The following Fedora 38 Security updates need testing:
Age URL
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-749dd47c79
python-cryptography-37.0.2-8.fc38
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-5b378b82b3 gnutls-3.8.0-1.fc38
guile-gnutls-3.7.11-1.fc38
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-a48406ecd2 cairo-1.17.8-2.fc38
freetype-2.13.0-2.fc38 harfbuzz-7.0.1-2.fc38 qt6-qtwebengine-6.4.2-3.fc38
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-64f2a84db1
libtpms-0.9.6-1.fc38
The following Fedora 38 Critical Path updates have yet to be approved:
Age URL
9
https://bodhi.fedoraproject.org/updates/FEDORA-2023-6312edccf2
pykickstart-3.44-1.fc38
7
https://bodhi.fedoraproject.org/updates/FEDORA-2023-3d161aa20e
libguestfs-1.50.1-1.fc38
7
https://bodhi.fedoraproject.org/updates/FEDORA-2023-66eb8fff19 bind-9.18.12-1.fc38
bind-dyndb-ldap-11.10-13.fc38
7
https://bodhi.fedoraproject.org/updates/FEDORA-2023-cf22ab54d0
pixman-0.42.2-1.fc38
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-bac5a89231 ethtool-6.2-1.fc38
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-dc8b72e8b9
gnome-settings-daemon-44~beta-4.fc38
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-e1378454aa cockpit-286-1.fc38
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-749dd47c79
python-cryptography-37.0.2-8.fc38
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-cee6b9872c
guestfs-tools-1.50.0-2.fc38
5
https://bodhi.fedoraproject.org/updates/FEDORA-2023-37ba22d293 gjs-1.75.2-1.fc38
5
https://bodhi.fedoraproject.org/updates/FEDORA-2023-34ea64f5d7
flatpak-1.15.3-1.fc38
5
https://bodhi.fedoraproject.org/updates/FEDORA-2023-611ffd7ae9 mesa-23.0.0-1.fc38
4
https://bodhi.fedoraproject.org/updates/FEDORA-2023-5e9901b83a
xorg-x11-drv-amdgpu-23.0.0-1.fc38
4
https://bodhi.fedoraproject.org/updates/FEDORA-2023-15e219c740 ndctl-76.1-1.fc38
4
https://bodhi.fedoraproject.org/updates/FEDORA-2023-1bf235b487
deepin-wallpapers-1.7.7-13.fc38
4
https://bodhi.fedoraproject.org/updates/FEDORA-2023-f6afa6f9e5 fwupd-1.8.12-1.fc38
libjcat-0.1.13-1.fc38 plasma-discover-5.27.1-2.fc38
4
https://bodhi.fedoraproject.org/updates/FEDORA-2023-5e7607a2b8
checkpolicy-3.5-1.fc38 libselinux-3.5-1.fc38 libsemanage-3.5-1.fc38 libsepol-3.5-1.fc38
mcstrans-3.5-1.fc38 policycoreutils-3.5-1.fc38 secilc-3.5-1.fc38
4
https://bodhi.fedoraproject.org/updates/FEDORA-2023-287e7d93df swtpm-0.8.0-3.fc38
3
https://bodhi.fedoraproject.org/updates/FEDORA-2023-6874cf1fbe
perl-Digest-SHA-6.04-1.fc38
3
https://bodhi.fedoraproject.org/updates/FEDORA-2023-e029e559e0
kernel-6.2.1-300.fc38
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-911a01cfa0
passt-0^20230227.gc538ee8-1.fc38
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-c8b684aada
qt5-qtbase-5.15.8-6.fc38
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-4d67cc6499 kbd-2.5.1-5.fc38
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-0703aa0c58
gnome-terminal-3.47.92-1.fc38
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-a48406ecd2 cairo-1.17.8-2.fc38
freetype-2.13.0-2.fc38 harfbuzz-7.0.1-2.fc38 qt6-qtwebengine-6.4.2-3.fc38
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-5b378b82b3 gnutls-3.8.0-1.fc38
guile-gnutls-3.7.11-1.fc38
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-64f2a84db1
libtpms-0.9.6-1.fc38
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-987714e128
redhat-rpm-config-252-1.fc38
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-047f0e7237
rpcbind-1.2.6-4.rc2.fc38
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-9935099f45
annobin-11.11-1.fc38
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-73895462ad
libcomps-0.1.18-6.fc38
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-8a9dc0dbe2
zchunk-1.3.0-1.fc38
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-9883976476
gnome-control-center-44~beta-3.fc38
The following builds have been pushed to Fedora 38 updates-testing
CGAL-5.5.2-2.fc38
Thunar-4.18.4-2.fc38
ansible-7.3.0-1.fc38
ansible-collection-community-docker-3.4.2-1.fc38
ansible-collection-community-general-6.4.0-1.fc38
ansible-core-2.14.3-1.fc38
aqbanking-6.5.4-1.fc38
braille-printer-app-2.0~b0^386eea385f-3.fc38
catch-3.3.2-2.fc38
catch1-1.12.2-13.fc38
catch2-2.13.10-1.fc38
centpkg-0.7.1-1.fc38
cfn-lint-0.74.0-1.fc38
clevis-19-2.fc38
cmake-3.26.0~rc5-1.fc38
conmon-2.1.7-1.fc38
container-selinux-2.201.0-1.fc38
crash-gcore-command-1.6.4-1.fc38
cryptobone-1.5-1.fc38
cups-browsed-2.0~b3-2.fc38
cups-filters-2.0~b3-2.fc38
edid-decode-0-56.20230301gitd740dde3.fc38
fedpkg-1.44-2.fc38
fotoxx-23.2-1.fc38
gap-pkg-francy-2.0.1-1.fc38
gitklient-0^20230228git7625dbb-1.fc38
gnome-shell-extension-dash-to-dock-78-1.fc38
golang-github-rivo-uniseg-0.4.4-2.fc38
google-api-python-client-2.80.0-1.fc38
gulrak-filesystem-1.5.12-5.fc38
ibm-plex-fonts-6.2.0-1.fc38
iso-codes-4.13.0-1.fc38
libcupsfilters-2.0~b4-1.fc38
libppd-2.0~b4-1.fc38
nodejs18-18.14.2-5.fc38
nodejs20-19.7.0-13.fc38
parole-4.18.0-1.fc38
perl-Prima-1.68.1-1.fc38
perl-Rose-DB-0.785-2.fc38
php-pecl-mcrypt-1.0.6-1.fc38
podman-4.4.2-2.fc38
python-aws-sam-translator-1.60.1-1.fc38
python-jenkins-job-builder-4.3.0-1.fc38
python-jupyter-server-fileid-0.8.0-1.fc38
python-pandas-1.5.3-1.fc38
python-productmd-1.35-1.fc38
qatlib-23.02.0-1.fc38
redis-7.0.9-1.fc38
rpkg-1.66-3.fc38
rust-bytemuck-1.13.1-1.fc38
rust-memsec-0.6.3-1.fc38
rust-tokio-1.26.0-1.fc38
samba-4.18.0-0.8.rc4.fc38
satyr-0.42-1.fc38
selint-1.4.0-1.fc38
tigervnc-1.13.1-1.fc38
tkrzw-1.0.26-1.fc38
xfce4-notifyd-0.8.2-1.fc38
Details about builds:
================================================================================
CGAL-5.5.2-2.fc38 (FEDORA-2023-8754cb708e)
Computational Geometry Algorithms Library
--------------------------------------------------------------------------------
Update Information:
Upstream release: [
CGAL-5.5.2](https://www.cgal.org/2023/02/28/cgal552/)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Laurent Rineau <laurent.rineau(a)cgal.org> - 5.5.2-2
- Update to 5.5.2 (#2174148)
- CGAL-demos-source is now noarch
--------------------------------------------------------------------------------
================================================================================
Thunar-4.18.4-2.fc38 (FEDORA-2023-f07f5eede6)
Thunar File Manager
--------------------------------------------------------------------------------
Update Information:
xfce 4.18 updates - thunar, xfce4-notifyd, parole
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Mukundan Ragavan <nonamedotc(a)gmail.com> - 4.18.4-2
- upload source tarball
* Wed Mar 1 2023 Mukundan Ragavan <nonamedotc(a)gmail.com> - 4.18.4-1
- Update to v4.18.4
--------------------------------------------------------------------------------
================================================================================
ansible-7.3.0-1.fc38 (FEDORA-2023-18a89e5721)
Curated set of Ansible collections included in addition to ansible-core
--------------------------------------------------------------------------------
Update Information:
Update to ansible-core 2.14.3 and ansible 7.3.0.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Maxwell G <maxwell(a)gtmx.me> - 7.3.0-1
- Update to 7.3.0.
--------------------------------------------------------------------------------
================================================================================
ansible-collection-community-docker-3.4.2-1.fc38 (FEDORA-2023-132ee75ca1)
Ansible modules and plugins for working with Docker
--------------------------------------------------------------------------------
Update Information:
Update to 3.4.2. Fixes rhbz#2172008.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Maxwell G <maxwell(a)gtmx.me> - 3.4.2-1
- Update to 3.4.2. Fixes rhbz#2172008.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2172008 - ansible-collection-community-docker-3.4.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2172008
--------------------------------------------------------------------------------
================================================================================
ansible-collection-community-general-6.4.0-1.fc38 (FEDORA-2023-b97fc72519)
Modules and plugins supported by Ansible community
--------------------------------------------------------------------------------
Update Information:
Update to 6.4.0. Fixes rhbz#2173790.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Maxwell G <maxwell(a)gtmx.me> - 6.4.0-1
- Update to 6.4.0. Fixes rhbz#2173790.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173790 - ansible-collection-community-general-6.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173790
--------------------------------------------------------------------------------
================================================================================
ansible-core-2.14.3-1.fc38 (FEDORA-2023-18a89e5721)
A radically simple IT automation system
--------------------------------------------------------------------------------
Update Information:
Update to ansible-core 2.14.3 and ansible 7.3.0.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Maxwell G <maxwell(a)gtmx.me> - 2.14.3-1
- Update to 2.14.3.
