92. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fabio Valentini decathorpe@gmail.com - 0.10.57-1 - Update to version 0.10.57; Fixes RHBZ#2229491 --------------------------------------------------------------------------------

================================================================================ rust-openssl-sys-0.9.92-1.fc39 (FEDORA-2023-1238eb239a) FFI bindings to OpenSSL -------------------------------------------------------------------------------- Update Information:

- Update the openssl crate to version 0.10.57. - Update the openssl-sys crate to version 0.9.92. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fabio Valentini decathorpe@gmail.com - 0.9.92-1 - Update to version 0.9.92; Fixes RHBZ#2229492 --------------------------------------------------------------------------------

================================================================================ rust-sys-locale-0.3.1-1.fc39 (FEDORA-2023-4d17a9ce19) Small and lightweight library to obtain the active system locale -------------------------------------------------------------------------------- Update Information:

Update to version 0.3.1. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fabio Valentini decathorpe@gmail.com - 0.3.1-1 - Update to version 0.3.1; Fixes RHBZ#2235205 --------------------------------------------------------------------------------

================================================================================ rust-terminal-light-1.1.1-1.fc39 (FEDORA-2023-58e436385d) Tells you whether your terminal is dark or light -------------------------------------------------------------------------------- Update Information:

- Update gimoji to version 0.6.1. - Initial packaging of the terminal-light and xterm-query crates. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fabio Valentini decathorpe@gmail.com - 1.1.1-1 - Initial import (#2232784) --------------------------------------------------------------------------------

================================================================================ rust-url-2.4.1-1.fc39 (FEDORA-2023-682c2595af) URL library for Rust, based on the WHATWG URL Standard -------------------------------------------------------------------------------- Update Information:

Update to version 2.4.1. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Fabio Valentini decathorpe@gmail.com - 2.4.1-1 - Update to version 2.4.1; Fixes RHBZ#2235305 --------------------------------------------------------------------------------

================================================================================ rust-xterm-query-0.2.0-1.fc39 (FEDORA-2023-58e436385d) Query your terminal -------------------------------------------------------------------------------- Update Information:

- Update gimoji to version 0.6.1. - Initial packaging of the terminal-light and xterm-query crates. -------------------------------------------------------------------------------- ChangeLog:

* Sat Aug 26 2023 Fabio Valentini decathorpe@gmail.com - 0.2.0-1 - Initial import (#2232783) --------------------------------------------------------------------------------

================================================================================ ser2net-4.5.0-1.fc39 (FEDORA-2023-760800db98) Proxy that allows TCP/UDP to serial port connections -------------------------------------------------------------------------------- Update Information:

The old configuration file format (non-YAML) is no longer supported. Otherwise, mainly internal fixes and cleanups. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Felix Kaechele felix@kaechele.ca - 4.5.0-1 - update to 4.5.0 --------------------------------------------------------------------------------

================================================================================ teckit-2.5.12-1.fc39 (FEDORA-2023-f10ebaf548) Encoding conversion library and mapping compiler -------------------------------------------------------------------------------- Update Information:

This release brings a support for Unicode 15.0.0. -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Petr Pisar ppisar@redhat.com - 2.5.12-1 - 2.5.12 bump - Correct a license tag to "(LGPL-2.1-or-later OR CPL-1.0) AND (LGPL-2.1-or-later OR GPL-2.0-or-later OR MPL-2.0)" -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2235155 - teckit-2.5.12 is available https://bugzilla.redhat.com/show_bug.cgi?id=2235155 --------------------------------------------------------------------------------

================================================================================ transmission-4.0.4-1.fc39 (FEDORA-2023-e9b0313bd9) A lightweight GTK+ BitTorrent client -------------------------------------------------------------------------------- Update Information:

4.0.4 -------------------------------------------------------------------------------- ChangeLog:

* Mon Aug 28 2023 Gwyn Ciesla gwync@protonmail.com - 4.0.4-1 - 4.0.4 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2234822 - transmission-4.0.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2234822 --------------------------------------------------------------------------------