The following Fedora 38 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-d6157bb1e2 rubygem-actioncable-7.0.4.3-1.fc38 rubygem-actionmailbox-7.0.4.3-1.fc38 rubygem-actionmailer-7.0.4.3-1.fc38 rubygem-actionpack-7.0.4.3-1.fc38 rubygem-actiontext-7.0.4.3-1.fc38 rubygem-actionview-7.0.4.3-1.fc38 rubygem-activejob-7.0.4.3-1.fc38 rubygem-activemodel-7.0.4.3-1.fc38 rubygem-activerecord-7.0.4.3-1.fc38 rubygem-activestorage-7.0.4.3-1.fc38 rubygem-activesupport-7.0.4.3-1.fc38 rubygem-rails-7.0.4.3-1.fc38 rubygem-railties-7.0.4.3-1.fc38 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-354467acba python-flask-restx-1.1.0-1.fc38 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-15c6e4be28 mingw-binutils-2.39-6.fc38 6 https://bodhi.fedoraproject.org/updates/FEDORA-2023-ea6b94395f dino-0.4.2-1.fc38 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-afb29b2fce chromium-111.0.5563.110-1.fc38 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-3d0619d767 amanda-3.5.3-1.fc38 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f25098f499 netconsd-0.2-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-5b6bcf02cb openbgpd-7.9-1.fc38 3 https://bodhi.fedoraproject.org/updates/FEDORA-2023-ee0bc9afb6 jpegoptim-1.5.3-1.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f3ced9cffd ImageMagick-7.1.1.4-3.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-8ee7d4a8e3 golang-1.20.2-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f754e7abfd xorg-x11-server-Xwayland-22.1.9-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-b7835960ac xorg-x11-server-1.20.14-21.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-a9c17dff60 thunderbird-102.9.1-1.fc38

The following Fedora 38 Critical Path updates have yet to be approved: Age URL 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-beb634be28 cockpit-288.1-1.fc38 5 https://bodhi.fedoraproject.org/updates/FEDORA-2023-2a69ee8b15 lsvpd-1.7.14-6.fc38 4 https://bodhi.fedoraproject.org/updates/FEDORA-2023-e5dfbaefbc lightdm-1.32.0-4.fc38 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-624eb88729 selinux-policy-38.9-1.fc38 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-41fb9d768e perl-Archive-Tar-3.00-1.fc38 2 https://bodhi.fedoraproject.org/updates/FEDORA-2023-9683eca5aa gnome-software-44.0-3.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-c2367e0e81 libproxy-0.4.18-6.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-2442603171 libdnf-0.70.0-1.fc38 1 https://bodhi.fedoraproject.org/updates/FEDORA-2023-1a3b60f669 publicsuffix-list-20230318-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-466bb274db systemd-253.2-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-b7835960ac xorg-x11-server-1.20.14-21.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-03f2b0b438 librsvg2-2.56.0-1.fc38 rust-cssparser-0.29.6-1.fc38 rust-data-url-0.2.0-1.fc38 rust-html5ever-0.26.0-1.fc38 rust-markup5ever-0.11.0-1.fc38 rust-markup5ever_rcdom-0.2.0-1.fc38 rust-nalgebra-0.32.2-1.fc38 rust-nalgebra-macros-0.2.0-1.fc38 rust-phf_codegen-0.10.0-1.fc38 rust-phf_codegen0.8-0.8.0-1.fc38 rust-pulldown-cmark-0.9.2-4.fc38 rust-pulldown-cmark0.8-0.8.0-3.fc38 rust-rctree-0.5.0-1.fc38 rust-selectors-0.24.0-1.fc38 rust-servo_arc-0.2.0-1.fc38 rust-simba-0.8.0-1.fc38 rust-statrs-0.15.0-6.fc38 rust-xml5ever-0.17.0-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-f754e7abfd xorg-x11-server-Xwayland-22.1.9-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-ac5a4137c2 tzdata-2023c-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-8fd3c30cc1 geocode-glib-3.26.4-3.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-8a7ee41959 harfbuzz-7.1.0-1.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-c32458a176 autofs-5.1.8-20.fc38 0 https://bodhi.fedoraproject.org/updates/FEDORA-2023-c6ccf666c4 garcon-4.18.1-1.fc38 libxfce4ui-4.18.3-1.fc38 xfce4-clipman-plugin-1.6.3-1.fc38 xfce4-notes-plugin-1.10.0-1.fc38 xfce4-panel-4.18.3-1.fc38 xfce4-pulseaudio-plugin-0.4.6-1.fc38 xfce4-screensaver-4.18.1-1.fc38 xfce4-session-4.18.2-1.fc38