--------------------------------------------------------------------------------
================================================================================
aqbanking-6.5.4-1.fc38 (FEDORA-2023-f4f0712db2)
A library for online banking functions and financial data import/export
--------------------------------------------------------------------------------
Update Information:
6.5.4
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Gwyn Ciesla <gwync(a)protonmail.com> - 6.5.4-1
- 6.5.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2174507 - aqbanking-6.5.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174507
--------------------------------------------------------------------------------
================================================================================
braille-printer-app-2.0~b0^386eea385f-3.fc38 (FEDORA-2023-370a957342)
Braille printer application
--------------------------------------------------------------------------------
Update Information:
use Epoch to ensure clean upgrade path because I didn't read FPG carefully
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.0~b0^386eea385f-3
- use Epoch to ensure clean upgrade path because I didn't read FPG carefully
--------------------------------------------------------------------------------
================================================================================
catch-3.3.2-2.fc38 (FEDORA-2023-86aa93897c)
Modern, C++-native, header-only, framework for unit-tests, TDD and BDD
--------------------------------------------------------------------------------
Update Information:
Update catch to version 3 and add catch2 package for version 2 support.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Tom Hughes <tom(a)compton.nu> - 3.3.2-2
- Build in release mode
* Tue Feb 28 2023 Tom Hughes <tom(a)compton.nu> - 3.3.2-1
- Update to 3.3.2 upstream release
* Tue Feb 21 2023 Tom Hughes <tom(a)compton.nu> - 3.3.1-1
- Update to 3.3.1 upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1786881 - catch-3.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1786881
[ 2 ] Bug #2173831 - catch-3.3.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173831
--------------------------------------------------------------------------------
================================================================================
catch1-1.12.2-13.fc38 (FEDORA-2023-86aa93897c)
A modern, C++-native, header-only, framework for unit-tests, TDD and BDD
--------------------------------------------------------------------------------
Update Information:
Update catch to version 3 and add catch2 package for version 2 support.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 22 2023 Tom Hughes <tom(a)compton.nu> - 1.12.2-13
- Drop unnecessary conflict with catch-devel
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1786881 - catch-3.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1786881
[ 2 ] Bug #2173831 - catch-3.3.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173831
--------------------------------------------------------------------------------
================================================================================
catch2-2.13.10-1.fc38 (FEDORA-2023-86aa93897c)
Modern, C++-native, header-only, framework for unit-tests, TDD and BDD
--------------------------------------------------------------------------------
Update Information:
Update catch to version 3 and add catch2 package for version 2 support.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 19 2023 Tom Hughes <tom(a)compton.nu> - 2.13.10-1
- Update to 2.13.10 upstream release
* Wed Jan 18 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.13.8-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.13.8-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Sat Mar 5 2022 Benjamin A. Beasley <code(a)musicinmybrain.net>
- Drop a no longer required invocation from the spec file
- Don���t install docs at all, rather than removing them after the fact
- Build and run ���extra��� tests
* Wed Feb 9 2022 Tom Hughes <tom(a)compton.nu> - 2.13.8-2
- Bump release to rebuild for Fedora 36
* Tue Feb 8 2022 Tom Hughes <tom(a)compton.nu> - 2.13.8-1
- Update to 2.13.8 upstream release
* Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.13.5-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.13.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Sun Apr 11 2021 Tom Hughes <tom(a)compton.nu> - 2.13.5-1
- Update to 2.13.5 upstream release
* Fri Feb 19 2021 Tom Hughes <tom(a)compton.nu> - 2.13.4-3
- Add patch for non-constant MINSIGSTKSZ
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.13.4-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1786881 - catch-3.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1786881
[ 2 ] Bug #2173831 - catch-3.3.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173831
--------------------------------------------------------------------------------
================================================================================
centpkg-0.7.1-1.fc38 (FEDORA-2023-036daa2188)
CentOS utility for working with dist-git
--------------------------------------------------------------------------------
Update Information:
Latest upstream
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Troy Dawson <tdawson(a)redhat.com> - 0.7.1-1
- Latest upstream
* Tue Feb 28 2023 Troy Dawson <tdawson(a)redhat.com> - 0.7.0-1
- Latest upstream - adds --rhel-target feature
--------------------------------------------------------------------------------
================================================================================
cfn-lint-0.74.0-1.fc38 (FEDORA-2023-9d6be05c44)
CloudFormation Linter
--------------------------------------------------------------------------------
Update Information:
### `cfn-lint` v0.74.0 ###### Features - Add rule
[
E3044](https://github.com/aws-cloudformation/cfn-python-
lint/blob/main/docs/rules.md#E3044) to validate the scheduling strategy for
Fargate services (pull #[2559](https://github.com/aws-cloudformation/cfn-
lint/pull/2559)) ###### CloudFormation Specifications - Update CloudFormation
specs to `113.0.0` (pull #[2591](https://github.com/aws-cloudformation/cfn-
lint/pull/2591)) ###### Fixes - Updated condition logic to limit the number of
conditions that are processed (pull #[2598](https://github.com/aws-
cloudformation/cfn-lint/pull/2598)) ----- ### [`python-aws-sam-translator`
1.60.1](https://github.com/aws/serverless-application-
model/releases/tag/v1.60.1) ### [`python-aws-sam-translator`
1.60.0](https://github.com/aws/serverless-application-
model/releases/tag/v1.60.0)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.74.0-1
- Update to 0.74.0 (close RHBZ#2173746)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173745 - python-aws-sam-translator-1.60.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173745
[ 2 ] Bug #2173746 - cfn-lint-0.74.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173746
[ 3 ] Bug #2174238 - python-aws-sam-translator-1.60.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174238
--------------------------------------------------------------------------------
================================================================================
clevis-19-2.fc38 (FEDORA-2023-f7a298ee7d)
Automated decryption framework
--------------------------------------------------------------------------------
Update Information:
Include LUKSv2 volumes in description
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Sergio Arroutbi <sarroutb(a)redhat.com> - 19-2
- Include LUKSv2 volumes in description
--------------------------------------------------------------------------------
================================================================================
cmake-3.26.0~rc5-1.fc38 (FEDORA-2023-06a8d6daa0)
Cross-platform make system
--------------------------------------------------------------------------------
Update Information:
Update to cmake-3.26.0-rc5.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Bj��rn Esser <besser82(a)fedoraproject.org> - 3.26.0~rc5-1
- cmake-3.26.0-rc5
* Wed Feb 22 2023 Bj��rn Esser <besser82(a)fedoraproject.org> - 3.26.0~rc4-1
- cmake-3.26.0-rc4
Fixes rhbz#2172604
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2174456 - cmake-3.26.0-rc5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174456
--------------------------------------------------------------------------------
================================================================================
conmon-2.1.7-1.fc38 (FEDORA-2023-406f8ee8ea)
OCI container runtime monitor
--------------------------------------------------------------------------------
Update Information:
auto bump to v2.1.7
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.1.7-1
- auto bump to v2.1.7
* Wed Feb 15 2023 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:2.1.6-3
- use QUADLET envvar in gating tests - taken from podman package
--------------------------------------------------------------------------------
================================================================================
container-selinux-2.201.0-1.fc38 (FEDORA-2023-9ae144d676)
SELinux policies for container runtimes
--------------------------------------------------------------------------------
Update Information:
auto bump to v2.201.0
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 22 2023 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.201.0-1
- auto bump to v2.201.0
* Fri Feb 10 2023 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:2.200.0-4
- delete systemd_chat_resolved for centos 8 packit builds
* Fri Feb 10 2023 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:2.200.0-3
- dummy changelog to make packit centos 8 copr builds happy
* Fri Feb 10 2023 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:2.200.0-2
- packit: include _selinux_policy_version for centos 8
--------------------------------------------------------------------------------
================================================================================
crash-gcore-command-1.6.4-1.fc38 (FEDORA-2023-29e6046067)
Gcore extension module for the crash utility
--------------------------------------------------------------------------------
Update Information:
coredump: fix building failure due to undefined macros MAPLE_TREE_{COUNT,GATHER}
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 HATAYAMA Daisuke <d.hatayama(a)fujitsu.com> - 1.6.4-1
- coredump: fix building failure due to undefined macros MAPLE_TREE_{COUNT,GATHER}
* Wed Mar 1 2023 HATAYAMA Daisuke <d.hatayama(a)fujitsu.com> - 1.6.4-0
- Update to latest upstream release
--------------------------------------------------------------------------------
================================================================================
cryptobone-1.5-1.fc38 (FEDORA-2023-033224c958)
Secure Communication Under Your Control
--------------------------------------------------------------------------------
Update Information:
This is a major update that improves the mail exchange and GUI.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Ralf Senderek <innovation(a)senderek.ie> - 1.5-1
- Update email transport and GUI
--------------------------------------------------------------------------------
================================================================================
cups-browsed-2.0~b3-2.fc38 (FEDORA-2023-3d0216ff74)
Daemon for local auto-installation of remote printers
--------------------------------------------------------------------------------
Update Information:
use Epoch to ensure upgrade path because I didn't read FPG carefully
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.0~b3-2
- use Epoch to ensure upgrade path because I didn't read FPG carefully
--------------------------------------------------------------------------------
================================================================================
cups-filters-2.0~b3-2.fc38 (FEDORA-2023-d993c4d191)
OpenPrinting CUPS filters and backends for CUPS 2.X
--------------------------------------------------------------------------------
Update Information:
use epoch to ensure clean upgrade path, because I didn't read FPG carefully
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.0~b3-2
- use epoch to ensure clean upgrade path, because I didn't read FPG carefully
--------------------------------------------------------------------------------
================================================================================
edid-decode-0-56.20230301gitd740dde3.fc38 (FEDORA-2023-1af0ca7255)
Decode EDID data in human-readable format
--------------------------------------------------------------------------------
Update Information:
Recent snapshot
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Yanko Kaneti <yaneti(a)declera.com> - 0-56.20230301gitd740dde3
- Recent snapshot
--------------------------------------------------------------------------------
================================================================================
fedpkg-1.44-2.fc38 (FEDORA-2023-510441d4ad)
Fedora utility for working with dist-git
--------------------------------------------------------------------------------
Update Information:
A new release presents these changes: *
https://docs.pagure.org/fedpkg/releases/1.44.html *
https://docs.pagure.org/rpkg/releases/1.66.html +Patch
https://bodhi.fedoraproject.org/updates/FEDORA-2023-e7db0e991f
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Ond��ej Nosek <onosek(a)redhat.com> - 1.44-2
- Require a bumped rpkg version
* Mon Feb 20 2023 Ond��ej Nosek <onosek(a)redhat.com> - 1.44-1
- Do not execute unittests for old bodhi-client (onosek)
- New command `disable-monitoring` (onosek)
- Set default_branch_merge to 'rawhide' (otto.liljalaakso)
- `fedpkg update`: can handle $EDITOR with arguments - #492 (onosek)
- Add Jenkinsfile for CI (onosek)
* Mon Jan 30 2023 Miro Hron��ok <mhroncok(a)redhat.com> - 1.43-3
- Rebuilt to change Python shebangs to /usr/bin/python3.6 on EPEL 8
--------------------------------------------------------------------------------
================================================================================
fotoxx-23.2-1.fc38 (FEDORA-2023-e1d177acf6)
Photo editor
--------------------------------------------------------------------------------
Update Information:
23.2
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Gwyn Ciesla <gwync(a)protonmail.com> - 23.2-1
- 23.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2174357 - fotoxx-23.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174357
--------------------------------------------------------------------------------
================================================================================
gap-pkg-francy-2.0.1-1.fc38 (FEDORA-2023-53886e548f)
Framework for interactive discrete mathematics
--------------------------------------------------------------------------------
Update Information:
Upstream notes on version 2.0.0: - This major release includes multiple bug
fixes and performance improvements. - We dropped support for the jupyter
notebooks extension.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Jerry James <loganjerry(a)gmail.com> - 2.0.1-1
- Version 2.0.1
- Drop upstreamed entity patch
* Thu Feb 23 2023 Jerry James <loganjerry(a)gmail.com> - 2.0.0-1
- Version 2.0.0
- Add patch to fix unknown entity warnings
- Package the notebooks and scheme directories
- Work around tests that expect an exact value for a random UUID
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2172734 - gap-pkg-francy-2.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2172734
[ 2 ] Bug #2173863 - gap-pkg-francy-2.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173863
--------------------------------------------------------------------------------
================================================================================
gitklient-0^20230228git7625dbb-1.fc38 (FEDORA-2023-2995bebfd0)
Git gui client for KDE
--------------------------------------------------------------------------------
Update Information:
Update to latest git.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Vasiliy Glazov <vascom2(a)gmail.com> - 0^20230228git7625dbb-1
- Update to latest git
- Update package versioning scheme
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-dash-to-dock-78-1.fc38 (FEDORA-2023-e5bb36ae01)
Dock for the Gnome Shell by micxgx(a)gmail.com
--------------------------------------------------------------------------------
Update Information:
- dash-to-dock 78
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Pablo Greco <pgreco(a)centosproject.org> - 78-1
- dash-to-dock 78
* Sat Feb 25 2023 Pablo Greco <pgreco(a)centosproject.org> - 76-1
- dash-to-dock 76 (support for gnome 44)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2174436 - Include the latest release for GNOME 44 Support
https://bugzilla.redhat.com/show_bug.cgi?id=2174436
--------------------------------------------------------------------------------
================================================================================
golang-github-rivo-uniseg-0.4.4-2.fc38 (FEDORA-2023-647fa004f8)
Unicode Text Segmentation, Word Wrapping, and String Width Calculation in Go
--------------------------------------------------------------------------------
Update Information:
Update to 0.4.4
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> - 0.4.4-2
- Update to 0.4.4 - Closes rhbz#2172526
* Wed Mar 1 2023 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> - 0.4.4-1
- Update to 0.4.4 - Closes rhbz#2172526
--------------------------------------------------------------------------------
================================================================================
google-api-python-client-2.80.0-1.fc38 (FEDORA-2023-2decc0d981)
Google APIs Client Library for Python
--------------------------------------------------------------------------------
Update Information:
Update to 2.80.0
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> - 2:2.80.0-1
- Update to 2.80.0 - Closes rhbz#2172245
--------------------------------------------------------------------------------
================================================================================
gulrak-filesystem-1.5.12-5.fc38 (FEDORA-2023-d56911ea4f)
Implementation of C++17 std::filesystem for C++11/14/17/20
--------------------------------------------------------------------------------
Update Information:
Ensure the catch2 (v2.x) compat package is used for tests
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.5.12-5
- Ensure the catch2 (v2.x) compat package is used for tests
--------------------------------------------------------------------------------
================================================================================
ibm-plex-fonts-6.2.0-1.fc38 (FEDORA-2023-89ef485d99)
IBM Plex, the new IBM set of coordinated grotesque corporate fonts
--------------------------------------------------------------------------------
Update Information:
Update to 6.2.0
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Michael Kuhn <suraia(a)fedoraproject.org> - 6.2.0-1
- Update to 6.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173902 - ibm-plex-fonts-6.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173902
--------------------------------------------------------------------------------
================================================================================
iso-codes-4.13.0-1.fc38 (FEDORA-2023-8918d6e1ef)
ISO code lists and translations
--------------------------------------------------------------------------------
Update Information:
Update to 4.13.0 version (#2173897)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 28 2023 Parag Nemade <pnemade AT redhat DOT com> - 4.13.0-1
- Update to 4.13.0 version (#2173897)
--------------------------------------------------------------------------------
================================================================================
libcupsfilters-2.0~b4-1.fc38 (FEDORA-2023-573f4b720b)
Library for developing printing filters
--------------------------------------------------------------------------------
Update Information:
2173137 - libcupsfilters-2.0b4 is available introduce Epoch because I'm not
careful reader of FPG...
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.0~b4-1
- (fedora#2173137) - libcupsfilters-2.0b4 is available
- introduce Epoch because I'm not careful reader of FPG...
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173137 - libcupsfilters-2.0b4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173137
--------------------------------------------------------------------------------
================================================================================
libppd-2.0~b4-1.fc38 (FEDORA-2023-8fb591652e)
Library for retro-fitting legacy printer drivers
--------------------------------------------------------------------------------
Update Information:
2.0b4 introduce Epoch because I didn't read FPG carefully...
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.0~b4-1
- 2.0b4
- introduce Epoch because I didn't read FPG carefully...
--------------------------------------------------------------------------------
================================================================================
nodejs18-18.14.2-5.fc38 (FEDORA-2023-84c7ceea96)
JavaScript runtime
--------------------------------------------------------------------------------
Update Information:
## 2023-02-21, Version 18.14.2 'Hydrogen' (LTS), @MylesBorins ### Notable
Changes * \[[`f864bef32a`](https://github.com/nodejs/node/commit/f864bef32a)] -
**deps**: upgrade npm to 9.5.0 (npm team)
[#46673](https://github.com/nodejs/node/pull/46673) ### Commits *
\[[`880a65d7ff`](https://github.com/nodejs/node/commit/880a65d7ff)] - **build**:
delete `snapshot.blob` file from the project (Juan Jos�� Arboleda)
[#46626](https://github.com/nodejs/node/pull/46626) *
\[[`cbea56efda`](https://github.com/nodejs/node/commit/cbea56efda)] - **deps**:
update undici to 5.20.0 (Node.js GitHub Bot)
[#46711](https://github.com/nodejs/node/pull/46711) *
\[[`f864bef32a`](https://github.com/nodejs/node/commit/f864bef32a)] - **deps**:
upgrade npm to 9.5.0 (npm team)
[#46673](https://github.com/nodejs/node/pull/46673) *
\[[`648041d568`](https://github.com/nodejs/node/commit/648041d568)] - **deps**:
upgrade npm to 9.4.0 (npm team)
[#46353](https://github.com/nodejs/node/pull/46353) *
\[[`5e1f213f3c`](https://github.com/nodejs/node/commit/5e1f213f3c)] - **deps**:
patch V8 to 10.2.154.26 (Micha��l Zasso)
[#46446](https://github.com/nodejs/node/pull/46446) <a
id="18.14.1"></a> ##
2023-02-16, Version 18.14.1 'Hydrogen' (LTS), @RafaelGSS prepared by @juanarbol
This is a security release. ### Notable Changes The following CVEs are fixed
in this release: * **[CVE-2023-23918](https://cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2023-23918)**: Node.js Permissions policies can be
bypassed via process.mainModule (High) *
**[CVE-2023-23919](https://cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2023-23919)**: Node.js OpenSSL error handling issues in
nodejs crypto library (Medium) * **[CVE-2023-23936](https://cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2023-23936)**: Fetch API in Node.js did not protect
against CRLF injection in host headers (Medium) *
**[CVE-2023-24807](https://cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2023-24807)**: Regular Expression Denial of Service in
Headers in Node.js fetch API (Low) *
**[CVE-2023-23920](https://cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2023-23920)**: Node.js insecure loading of ICU data
through ICU\_DATA environment variable (Low) More detailed information on each
of the vulnerabilities can be found in [February 2023 Security
Releases](https://nodejs.org/en/blog/vulnerability/february-2023-security-
releases/) blog post. This security release includes OpenSSL security updates
as outlined in the recent [OpenSSL security
advisory](https://www.openssl.org/news/secadv/20230207.txt). ### Commits *
\[[`8393ebc72d`](https://github.com/nodejs/node/commit/8393ebc72d)] - **build**:
build ICU with ICU\_NO\_USER\_DATA\_OVERRIDE (RafaelGSS) [nodejs-private/node-
private#379](https://github.com/nodejs-private/node-private/pull/379) *
\[[`004e34d046`](https://github.com/nodejs/node/commit/004e34d046)] -
**crypto**: clear OpenSSL error on invalid ca cert (RafaelGSS)
[#46572](https://github.com/nodejs/node/pull/46572) *
\[[`5e0142a852`](https://github.com/nodejs/node/commit/5e0142a852)] - **deps**:
cherry-pick Windows ARM64 fix for openssl (Richard Lau)
[#46572](https://github.com/nodejs/node/pull/46572) *
\[[`f71fe278a6`](https://github.com/nodejs/node/commit/f71fe278a6)] - **deps**:
update archs files for quictls/openssl-3.0.8+quic (RafaelGSS)
[#46572](https://github.com/nodejs/node/pull/46572) *
\[[`2c6817e42b`](https://github.com/nodejs/node/commit/2c6817e42b)] - **deps**:
upgrade openssl sources to quictls/openssl-3.0.8+quic (RafaelGSS)
[#46572](https://github.com/nodejs/node/pull/46572) *
\[[`f0afa0bfe5`](https://github.com/nodejs/node/commit/f0afa0bfe5)] - **deps**:
update undici to 5.19.1 (Node.js GitHub Bot)
[#46634](https://github.com/nodejs/node/pull/46634) *
\[[`c26a34c13e`](https://github.com/nodejs/node/commit/c26a34c13e)] - **deps**:
update undici to 5.18.0 (Node.js GitHub Bot)
[#46634](https://github.com/nodejs/node/pull/46634) *
\[[`db93ee4a15`](https://github.com/nodejs/node/commit/db93ee4a15)] - **deps**:
update undici to 5.17.1 (Node.js GitHub Bot)
[#46634](https://github.com/nodejs/node/pull/46634) *
\[[`b4e49fb02c`](https://github.com/nodejs/node/commit/b4e49fb02c)] - **deps**:
update undici to 5.16.0 (Node.js GitHub Bot)
[#46634](https://github.com/nodejs/node/pull/46634) *
\[[`90994e6a2c`](https://github.com/nodejs/node/commit/90994e6a2c)] - **deps**:
update undici to 5.15.1 (Node.js GitHub Bot)
[#46634](https://github.com/nodejs/node/pull/46634) *
\[[`00302fc7ac`](https://github.com/nodejs/node/commit/00302fc7ac)] - **deps**:
update undici to 5.15.0 (Node.js GitHub Bot)
[#46634](https://github.com/nodejs/node/pull/46634) *
\[[`0e3b796cc5`](https://github.com/nodejs/node/commit/0e3b796cc5)] - **lib**:
makeRequireFunction patch when experimental policy (RafaelGSS) [nodejs-
private/node-private#371](https://github.com/nodejs-private/node-
private/pull/371) *
\[[`7cccd5565f`](https://github.com/nodejs/node/commit/7cccd5565f)] -
**policy**: makeRequireFunction on mainModule.require (RafaelGSS) [nodejs-
private/node-private#371](https://github.com/nodejs-private/node-
private/pull/371) ---- Update to 18.14.2
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.14.2-5
- template: Re-sync from nodejs20
* Thu Feb 23 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.14.2-4
- Also drop patch from specfile
* Thu Feb 23 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.14.2-3
- Drop unneeded patch
* Tue Feb 21 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.14.2-2
- Update to latest version of nodejs-sources.sh
* Tue Feb 21 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.14.2-1
- Update to 18.14.2
* Fri Feb 17 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.14.1-1
- Update to v18.14.1
-
https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V18.md#
18.14.1
- packaging: Drop vestigial package.cfg file.