The following builds have been pushed to Fedora 38 updates-testing

abrt-2.16.1-1.fc38 annobin-12.01-1.fc38 bacula-13.0.2-1.fc38 btrbk-0.32.6-1.fc38 certbot-2.2.0-2.fc38 cmake-3.26.2-1.fc38 delve-1.20.1-1.fc38 eccodes-2.29.0-1.fc38 gnucash-4.14-1.fc38 gnucash-docs-4.14-1.fc38 golang-github-projectdiscovery-utils-0.0.10-1.fc38 heaptrack-1.4.0-1.fc38 hotspot-1.4.1-1.fc38 irssi-1.4.4-1.fc38 kddockwidgets-1.6.0-2.fc38 kommit-1.0.1-1.fc38 libpqxx-7.7.5-1.fc38 libupnp-1.14.16-1.fc38 mbedtls-2.28.3-1.fc38 ncl-6.6.2-34.fc38 nodejs16-16.20.0-1.fc38 nodejs18-18.15.0-5.fc38 nodejs20-19.8.1-6.fc38 passt-0^20230329.gb10b983-1.fc38 pungi-4.3.8-1.fc38 pyproj-3.5.0-1.fc38 python-breathe-4.35.0-1.fc38 python-crochet-1.12.0-1.fc38 python-faker-18.3.1-1.fc38 python-ijson-3.2.0-1.fc38 redis-7.0.10-2.fc38 retsnoop-0.9.5-2.fc38 rust-addr2line-0.19.0-1.fc38 rust-anyhow-1.0.70-1.fc38 rust-backtrace-0.3.67-2.fc38 rust-cmake-0.1.50-1.fc38 rust-cpc-1.9.1-1.fc38 rust-cpp_demangle-0.4.0-1.fc38 rust-cxx-1.0.94-1.fc38 rust-cxx-build-1.0.94-1.fc38 rust-cxx-gen-0.7.94-1.fc38 rust-cxxbridge-flags-1.0.94-1.fc38 rust-cxxbridge-macro-1.0.94-1.fc38 rust-flate2-1.0.25-1.fc38 rust-foreign-types-macros-0.2.3-1.fc38 rust-generic-array-0.14.7-1.fc38 rust-gimli-0.27.2-1.fc38 rust-gtk3-macros-0.17.1-1.fc38 rust-gtk3-macros0.15-0.15.6-1.fc38 rust-gtk3-macros0.16-0.16.3-1.fc38 rust-gtk4-macros-0.6.5-1.fc38 rust-gtk4-macros0.4-0.4.10-1.fc38 rust-gtk4-macros0.5-0.5.6-1.fc38 rust-iana-time-zone-0.1.55-1.fc38 rust-miniz_oxide-0.6.2-1.fc38 rust-miniz_oxide0.5-0.5.4-1.fc38 rust-object-0.30.3-1.fc38 rust-paris-1.5.15-1.fc38 rust-png-0.17.7-1.fc38 rust-proc-macro2-1.0.54-1.fc38 rust-remoteprocess-0.4.10-3.fc38 rust-reqwest-0.11.16-1.fc38 rust-serde-1.0.159-1.fc38 rust-serde_derive-1.0.159-1.fc38 rust-serde_json-1.0.95-1.fc38 rust-serde_test-1.0.159-1.fc38 rust-spin-0.9.7-1.fc38 rust-syn-2.0.11-1.fc38 rust-zeroize-1.6.0-1.fc38 rust-zeroize_derive-1.4.1-1.fc38 synapse-0.2.99.4-12.fc38 system76-keyboard-configurator-1.3.1-3.fc38 tigervnc-1.13.1-3.fc38 vcpkg-2023.03.29-1.fc38 vym-2.9.0-1.fc38 weasyprint-58.1-1.fc38 webp-pixbuf-loader-0.2.4-1.fc38 wordpress-6.2-1.fc38