- packaging: Fix spec template
- packaging: Make nodejs-sources.sh clean up after itself
--------------------------------------------------------------------------------
================================================================================
nodejs20-19.7.0-13.fc38 (FEDORA-2023-3a935f359d)
JavaScript runtime
--------------------------------------------------------------------------------
Update Information:
## 2023-02-21, Version 19.7.0 (Current), @MylesBorins ### Notable Changes *
\[[`60a612607e`](https://github.com/nodejs/node/commit/60a612607e)] - **deps**:
upgrade npm to 9.5.0 (npm team)
[#46673](https://github.com/nodejs/node/pull/46673) *
\[[`7d6c27eab1`](https://github.com/nodejs/node/commit/7d6c27eab1)] - **deps**:
add ada as a dependency (Yagiz Nizipli)
[#46410](https://github.com/nodejs/node/pull/46410) *
\[[`a79a8bf85a`](https://github.com/nodejs/node/commit/a79a8bf85a)] - **doc**:
add debadree25 to collaborators (Debadree Chatterjee)
[#46716](https://github.com/nodejs/node/pull/46716) *
\[[`0c2c322ee6`](https://github.com/nodejs/node/commit/0c2c322ee6)] - **doc**:
add deokjinkim to collaborators (Deokjin Kim)
[#46444](https://github.com/nodejs/node/pull/46444) *
\[[`9b23309f53`](https://github.com/nodejs/node/commit/9b23309f53)] -
**doc,lib,src,test**: rename --test-coverage (Colin Ihrig)
[#46017](https://github.com/nodejs/node/pull/46017) *
\[[`8590eb4830`](https://github.com/nodejs/node/commit/8590eb4830)] - **(SEMVER-
MINOR)** **lib**: add aborted() utility function (Debadree Chatterjee)
[#46494](https://github.com/nodejs/node/pull/46494) *
\[[`164bfe82cc`](https://github.com/nodejs/node/commit/164bfe82cc)] - **(SEMVER-
MINOR)** **src**: add initial support for single executable applications
(Darshan Sen) [#45038](https://github.com/nodejs/node/pull/45038) *
\[[`f3908411fd`](https://github.com/nodejs/node/commit/f3908411fd)] - **(SEMVER-
MINOR)** **src**: allow optional Isolate termination in node::Stop() (Shelley
Vohr) [#46583](https://github.com/nodejs/node/pull/46583) *
\[[`c34bac2fed`](https://github.com/nodejs/node/commit/c34bac2fed)] - **(SEMVER-
MINOR)** **src**: allow blobs in addition to `FILE*`s in embedder snapshot API
(Anna Henningsen) [#46491](https://github.com/nodejs/node/pull/46491) *
\[[`683a1f8f3e`](https://github.com/nodejs/node/commit/683a1f8f3e)] - **(SEMVER-
MINOR)** **src**: allow snapshotting from the embedder API (Anna Henningsen)
[#45888](https://github.com/nodejs/node/pull/45888) *
\[[`658d2f4710`](https://github.com/nodejs/node/commit/658d2f4710)] - **(SEMVER-
MINOR)** **src**: make build\_snapshot a per-Isolate option, rather than a
global one (Anna Henningsen) [#45888](https://github.com/nodejs/node/pull/45888)
* \[[`6801d3753c`](https://github.com/nodejs/node/commit/6801d3753c)] -
**(SEMVER-MINOR)** **src**: add snapshot support for embedder API (Anna
Henningsen) [#45888](https://github.com/nodejs/node/pull/45888) *
\[[`e77d538d32`](https://github.com/nodejs/node/commit/e77d538d32)] - **(SEMVER-
MINOR)** **src**: allow embedder control of code generation policy (Shelley
Vohr) [#46368](https://github.com/nodejs/node/pull/46368) *
\[[`633d3f292d`](https://github.com/nodejs/node/commit/633d3f292d)] - **(SEMVER-
MINOR)** **stream**: add abort signal for ReadableStream and WritableStream
(Debadree Chatterjee) [#46273](https://github.com/nodejs/node/pull/46273) *
\[[`6119289251`](https://github.com/nodejs/node/commit/6119289251)] -
**test\_runner**: add initial code coverage support (Colin Ihrig)
[#46017](https://github.com/nodejs/node/pull/46017) *
\[[`a51fe3c663`](https://github.com/nodejs/node/commit/a51fe3c663)] - **url**:
replace url-parser with ada (Yagiz Nizipli)
[#46410](https://github.com/nodejs/node/pull/46410) ### Commits *
\[[`731a7ae9da`](https://github.com/nodejs/node/commit/731a7ae9da)] -
**async\_hooks**: add async local storage propagation benchmarks (Chengzhong Wu)
[#46414](https://github.com/nodejs/node/pull/46414) *
\[[`05ad792a07`](https://github.com/nodejs/node/commit/05ad792a07)] -
**async\_hooks**: remove experimental onPropagate option (James M Snell)
[#46386](https://github.com/nodejs/node/pull/46386) *
\[[`6b21170b10`](https://github.com/nodejs/node/commit/6b21170b10)] -
**benchmark**: add trailing commas in `benchmark/path` (Antoine du Hamel)
[#46628](https://github.com/nodejs/node/pull/46628) *
\[[`4b89ec409f`](https://github.com/nodejs/node/commit/4b89ec409f)] -
**benchmark**: add trailing commas in `benchmark/http` (Antoine du Hamel)
[#46609](https://github.com/nodejs/node/pull/46609) *
\[[`ff95eb7386`](https://github.com/nodejs/node/commit/ff95eb7386)] -
**benchmark**: add trailing commas in `benchmark/crypto` (Antoine du Hamel)
[#46553](https://github.com/nodejs/node/pull/46553) *
\[[`638d9b8d4b`](https://github.com/nodejs/node/commit/638d9b8d4b)] -
**benchmark**: add trailing commas in `benchmark/url` (Antoine du Hamel)
[#46551](https://github.com/nodejs/node/pull/46551) *
\[[`7524871a9b`](https://github.com/nodejs/node/commit/7524871a9b)] -
**benchmark**: add trailing commas in `benchmark/http2` (Antoine du Hamel)
[#46552](https://github.com/nodejs/node/pull/46552) *
\[[`9d9b3f856f`](https://github.com/nodejs/node/commit/9d9b3f856f)] -
**benchmark**: add trailing commas in `benchmark/process` (Antoine du Hamel)
[#46481](https://github.com/nodejs/node/pull/46481) *
\[[`6c69ad6d43`](https://github.com/nodejs/node/commit/6c69ad6d43)] -
**benchmark**: add trailing commas in `benchmark/misc` (Antoine du Hamel)
[#46474](https://github.com/nodejs/node/pull/46474) *
\[[`7f8b292bee`](https://github.com/nodejs/node/commit/7f8b292bee)] -
**benchmark**: add trailing commas in `benchmark/buffers` (Antoine du Hamel)
[#46473](https://github.com/nodejs/node/pull/46473) *
\[[`897e3c2782`](https://github.com/nodejs/node/commit/897e3c2782)] -
**benchmark**: add trailing commas in `benchmark/module` (Antoine du Hamel)
[#46461](https://github.com/nodejs/node/pull/46461) *
\[[`7760d40c04`](https://github.com/nodejs/node/commit/7760d40c04)] -
**benchmark**: add trailing commas in `benchmark/net` (Antoine du Hamel)
[#46439](https://github.com/nodejs/node/pull/46439) *
\[[`8b88d605ca`](https://github.com/nodejs/node/commit/8b88d605ca)] -
**benchmark**: add trailing commas in `benchmark/util` (Antoine du Hamel)
[#46438](https://github.com/nodejs/node/pull/46438) *
\[[`2c8c9f978d`](https://github.com/nodejs/node/commit/2c8c9f978d)] -
**benchmark**: add trailing commas in `benchmark/async_hooks` (Antoine du Hamel)
[#46424](https://github.com/nodejs/node/pull/46424) *
\[[`b364b9bd60`](https://github.com/nodejs/node/commit/b364b9bd60)] -
**benchmark**: add trailing commas in `benchmark/fs` (Antoine du Hamel)
[#46426](https://github.com/nodejs/node/pull/46426) *
\[[`e15ddba7e7`](https://github.com/nodejs/node/commit/e15ddba7e7)] - **build**:
add GitHub Action for coverage with --without-intl (Rich Trott)
[#37954](https://github.com/nodejs/node/pull/37954) *
\[[`c781a48097`](https://github.com/nodejs/node/commit/c781a48097)] - **build**:
do not disable inspector when intl is disabled (Rich Trott)
[#37954](https://github.com/nodejs/node/pull/37954) *
\[[`b4deb2fcd5`](https://github.com/nodejs/node/commit/b4deb2fcd5)] -
**crypto**: don't assume FIPS is disabled by default (Michael Dawson)
[#46532](https://github.com/nodejs/node/pull/46532) *
\[[`60a612607e`](https://github.com/nodejs/node/commit/60a612607e)] - **deps**:
upgrade npm to 9.5.0 (npm team)
[#46673](https://github.com/nodejs/node/pull/46673) *
\[[`6c997035fc`](https://github.com/nodejs/node/commit/6c997035fc)] - **deps**:
update corepack to 0.16.0 (Node.js GitHub Bot)
[#46710](https://github.com/nodejs/node/pull/46710) *
\[[`2ed3875eee`](https://github.com/nodejs/node/commit/2ed3875eee)] - **deps**:
update undici to 5.20.0 (Node.js GitHub Bot)
[#46711](https://github.com/nodejs/node/pull/46711) *
\[[`20cb13bf7f`](https://github.com/nodejs/node/commit/20cb13bf7f)] - **deps**:
update ada to v1.0.1 (Yagiz Nizipli)
[#46550](https://github.com/nodejs/node/pull/46550) *
\[[`c0983cfc06`](https://github.com/nodejs/node/commit/c0983cfc06)] - **deps**:
copy `postject-api.h` and `LICENSE` to the `deps` folder (Darshan Sen)
[#46582](https://github.com/nodejs/node/pull/46582) *
\[[`7d6c27eab1`](https://github.com/nodejs/node/commit/7d6c27eab1)] - **deps**:
add ada as a dependency (Yagiz Nizipli)
[#46410](https://github.com/nodejs/node/pull/46410) *
\[[`7e7e2d037b`](https://github.com/nodejs/node/commit/7e7e2d037b)] - **deps**:
update c-ares to 1.19.0 (Micha��l Zasso)
[#46415](https://github.com/nodejs/node/pull/46415) *
\[[`a79a8bf85a`](https://github.com/nodejs/node/commit/a79a8bf85a)] - **doc**:
add debadree25 to collaborators (Debadree Chatterjee)
[#46716](https://github.com/nodejs/node/pull/46716) *
\[[`6a8b04d709`](https://github.com/nodejs/node/commit/6a8b04d709)] - **doc**:
move bcoe to emeriti (Benjamin Coe)
[#46703](https://github.com/nodejs/node/pull/46703) *
\[[`a0a6ee0f54`](https://github.com/nodejs/node/commit/a0a6ee0f54)] - **doc**:
add response.strictContentLength to documentation (Marco Ippolito)
[#46627](https://github.com/nodejs/node/pull/46627) *
\[[`ffdd64dce3`](https://github.com/nodejs/node/commit/ffdd64dce3)] - **doc**:
remove unused functions from example of `streamConsumers.text` (Deokjin Kim)
[#46581](https://github.com/nodejs/node/pull/46581) *
\[[`c771d66864`](https://github.com/nodejs/node/commit/c771d66864)] - **doc**:
fix test runner examples (Richie McColl)
[#46565](https://github.com/nodejs/node/pull/46565) *
\[[`375bb22df9`](https://github.com/nodejs/node/commit/375bb22df9)] - **doc**:
update test concurrency description / default values (richiemccoll)
[#46457](https://github.com/nodejs/node/pull/46457) *
\[[`a7beac04ba`](https://github.com/nodejs/node/commit/a7beac04ba)] - **doc**:
enrich test command with executable (Tony Gorez)
[#44347](https://github.com/nodejs/node/pull/44347) *
\[[`aef57cd290`](https://github.com/nodejs/node/commit/aef57cd290)] - **doc**:
fix wrong location of `requestTimeout`'s default value (Deokjin Kim)
[#46423](https://github.com/nodejs/node/pull/46423) *
\[[`0c2c322ee6`](https://github.com/nodejs/node/commit/0c2c322ee6)] - **doc**:
add deokjinkim to collaborators (Deokjin Kim)
[#46444](https://github.com/nodejs/node/pull/46444) *
\[[`31d3e3c486`](https://github.com/nodejs/node/commit/31d3e3c486)] - **doc**:
fix -C flag usage (������������ Kevin Deng)
[#46388](https://github.com/nodejs/node/pull/46388) *
\[[`905a6756a3`](https://github.com/nodejs/node/commit/905a6756a3)] - **doc**:
add note about major release rotation (Rafael Gonzaga)
[#46436](https://github.com/nodejs/node/pull/46436) *
\[[`33a98c42fa`](https://github.com/nodejs/node/commit/33a98c42fa)] - **doc**:
update threat model based on discussions (Michael Dawson)
[#46373](https://github.com/nodejs/node/pull/46373) *
\[[`9b23309f53`](https://github.com/nodejs/node/commit/9b23309f53)] -
**doc,lib,src,test**: rename --test-coverage (Colin Ihrig)
[#46017](https://github.com/nodejs/node/pull/46017) *
\[[`f192b83800`](https://github.com/nodejs/node/commit/f192b83800)] - **esm**:
misc test refactors (Geoffrey Booth)
[#46631](https://github.com/nodejs/node/pull/46631) *
\[[`7f2cdd36cf`](https://github.com/nodejs/node/commit/7f2cdd36cf)] - **http**:
add note about clientError event (Paolo Insogna)
[#46584](https://github.com/nodejs/node/pull/46584) *
\[[`d8c527f24f`](https://github.com/nodejs/node/commit/d8c527f24f)] - **http**:
use v8::Array::New() with a prebuilt vector (Joyee Cheung)
[#46447](https://github.com/nodejs/node/pull/46447) *
\[[`fa600fe003`](https://github.com/nodejs/node/commit/fa600fe003)] - **lib**:
add trailing commas in `internal/process` (Antoine du Hamel)
[#46687](https://github.com/nodejs/node/pull/46687) *
\[[`4aebee63f0`](https://github.com/nodejs/node/commit/4aebee63f0)] - **lib**:
do not crash using workers with disabled shared array buffers (Ruben
Bridgewater) [#41023](https://github.com/nodejs/node/pull/41023) *
\[[`a740908588`](https://github.com/nodejs/node/commit/a740908588)] - **lib**:
delete module findPath unused params (sinkhaha)
[#45371](https://github.com/nodejs/node/pull/45371) *
\[[`8b46c763d9`](https://github.com/nodejs/node/commit/8b46c763d9)] - **lib**:
enforce use of trailing commas in more files (Antoine du Hamel)
[#46655](https://github.com/nodejs/node/pull/46655) *
\[[`aae0020e27`](https://github.com/nodejs/node/commit/aae0020e27)] - **lib**:
enforce use of trailing commas for functions (Antoine du Hamel)
[#46629](https://github.com/nodejs/node/pull/46629) *
\[[`da9ebaf138`](https://github.com/nodejs/node/commit/da9ebaf138)] - **lib**:
predeclare Event.isTrusted prop descriptor (Santiago Gimeno)
[#46527](https://github.com/nodejs/node/pull/46527) *
\[[`35570e970e`](https://github.com/nodejs/node/commit/35570e970e)] - **lib**:
tighten `AbortSignal.prototype.throwIfAborted` implementation (Antoine du Hamel)
[#46521](https://github.com/nodejs/node/pull/46521) *
\[[`8590eb4830`](https://github.com/nodejs/node/commit/8590eb4830)] - **(SEMVER-
MINOR)** **lib**: add aborted() utility function (Debadree Chatterjee)
[#46494](https://github.com/nodejs/node/pull/46494) *
\[[`5d1a729f76`](https://github.com/nodejs/node/commit/5d1a729f76)] - **meta**:
update AUTHORS (Node.js GitHub Bot)
[#46624](https://github.com/nodejs/node/pull/46624) *
\[[`cb9b9ad879`](https://github.com/nodejs/node/commit/cb9b9ad879)] - **meta**:
move one or more collaborators to emeritus (Node.js GitHub Bot)
[#46513](https://github.com/nodejs/node/pull/46513) *
\[[`17b82c85d9`](https://github.com/nodejs/node/commit/17b82c85d9)] - **meta**:
update AUTHORS (Node.js GitHub Bot)
[#46504](https://github.com/nodejs/node/pull/46504) *
\[[`bb14a2b098`](https://github.com/nodejs/node/commit/bb14a2b098)] - **meta**:
move one or more collaborators to emeritus (Node.js GitHub Bot)
[#46411](https://github.com/nodejs/node/pull/46411) *
\[[`152a3c7d1d`](https://github.com/nodejs/node/commit/152a3c7d1d)] -
**process**: print versions by sort (Himself65)
[#46428](https://github.com/nodejs/node/pull/46428) *
\[[`164bfe82cc`](https://github.com/nodejs/node/commit/164bfe82cc)] - **(SEMVER-
MINOR)** **src**: add initial support for single executable applications
(Darshan Sen) [#45038](https://github.com/nodejs/node/pull/45038) *
\[[`f3908411fd`](https://github.com/nodejs/node/commit/f3908411fd)] - **(SEMVER-
MINOR)** **src**: allow optional Isolate termination in node::Stop() (Shelley
Vohr) [#46583](https://github.com/nodejs/node/pull/46583) *
\[[`bdba600d32`](https://github.com/nodejs/node/commit/bdba600d32)] - **src**:
remove icu usage from node\_string.cc (Yagiz Nizipli)
[#46548](https://github.com/nodejs/node/pull/46548) *
\[[`31fb2e22a0`](https://github.com/nodejs/node/commit/31fb2e22a0)] - **src**:
add fflush() to SnapshotData::ToFile() (Anna Henningsen)
[#46531](https://github.com/nodejs/node/pull/46531) *
\[[`c34bac2fed`](https://github.com/nodejs/node/commit/c34bac2fed)] - **(SEMVER-
MINOR)** **src**: allow blobs in addition to `FILE*`s in embedder snapshot API
(Anna Henningsen) [#46491](https://github.com/nodejs/node/pull/46491) *
\[[`c3325bfc0d`](https://github.com/nodejs/node/commit/c3325bfc0d)] - **src**:
make edge names in BaseObjects more descriptive in heap snapshots (Joyee Cheung)
[#46492](https://github.com/nodejs/node/pull/46492) *
\[[`3c5db8f419`](https://github.com/nodejs/node/commit/3c5db8f419)] - **src**:
avoid leaking snapshot fp on error (Tobias Nie��en)
[#46497](https://github.com/nodejs/node/pull/46497) *
\[[`1a808a4aad`](https://github.com/nodejs/node/commit/1a808a4aad)] - **src**:
check return value of ftell() (Tobias Nie��en)
[#46495](https://github.com/nodejs/node/pull/46495) *
\[[`f72f643549`](https://github.com/nodejs/node/commit/f72f643549)] - **src**:
remove unused includes from main thread (Yagiz Nizipli)
[#46471](https://github.com/nodejs/node/pull/46471) *
\[[`60c2a863da`](https://github.com/nodejs/node/commit/60c2a863da)] - **src**:
use string\_view instead of std::string& (Yagiz Nizipli)
[#46471](https://github.com/nodejs/node/pull/46471) *
\[[`f35f6d2218`](https://github.com/nodejs/node/commit/f35f6d2218)] - **src**:
use simdutf utf8 to utf16 instead of icu (Yagiz Nizipli)
[#46471](https://github.com/nodejs/node/pull/46471) *
\[[`00b81c7afe`](https://github.com/nodejs/node/commit/00b81c7afe)] - **src**:
replace icu with simdutf for char counts (Yagiz Nizipli)
[#46472](https://github.com/nodejs/node/pull/46472) *
\[[`683a1f8f3e`](https://github.com/nodejs/node/commit/683a1f8f3e)] - **(SEMVER-
MINOR)** **src**: allow snapshotting from the embedder API (Anna Henningsen)
[#45888](https://github.com/nodejs/node/pull/45888) *
\[[`658d2f4710`](https://github.com/nodejs/node/commit/658d2f4710)] - **(SEMVER-
MINOR)** **src**: make build\_snapshot a per-Isolate option, rather than a
global one (Anna Henningsen) [#45888](https://github.com/nodejs/node/pull/45888)
* \[[`6801d3753c`](https://github.com/nodejs/node/commit/6801d3753c)] -
**(SEMVER-MINOR)** **src**: add snapshot support for embedder API (Anna
Henningsen) [#45888](https://github.com/nodejs/node/pull/45888) *
\[[`95065c3185`](https://github.com/nodejs/node/commit/95065c3185)] - **src**:
add additional utilities to crypto::SecureContext (James M Snell)
[#45912](https://github.com/nodejs/node/pull/45912) *
\[[`efc59d0843`](https://github.com/nodejs/node/commit/efc59d0843)] - **src**:
add KeyObjectHandle::HasInstance (James M Snell)
[#45912](https://github.com/nodejs/node/pull/45912) *
\[[`a8a2d0e2b1`](https://github.com/nodejs/node/commit/a8a2d0e2b1)] - **src**:
add GetCurrentCipherName/Version to crypto\_common (James M Snell)
[#45912](https://github.com/nodejs/node/pull/45912) *
\[[`6cf860d3d6`](https://github.com/nodejs/node/commit/6cf860d3d6)] - **src**:
back snapshot I/O with a std::vector sink (Joyee Cheung)
[#46463](https://github.com/nodejs/node/pull/46463) *
\[[`e77d538d32`](https://github.com/nodejs/node/commit/e77d538d32)] - **(SEMVER-
MINOR)** **src**: allow embedder control of code generation policy (Shelley
Vohr) [#46368](https://github.com/nodejs/node/pull/46368) *
\[[`7756438c81`](https://github.com/nodejs/node/commit/7756438c81)] -
**stream**: add trailing commas in webstream source files (Antoine du Hamel)
[#46685](https://github.com/nodejs/node/pull/46685) *
\[[`6b64a945c6`](https://github.com/nodejs/node/commit/6b64a945c6)] -
**stream**: add trailing commas in stream source files (Antoine du Hamel)
[#46686](https://github.com/nodejs/node/pull/46686) *
\[[`633d3f292d`](https://github.com/nodejs/node/commit/633d3f292d)] - **(SEMVER-
MINOR)** **stream**: add abort signal for ReadableStream and WritableStream
(Debadree Chatterjee) [#46273](https://github.com/nodejs/node/pull/46273) *
\[[`f91260b32a`](https://github.com/nodejs/node/commit/f91260b32a)] -
**stream**: refactor to use `validateAbortSignal` (Antoine du Hamel)
[#46520](https://github.com/nodejs/node/pull/46520) *
\[[`6bf7388b62`](https://github.com/nodejs/node/commit/6bf7388b62)] -
**stream**: allow transfer of readable byte streams (MrBBot)
[#45955](https://github.com/nodejs/node/pull/45955) *
\[[`c2068537fa`](https://github.com/nodejs/node/commit/c2068537fa)] -
**stream**: add pipeline() for webstreams (Debadree Chatterjee)
[#46307](https://github.com/nodejs/node/pull/46307) *
\[[`4cf4b41c56`](https://github.com/nodejs/node/commit/4cf4b41c56)] -
**stream**: add suport for abort signal in finished() for webstreams (Debadree
Chatterjee) [#46403](https://github.com/nodejs/node/pull/46403) *
\[[`b844a09fa5`](https://github.com/nodejs/node/commit/b844a09fa5)] -
**stream**: dont access Object.prototype.type during TransformStream init
(Debadree Chatterjee) [#46389](https://github.com/nodejs/node/pull/46389) *
\[[`6ad01fd7b5`](https://github.com/nodejs/node/commit/6ad01fd7b5)] - **test**:
fix `test-net-autoselectfamily` for kernel without IPv6 support (Livia Medeiros)
[#45856](https://github.com/nodejs/node/pull/45856) *
\[[`2239e24306`](https://github.com/nodejs/node/commit/2239e24306)] - **test**:
fix assertions in test-snapshot-dns-lookup\* (Tobias Nie��en)
[#46618](https://github.com/nodejs/node/pull/46618) *
\[[`c4ca98e786`](https://github.com/nodejs/node/commit/c4ca98e786)] - **test**:
cover publicExponent validation in OpenSSL (Tobias Nie��en)
[#46632](https://github.com/nodejs/node/pull/46632) *
\[[`e60d3f2b1d`](https://github.com/nodejs/node/commit/e60d3f2b1d)] - **test**:
add WPTRunner support for variants and generating WPT reports (Filip Skokan)
[#46498](https://github.com/nodejs/node/pull/46498) *
\[[`217f2f6e2a`](https://github.com/nodejs/node/commit/217f2f6e2a)] - **test**:
add trailing commas in `test/pummel` (Antoine du Hamel)
[#46610](https://github.com/nodejs/node/pull/46610) *
\[[`641e1771c8`](https://github.com/nodejs/node/commit/641e1771c8)] - **test**:
enable api-invalid-label.any.js in encoding WPTs (Filip Skokan)
[#46506](https://github.com/nodejs/node/pull/46506) *
\[[`89aa161173`](https://github.com/nodejs/node/commit/89aa161173)] - **test**:
fix tap parser fails if a test logs a number (Pulkit Gupta)
[#46056](https://github.com/nodejs/node/pull/46056) *
\[[`faba8d4a30`](https://github.com/nodejs/node/commit/faba8d4a30)] - **test**:
add trailing commas in `test/js-native-api` (Antoine du Hamel)
[#46385](https://github.com/nodejs/node/pull/46385) *
\[[`d556ccdd26`](https://github.com/nodejs/node/commit/d556ccdd26)] - **test**:
make more crypto tests work with BoringSSL (Shelley Vohr)
[#46429](https://github.com/nodejs/node/pull/46429) *
\[[`c7f29b24a6`](https://github.com/nodejs/node/commit/c7f29b24a6)] - **test**:
add trailing commas in `test/known_issues` (Antoine du Hamel)
[#46408](https://github.com/nodejs/node/pull/46408) *
\[[`a66e7ca6c5`](https://github.com/nodejs/node/commit/a66e7ca6c5)] - **test**:
add trailing commas in `test/internet` (Antoine du Hamel)
[#46407](https://github.com/nodejs/node/pull/46407) *
\[[`0f75633086`](https://github.com/nodejs/node/commit/0f75633086)] -
**test,crypto**: update WebCryptoAPI WPT (Filip Skokan)
[#46575](https://github.com/nodejs/node/pull/46575) *
\[[`ddf5002782`](https://github.com/nodejs/node/commit/ddf5002782)] -
**test\_runner**: parse non-ascii character correctly (Mert Can Alt��n)
[#45736](https://github.com/nodejs/node/pull/45736) *
\[[`5b748114d2`](https://github.com/nodejs/node/commit/5b748114d2)] -
**test\_runner**: allow nesting test within describe (Moshe Atlow)
[#46544](https://github.com/nodejs/node/pull/46544) *
\[[`c526f9f70a`](https://github.com/nodejs/node/commit/c526f9f70a)] -
**test\_runner**: fix missing test diagnostics (Moshe Atlow)
[#46450](https://github.com/nodejs/node/pull/46450) *
\[[`b31aabb101`](https://github.com/nodejs/node/commit/b31aabb101)] -
**test\_runner**: top-level diagnostics not ommited when running with --test
(Pulkit Gupta) [#46441](https://github.com/nodejs/node/pull/46441) *
\[[`6119289251`](https://github.com/nodejs/node/commit/6119289251)] -
**test\_runner**: add initial code coverage support (Colin Ihrig)
[#46017](https://github.com/nodejs/node/pull/46017) *
\[[`6f24f0621e`](https://github.com/nodejs/node/commit/6f24f0621e)] -
**timers**: cleanup no-longer relevant TODOs in timers/promises (James M Snell)
[#46499](https://github.com/nodejs/node/pull/46499) *
\[[`1cd22e7d19`](https://github.com/nodejs/node/commit/1cd22e7d19)] - **tools**:
fix bug in `prefer-primordials` lint rule (Antoine du Hamel)
[#46659](https://github.com/nodejs/node/pull/46659) *
\[[`87df34ac28`](https://github.com/nodejs/node/commit/87df34ac28)] - **tools**:
fix update-ada script (Yagiz Nizipli)
[#46550](https://github.com/nodejs/node/pull/46550) *
\[[`f62b58a623`](https://github.com/nodejs/node/commit/f62b58a623)] - **tools**:
add a daily wpt.fyi synchronized report upload (Filip Skokan)
[#46498](https://github.com/nodejs/node/pull/46498) *
\[[`803f00aa32`](https://github.com/nodejs/node/commit/803f00aa32)] - **tools**:
update eslint to 8.34.0 (Node.js GitHub Bot)
[#46625](https://github.com/nodejs/node/pull/46625) *
\[[`f87216bdb2`](https://github.com/nodejs/node/commit/f87216bdb2)] - **tools**:
update lint-md-dependencies to rollup\(a)3.15.0 to-vfile\(a)7.2.4 (Node.js GitHub
Bot) [#46623](https://github.com/nodejs/node/pull/46623) *
\[[`8ee9e48560`](https://github.com/nodejs/node/commit/8ee9e48560)] - **tools**:
update doc to remark-html\(a)15.0.2 to-vfile\(a)7.2.4 (Node.js GitHub Bot)
[#46622](https://github.com/nodejs/node/pull/46622) *
\[[`148c5d9239`](https://github.com/nodejs/node/commit/148c5d9239)] - **tools**:
update lint-md-dependencies to rollup\(a)3.13.0 vfile-reporter\(a)7.0.5 (Node.js
GitHub Bot) [#46503](https://github.com/nodejs/node/pull/46503) *
\[[`51c6c61a58`](https://github.com/nodejs/node/commit/51c6c61a58)] - **tools**:
update ESLint custom rules to not use the deprecated format (Antoine du Hamel)
[#46460](https://github.com/nodejs/node/pull/46460) *
\[[`a51fe3c663`](https://github.com/nodejs/node/commit/a51fe3c663)] - **url**:
replace url-parser with ada (Yagiz Nizipli)
[#46410](https://github.com/nodejs/node/pull/46410) *
\[[`129c9e7180`](https://github.com/nodejs/node/commit/129c9e7180)] - **url**:
remove unused `URL::ToFilePath()` (Yagiz Nizipli)
[#46487](https://github.com/nodejs/node/pull/46487) *
\[[`9a604d67c3`](https://github.com/nodejs/node/commit/9a604d67c3)] - **url**:
remove unused `URL::toObject` (Yagiz Nizipli)
[#46486](https://github.com/nodejs/node/pull/46486) *
\[[`d6fbebda54`](https://github.com/nodejs/node/commit/d6fbebda54)] - **url**:
remove unused `setURLConstructor` function (Yagiz Nizipli)
[#46485](https://github.com/nodejs/node/pull/46485) *
\[[`17b3ee33c2`](https://github.com/nodejs/node/commit/17b3ee33c2)] - **vm**:
properly support symbols on globals (Nicolas DUBIEN)
[#46458](https://github.com/nodejs/node/pull/46458) <a
id="19.6.1"></a> ##
2023-02-16, Version 19.6.1 (Current), @RafaelGSS This is a security release.