Details about builds:

================================================================================ abrt-2.16.1-1.fc38 (FEDORA-2023-eb09dd6406) Automatic bug detection and reporting tool -------------------------------------------------------------------------------- Update Information:

Fix integer overflow for MaxCrashReportsSize config option. Fixes: rhbz#2177153 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Michal Srb michal@redhat.com - 2.16.1-1 - Update to upstream release 2.16.1 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2177153 - MaxCrashReportsSize claims to be 5000 MB but is 1000 MB https://bugzilla.redhat.com/show_bug.cgi?id=2177153 --------------------------------------------------------------------------------

================================================================================ annobin-12.01-1.fc38 (FEDORA-2023-ebb20f2b6f) Annotate and examine compiled binary files -------------------------------------------------------------------------------- Update Information:

- gcc plugin: Keep ELF notes at protocol version 3. ---- - Protocol Version 4: String format notes. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Yara Ahmad yahmad@redhat.com - 12.01-1 - gcc plugin: Keep ELF notes at protocol version 3. * Wed Mar 29 2023 Yara Ahmad yahmad@redhat.com - 12.00-1 - Protocol Version 4: String format notes. --------------------------------------------------------------------------------

================================================================================ bacula-13.0.2-1.fc38 (FEDORA-2023-3d3f704a90) Cross platform network backup for Linux, Unix, Mac and Windows -------------------------------------------------------------------------------- Update Information:

Update to bugfix release 13.0.2. -------------------------------------------------------------------------------- ChangeLog:

* Wed Mar 29 2023 Simone Caronni negativo17@gmail.com - 13.0.2-1 - Update to 13.0.2. --------------------------------------------------------------------------------

================================================================================ btrbk-0.32.6-1.fc38 (FEDORA-2023-d2b352f3a2) Tool for creating snapshots and remote backups of btrfs sub-volumes -------------------------------------------------------------------------------- Update Information:

Version 0.32.6 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Juan Orti Alcaine jortialc@redhat.com - 0.32.6-1 - Version 0.32.6 (RHBZ#2181762) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2181762 - btrbk-0.32.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181762 --------------------------------------------------------------------------------

================================================================================ certbot-2.2.0-2.fc38 (FEDORA-2023-a73a81126d) A free, automated certificate authority client -------------------------------------------------------------------------------- Update Information:

add reminder to start certbot-renew.timer in %post -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Jonathan Wright jonathan@almalinux.org - 2.2.0-2 - add reminder about certbot-renew.timer during install --------------------------------------------------------------------------------

================================================================================ cmake-3.26.2-1.fc38 (FEDORA-2023-2e78d12831) Cross-platform make system -------------------------------------------------------------------------------- Update Information:

Update to cmake-3.26.2. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Bj��rn Esser besser82@fedoraproject.org - 3.26.2-1 - cmake-3.26.2 Fixes rhbz#2182863 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2182863 - cmake-3.26.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2182863 --------------------------------------------------------------------------------

================================================================================ delve-1.20.1-1.fc38 (FEDORA-2023-18ae694f07) A debugger for the Go programming language -------------------------------------------------------------------------------- Update Information:

Add support for Go 1.20. See [CHANGELOG](https://github.com/go- delve/delve/blob/master/CHANGELOG.md#1201-2022-12-12) for complete list of changes. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Alejandro S��ez asm@redhat.com - 1.20.1-1 - Update to 1.20.1 * Tue Mar 28 2023 Tomas Hrcka thrcka@redhat.com - 1.2.0-11 - Unretirement request: https://pagure.io/releng/issue/11359 --------------------------------------------------------------------------------

================================================================================ eccodes-2.29.0-1.fc38 (FEDORA-2023-027ae0f24a) WMO data format decoding and encoding -------------------------------------------------------------------------------- Update Information:

Upgrade to upstream version 2.29.0 -------------------------------------------------------------------------------- ChangeLog:

* Sun Mar 26 2023 Jos de Kloe josdekloe@gmail.com - 2.29.0-1 - Upgrade to upstream version 2.29.0 Note that the source code now uses g++ in stead of gcc for compilation. * Sun Feb 12 2023 Jos de Kloe josdekloe@gmail.com - 2.28.0-1 - Upgrade to upstream version 2.28.0 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2164808 - eccodes-2.29.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2164808 --------------------------------------------------------------------------------

================================================================================ gnucash-4.14-1.fc38 (FEDORA-2023-4f3d88e144) Finance management application -------------------------------------------------------------------------------- Update Information:

4.14 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Gwyn Ciesla gwync@protonmail.com - 4.14-1 - 4.14 * Wed Mar 1 2023 Gwyn Ciesla gwync@protonmail.com - 4.13-7 - migrated to SPDX license --------------------------------------------------------------------------------

================================================================================ gnucash-docs-4.14-1.fc38 (FEDORA-2023-4f3d88e144) Help files and documentation for the GnuCash personal finance manager -------------------------------------------------------------------------------- Update Information:

4.14 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Gwyn Ciesla gwync@protonmail.com - 4.14-1 - 4.14 * Wed Mar 1 2023 Gwyn Ciesla gwync@protonmail.com - 4.13-3 - migrated to SPDX license --------------------------------------------------------------------------------

================================================================================ golang-github-projectdiscovery-utils-0.0.10-1.fc38 (FEDORA-2023-263d67a10a) Helper Libraries -------------------------------------------------------------------------------- Update Information:

Automatic update for golang-github-projectdiscovery-utils-0.0.10-1.fc38. ##### **Changelog** ``` * Tue Feb 21 2023 Mikel Olasagasti Uranga mikel@olasagasti.info - 0.0.10-1 - Update to 0.0.10 - Closes rhbz#2171302 ``` -------------------------------------------------------------------------------- ChangeLog:

* Tue Feb 21 2023 Mikel Olasagasti Uranga mikel@olasagasti.info - 0.0.10-1 - Update to 0.0.10 - Closes rhbz#2171302 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2171302 - golang-github-projectdiscovery-utils-0.0.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=2171302 --------------------------------------------------------------------------------

================================================================================ heaptrack-1.4.0-1.fc38 (FEDORA-2023-c3d1890550) A heap memory profiler for Linux -------------------------------------------------------------------------------- Update Information:

Heaptrack 1.4.0 release. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Jan Grulich jgrulich@redhat.com - 1.4.0-1 - 1.4.0 * Mon Mar 6 2023 Jan Grulich jgrulich@redhat.com - 1.2.0-13 - Fix build failure against GCC13 * Mon Feb 20 2023 Jonathan Wakely jwakely@redhat.com - 1.2.0-12 - Rebuilt for Boost 1.81 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2033971 - heaptrack-1.4.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2033971 [ 2 ] Bug #2045701 - heaptrack: FTBFS in Fedora rawhide/f36 https://bugzilla.redhat.com/show_bug.cgi?id=2045701 [ 3 ] Bug #2154697 - [abrt] heaptrack: (anonymous namespace)::demangle(): heaptrack_interpret killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=2154697 [ 4 ] Bug #2155001 - [abrt] heaptrack: QArrayData::data()(): heaptrack_gui killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=2155001 --------------------------------------------------------------------------------

================================================================================ hotspot-1.4.1-1.fc38 (FEDORA-2023-0fd44ed9de) The Linux perf GUI for performance analysis -------------------------------------------------------------------------------- Update Information:

Initial release for Fedora. Hotspot 1.4.0 release. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Marc Deop i Argem�� marcdeop@fedoraproject.org - 1.4.1-1 - Update to version 1.4.1 - Remove unneded patch --------------------------------------------------------------------------------

================================================================================ irssi-1.4.4-1.fc38 (FEDORA-2023-3a99fa4213) Modular text mode IRC client with Perl scripting -------------------------------------------------------------------------------- Update Information:

irssi 1.4.4 release. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Kalev Lember klember@redhat.com - 1.4.4-1 - Update to 1.4.4 * Thu Mar 2 2023 Jaroslav ��karvada jskarvad@redhat.com - 1.4.3-3 - Added libotr conditionals for RHEL -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2183324 - irssi-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2183324 --------------------------------------------------------------------------------