### Notable Changes The following CVEs are fixed in this release: *
**[CVE-2023-23919](https://cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2023-23919)**: OpenSSL errors not cleared in error
stack (Medium) * **[CVE-2023-23918](https://cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2023-23918)**: Experimental Policies bypass via
`process.mainModule.require`(High) *
**[CVE-2023-23920](https://cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2023-23920)**: Insecure loading of ICU data through
ICU\_DATA environment variable (Low) More detailed information on each of the
vulnerabilities can be found in [February 2023 Security
Releases](https://nodejs.org/en/blog/vulnerability/february-2023-security-
releases/) blog post. This security release includes OpenSSL security updates
as outlined in the recent [OpenSSL security
advisory](https://www.openssl.org/news/secadv/20230207.txt) and `undici`
security update.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-13
- Apply typo fix to specfile
* Wed Mar 1 2023 Stephen Gallagher <sgallagh(a)redhat.com>
- Fix typo in conditional
* Wed Mar 1 2023 Stephen Gallagher <sgallagh(a)redhat.com>
- template: Add support for RHEL default version
* Wed Mar 1 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-10
- Enable dtrace for Node.js < 19
* Wed Mar 1 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-9
- Drop vestigial bundling bcond
* Wed Mar 1 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-8
- Add patch to fix OpenSSL shared build
* Wed Mar 1 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-7
- sources: use jinja2 template to support patches
* Tue Feb 28 2023 Stephen Gallagher <sgallagh(a)redhat.com>
- Don't stage sources file if --no-push was passed
* Tue Feb 28 2023 Stephen Gallagher <sgallagh(a)redhat.com>
- Specfile tweaks
* Thu Feb 23 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-4
- Drop unneeded patch
* Tue Feb 21 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-3
- ABI: The ABI version is the same as the soversion
* Tue Feb 21 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-2
- sources: Add missing paren
* Tue Feb 21 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.7.0-1
- Update to 19.7.0
* Tue Feb 21 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.6.1-2
- sources: clean up after itself
* Tue Feb 21 2023 Stephen Gallagher <sgallagh(a)redhat.com> - 1:19.6.1-1
- First Node.js 20 prerelease
* Fri Jun 17 2022 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.4.0-1
- Update to Node.js 18.4.0
-
https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V18.m...
* Thu Jun 9 2022 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.3.0-2
- Fix conflict between x86_64 and i686 installs of nodejs-devel
* Tue Jun 7 2022 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.3.0-1
- Update to Node.js 18.3.0
-
https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V18.m...
* Tue May 17 2022 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.2.0-1
- Update to Node.js 18.2.0
-
https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V18.m...
* Fri May 6 2022 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.1.0-2
- Fix incorrect epoch in v8-devel dependency
* Thu May 5 2022 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.1.0-1
- Update to Node.js 18.1.0
-
https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V18.m...
* Thu Apr 28 2022 Stephen Gallagher <sgallagh(a)redhat.com> - 1:18.0.0-1
- First release of Node.js 18.x
--------------------------------------------------------------------------------
================================================================================
parole-4.18.0-1.fc38 (FEDORA-2023-f07f5eede6)
Media player for the Xfce desktop
--------------------------------------------------------------------------------
Update Information:
xfce 4.18 updates - thunar, xfce4-notifyd, parole
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Mukundan Ragavan <nonamedotc(a)gmail.com> - 4.18.0-1
- Update to v4.18.0
--------------------------------------------------------------------------------
================================================================================
perl-Prima-1.68.1-1.fc38 (FEDORA-2023-0a84fe325d)
Perl graphic toolkit
--------------------------------------------------------------------------------
Update Information:
This release corrects a Prima::Widget::Panel Perl module name. ---- This
relase provides a support for AnyEvent toolkit.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Petr Pisar <ppisar(a)redhat.com> - 1.68.1-1
- 1.68001 bump
* Mon Feb 27 2023 Petr Pisar <ppisar(a)redhat.com> - 1.68-1
- 1.68 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173292 - perl-Prima-1.68 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173292
[ 2 ] Bug #2174261 - perl-Prima-1.68001 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174261
--------------------------------------------------------------------------------
================================================================================
perl-Rose-DB-0.785-2.fc38 (FEDORA-2023-d31fc4945e)
DBI wrapper and abstraction layer
--------------------------------------------------------------------------------
Update Information:
update to version 0.785
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Bill Pemberton <wfp5p(a)worldbroken.com> - 0.785-2
- modernize the spec file
* Wed Mar 1 2023 Bill Pemberton <wfp5p(a)worldbroken.com> - 0.785-1
- update to version 0.785
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2174023 - perl-Rose-DB-0.785 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174023
--------------------------------------------------------------------------------
================================================================================
php-pecl-mcrypt-1.0.6-1.fc38 (FEDORA-2023-de655e7af2)
Bindings for the libmcrypt library
--------------------------------------------------------------------------------
Update Information:
PHP 8.2 compatibility
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Remi Collet <remi(a)remirepo.net> - 1.0.6-1
- update to 1.0.6
--------------------------------------------------------------------------------
================================================================================
podman-4.4.2-2.fc38 (FEDORA-2023-130f786970)
Manage Pods, Containers and Container Images
--------------------------------------------------------------------------------
Update Information:
remove CVE-2023-0778.patch merged upstream
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 5:4.4.2-2
- remove CVE-2023-0778.patch merged upstream
* Tue Feb 28 2023 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 5:4.4.2-1
- auto bump to v4.4.2
* Wed Feb 22 2023 Yaakov Selkowitz <yselkowi(a)redhat.com> - 5:4.4.1-4
- Sync modules-load conditionals
--------------------------------------------------------------------------------
================================================================================
python-aws-sam-translator-1.60.1-1.fc38 (FEDORA-2023-9d6be05c44)
Transform SAM templates into AWS CloudFormation templates
--------------------------------------------------------------------------------
Update Information:
### `cfn-lint` v0.74.0 ###### Features - Add rule
[
E3044](https://github.com/aws-cloudformation/cfn-python-
lint/blob/main/docs/rules.md#E3044) to validate the scheduling strategy for
Fargate services (pull #[2559](https://github.com/aws-cloudformation/cfn-
lint/pull/2559)) ###### CloudFormation Specifications - Update CloudFormation
specs to `113.0.0` (pull #[2591](https://github.com/aws-cloudformation/cfn-
lint/pull/2591)) ###### Fixes - Updated condition logic to limit the number of
conditions that are processed (pull #[2598](https://github.com/aws-
cloudformation/cfn-lint/pull/2598)) ----- ### [`python-aws-sam-translator`
1.60.1](https://github.com/aws/serverless-application-
model/releases/tag/v1.60.1) ### [`python-aws-sam-translator`
1.60.0](https://github.com/aws/serverless-application-
model/releases/tag/v1.60.0)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.60.1-1
- Update to 1.60.1 (close RHBZ#2174238)
* Tue Feb 28 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.60.0-1
- Update to 1.60.0 (close RHBZ#2173745)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173745 - python-aws-sam-translator-1.60.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173745
[ 2 ] Bug #2173746 - cfn-lint-0.74.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173746
[ 3 ] Bug #2174238 - python-aws-sam-translator-1.60.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174238
--------------------------------------------------------------------------------
================================================================================
python-jenkins-job-builder-4.3.0-1.fc38 (FEDORA-2023-8f2d60bc2c)
Manage Jenkins jobs with YAML
--------------------------------------------------------------------------------
Update Information:
Update to 4.3.0 (rhbz#2173887)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Christoph Erhardt <fedora(a)sicherha.de> - 1:4.3.0-1
- Update to 4.3.0 (rhbz#2173887)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173887 - python-jenkins-job-builder-4.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2173887
--------------------------------------------------------------------------------
================================================================================
python-jupyter-server-fileid-0.8.0-1.fc38 (FEDORA-2023-1b8abef694)
A Jupyter Server extension for the File ID service
--------------------------------------------------------------------------------
Update Information:
Update to 0.8.0 (rhbz#2173025)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Lum��r Balhar <lbalhar(a)redhat.com> - 0.8.0-1
- Update to 0.8.0 (rhbz#2173025)
* Fri Feb 17 2023 Lum��r Balhar <lbalhar(a)redhat.com> - 0.7.0-1
- Update to 0.7.0 (rhbz#2170695)
* Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.6.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2171678 - python-jupyter-server-fileid: FTBFS in Fedora rawhide/f38
https://bugzilla.redhat.com/show_bug.cgi?id=2171678
--------------------------------------------------------------------------------
================================================================================
python-pandas-1.5.3-1.fc38 (FEDORA-2023-2ae91dfb23)
Python library providing high-performance data analysis tools
--------------------------------------------------------------------------------
Update Information:
Update to 1.5.3:
https://pandas.pydata.org/docs/whatsnew/v1.5.3.html
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 27 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.5.3-1
- Update to 1.5.3 (close RHBZ#2162303)
* Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2162303 - python-pandas-1.5.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2162303
--------------------------------------------------------------------------------
================================================================================
python-productmd-1.35-1.fc38 (FEDORA-2023-dfe8dd9521)
Library providing parsers for metadata related to OS installation
--------------------------------------------------------------------------------
Update Information:
Rebased to latest upstream release. * Fix support for obtaining metadata via
FTP * Add `vhd-compressed` image type * Add support for EulerOS
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Lubom��r Sedl���� <lsedlar(a)redhat.com> - 1.35-1
- New upstream release 1.35
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173937 - python-productmd-1.34 is now available
https://bugzilla.redhat.com/show_bug.cgi?id=2173937
--------------------------------------------------------------------------------
================================================================================
qatlib-23.02.0-1.fc38 (FEDORA-2023-7c0eff1567)
Intel QuickAssist user space library
--------------------------------------------------------------------------------
Update Information:
Update to qatlib 23.02.0.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 24 2023 Giovanni Cabiddu <giovanni.cabiddu(a)intel.com> - 23.02.0-1
- Update to qatlib 23.02.0
--------------------------------------------------------------------------------
================================================================================
redis-7.0.9-1.fc38 (FEDORA-2023-b0768fba7b)
A persistent key-value database
--------------------------------------------------------------------------------
Update Information:
**Redis 7.0.9** - Released Tue Feb 28 12:00:00 IST 2023 Upgrade urgency:
SECURITY, contains fixes to security issues. Security Fixes: *
(**CVE-2023-25155**) Specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD
commands can trigger an integer overflow, resulting in a runtime assertion and
termination of the Redis server process. * (**CVE-2022-36021**) String matching
commands (like SCAN or KEYS) with a specially crafted pattern to trigger a
denial-of-service attack on Redis, causing it to hang and consume 100% CPU
time. Bug Fixes * Fix a crash when reaching the maximum invalidations limit of
client-side tracking (#11814) * Fix a crash when SPUBLISH is used after passing
the cluster-link-sendbuf-limit (#11752) * Fix possible memory corruption in
FLUSHALL when a client watches more than one key (#11854) * Fix cluster inbound
link keepalive time (#11785) * Flush propagation list in active-expire of
writable replicas to fix an assertion (#11615) * Avoid propagating DEL of lazy
expire from SCAN and RANDOMKEY as MULTI-EXEC (#11788)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 1 2023 Remi Collet <remi(a)remirepo.net> - 7.0.9-1
- Upstream 7.0.9 release.
--------------------------------------------------------------------------------
================================================================================
rpkg-1.66-3.fc38 (FEDORA-2023-510441d4ad)
Python library for interacting with rpm+git
--------------------------------------------------------------------------------
Update Information:
A new release presents these changes: *
https://docs.pagure.org/fedpkg/releases/1.44.html *
https://docs.pagure.org/rpkg/releases/1.66.html +Patch
https://bodhi.fedoraproject.org/updates/FEDORA-2023-e7db0e991f
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Ond��ej Nosek <onosek(a)redhat.com> - 1.66-3
- Patch: Process source URLs with fragment in pre-push hook
- Patch: container-build: update --signing-intent help for OSBS 2
* Tue Feb 21 2023 Ond��ej Nosek <onosek(a)redhat.com> - 1.66-2
- rebuild for unification of all branches
* Mon Feb 20 2023 Ond��ej Nosek <onosek(a)redhat.com> - 1.66-1
- container-build: document --compose-ids overrides any new composes (kdreyer)
- Use srpm when scratch-building from dirty repo - #652 (otto.liljalaakso)
- Code cleanup in tests/test_cli.py (otto.liljalaakso)
- Reduce indentation in assert_build helper (otto.liljalaakso)
- Allow empty commits - 494 (msuchy)
- Allow forcing download of all sources - #650 (otto.liljalaakso)
- Add test case for not downloading unused sources (otto.liljalaakso)
- Support 'results_dir=subdir' when building from srpm - #648
(otto.liljalaakso)
- Use local branch name as release when there is no remote (otto.liljalaakso)
- Allow downstreams to define a default release (otto.liljalaakso)
- Switch load_branch_merge to use multiple return (otto.liljalaakso)
- Unittests for 'git push' hook script (onosek)
- Checking a repo configuration before 'git push' with a git hook script - 491
(onosek)
- Fix skipping NVR check with autorelease (nils)
- pyrpkg.spec.SpecFile: More lenient parser for Source/Patch lines (fweimer)
- Fix URL in CHANGELOG.rst (tmz)
- Add Jenkinsfile for CI (onosek)
- mockbuild: escape rpm command under mock - rhbz#2130349 (onosek)
- Fixes for exploded SRPM layouts - #633 (tdawson)
- `fedpkg local` does not show rpmbuild output - rhbz#2124809 (onosek)
--------------------------------------------------------------------------------
================================================================================
rust-bytemuck-1.13.1-1.fc38 (FEDORA-2023-74312ef158)
Crate for mucking around with piles of bytes
--------------------------------------------------------------------------------
Update Information:
Update to version 1.13.1.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Fabio Valentini <decathorpe(a)gmail.com> - 1.13.1-1
- Update to version 1.13.1; Fixes RHBZ#2174225
--------------------------------------------------------------------------------
================================================================================
rust-memsec-0.6.3-1.fc38 (FEDORA-2023-3d851ab00e)
Rust implementation of libsodium/utils
--------------------------------------------------------------------------------
Update Information:
Update to version 0.6.3.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.6.3-1
- Update to version 0.6.3; Fixes RHBZ#2174347
--------------------------------------------------------------------------------
================================================================================
rust-tokio-1.26.0-1.fc38 (FEDORA-2023-ddcd22b550)
Event-driven, non-blocking I/O platform
--------------------------------------------------------------------------------
Update Information:
Update to version 1.26.0.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Fabio Valentini <decathorpe(a)gmail.com> - 1.26.0-1
- Update to version 1.26.0; Fixes RHBZ#2174594
--------------------------------------------------------------------------------
================================================================================
samba-4.18.0-0.8.rc4.fc38 (FEDORA-2023-ad493d75ce)
Server and Client software to interoperate with Windows machines
--------------------------------------------------------------------------------
Update Information:
Update to version 4.18.0rc4 ---- resolves: #2173619 - Add missing Requires for
glibc-gconv-extra
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Guenther Deschner <gdeschner(a)redhat.com> - 4.18.0rc4-8
- resolves: #2174415 - Update to version 4.18.0rc4
* Tue Feb 28 2023 Andreas Schneider <asn(a)redhat.com> - 4.18.0-0.7.rc3
- resolves: #2173619 - Add missing Requires for glibc-gconv-extra
* Thu Feb 23 2023 Pavel Filipensk�� <pfilipen(a)redhat.com> - 4.18.0-0.6.rc3
- SPDX migration
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2173619 - Add glibc-gconv-extra dependency
https://bugzilla.redhat.com/show_bug.cgi?id=2173619
[ 2 ] Bug #2174415 - samba-4.18.0rc4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174415
--------------------------------------------------------------------------------
================================================================================
satyr-0.42-1.fc38 (FEDORA-2023-dee6975299)
Tools to create anonymous, machine-friendly problem reports
--------------------------------------------------------------------------------
Update Information:
Update to 0.42. Resolves: rhbz#2168223
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Michal Srb <michal(a)redhat.com> - 0.42-1
- Update to 0.42
- Resolves: rhbz#2168223
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2168223 - [abrt] libreport-plugin-bugzilla: get_short_backtrace():
problem_formatter.py:97:get_short_backtrace:LookupError: Crash thread not found
https://bugzilla.redhat.com/show_bug.cgi?id=2168223
--------------------------------------------------------------------------------
================================================================================
selint-1.4.0-1.fc38 (FEDORA-2023-b4c3a8980c)
Static code analysis tool for SELinux policy source files
--------------------------------------------------------------------------------
Update Information:
New package in Fedora
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 8 2023 Juraj Marcin <juraj(a)jurajmarcin.com> - 1.4.0-1
- v 1.4.0
* Mon Dec 19 2022 Vit Mojzis <vmojzis(a)redhat.com> - 1.3.0-1
- v 1.3.0
- Silence warning in bison generated code
- Drop dead stores
- Declare file local variable static
- Drop duplicate semicolons
- Add missing fall through comment
- Drop duplicate include
- Update URLs after repository move
- Add check example for W-012
- Add new check to warn about incorrect usage of audit_access permission
- Warn on duplicate policy configuration files
- Reduce recursion in free_policy_node
- Support disable commands for tunable conditions
- Support ifn?def in .if files
* Fri Sep 2 2022 Vit Mojzis <vmojzis(a)redhat.com> - 1.2.1-3
- v 1.2.1
--------------------------------------------------------------------------------
================================================================================
tigervnc-1.13.1-1.fc38 (FEDORA-2023-e41b966de1)
A TigerVNC remote display system
--------------------------------------------------------------------------------
Update Information:
Tigervnc 1.13.1 bugfix update. ---- Fix vncsession failing to create .vnc
directory.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Jan Grulich <jgrulich(a)redhat.com> - 1.13.1-1
- 1.13.1
* Tue Feb 21 2023 Jan Grulich <jgrulich(a)redhat.com> - 1.13.0-3
- vncsession: allow to create .vnc directory
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2143704 - selinux policy will not allow tigervnc-server to start
https://bugzilla.redhat.com/show_bug.cgi?id=2143704
--------------------------------------------------------------------------------
================================================================================
tkrzw-1.0.26-1.fc38 (FEDORA-2023-1de5ab5f44)
A straightforward implementation of DBM
--------------------------------------------------------------------------------
Update Information:
Version bump ---- Version bump
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 TI_Eugene <ti.eugene(a)gmail.com> - 1.0.26-1
- Version bump
* Tue Feb 28 2023 TI_Eugene <ti.eugene(a)gmail.com> - 1.0.25-1
- Version bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2172430 - tkrzw-1.0.25 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2172430
[ 2 ] Bug #2174375 - tkrzw-1.0.26 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2174375
--------------------------------------------------------------------------------
================================================================================
xfce4-notifyd-0.8.2-1.fc38 (FEDORA-2023-f07f5eede6)
Simple notification daemon for Xfce
--------------------------------------------------------------------------------
Update Information:
xfce 4.18 updates - thunar, xfce4-notifyd, parole
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 1 2023 Mukundan Ragavan <nonamedotc(a)gmail.com> - 0.8.2-1
- Update to v0.8.2
* Wed Feb 22 2023 Mukundan Ragavan <nonamedotc(a)gmail.com> - 0.8.1-1
- Update to v0.8.1
--------------------------------------------------------------------------------