================================================================================ kddockwidgets-1.6.0-2.fc38 (FEDORA-2023-0fd44ed9de) Qt dock widget library -------------------------------------------------------------------------------- Update Information:

Initial release for Fedora. Hotspot 1.4.0 release. -------------------------------------------------------------------------------- ChangeLog:

* Tue Mar 28 2023 Vasiliy Glazov vascom2@gmail.com - 1.6.0-2 - Pin Qt5 version * Fri Mar 24 2023 Vasiliy Glazov vascom2@gmail.com - 1.6.0-1 - Initial packaging. --------------------------------------------------------------------------------

================================================================================ kommit-1.0.1-1.fc38 (FEDORA-2023-d8b5f2987e) Git gui client for KDE -------------------------------------------------------------------------------- Update Information:

Gitklient renaming. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Vasiliy Glazov vascom2@gmail.com 1.0.1-1 - renaming of gitklient --------------------------------------------------------------------------------

================================================================================ libpqxx-7.7.5-1.fc38 (FEDORA-2023-74a64f0296) C++ client API for PostgreSQL -------------------------------------------------------------------------------- Update Information:

Update to v7.7.5. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Bj��rn Esser besser82@fedoraproject.org - 1:7.7.5-1 - Update to v7.7.5 Fixes rhbz#2068018 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2068018 - libpqxx-7.7.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2068018 --------------------------------------------------------------------------------

================================================================================ libupnp-1.14.16-1.fc38 (FEDORA-2023-9a59893524) Universal Plug and Play (UPnP) SDK -------------------------------------------------------------------------------- Update Information:

1.14.16 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Gwyn Ciesla gwync@protonmail.com - 1.14.16-1 - 1.14.16 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2183182 - libupnp-1.14.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=2183182 --------------------------------------------------------------------------------

================================================================================ mbedtls-2.28.3-1.fc38 (FEDORA-2023-68e8b93578) Light-weight cryptographic and SSL/TLS library -------------------------------------------------------------------------------- Update Information:

- Update to 2.28.3 Release notes: https://github.com/Mbed- TLS/mbedtls/releases/tag/v2.28.3 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Morten Stevens mstevens@fedoraproject.org - 2.28.3-1 - Update to 2.28.3 --------------------------------------------------------------------------------

================================================================================ ncl-6.6.2-34.fc38 (FEDORA-2023-85e6873593) NCAR Command Language and NCAR Graphics -------------------------------------------------------------------------------- Update Information:

Drop i686 builds -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Orion Poplawski orion@nwra.com - 6.6.2-34 - Drop i686 builds --------------------------------------------------------------------------------

================================================================================ nodejs16-16.20.0-1.fc38 (FEDORA-2023-cdd4df1681) JavaScript runtime -------------------------------------------------------------------------------- Update Information:

Assorted fixes for v8-devel ---- Update to 19.8.1 Fix confilct with nodejs18 ---- ## 2023-02-16, Version 16.19.1 'Gallium' (LTS), @richardlau This is a security release. ### Notable Changes The following CVEs are fixed in this release: * **[CVE-2023-23918](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23918)**: Node.js Permissions policies can be bypassed via process.mainModule (High) * **[CVE-2023-23919](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23919)**: Node.js OpenSSL error handling issues in nodejs crypto library (Medium) * **[CVE-2023-23920](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23920)**: Node.js insecure loading of ICU data through ICU_DATA environment variable (Low) Fixed by an update to undici: * **[CVE-2023-23936](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23936)**: Fetch API in Node.js did not protect against CRLF injection in host headers (Medium) * See https://github.com/nodejs/undici/security/advisories/GHSA-5r9g-qh6m-jxff for more information. * **[CVE-2023-24807](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-24807)**: Regular Expression Denial of Service in Headers in Node.js fetch API (Low) * See https://github.com/nodejs/undici/security/advisories/GHSA-r6ch-mqf9-qc9w for more information. More detailed information on each of the vulnerabilities can be found in [February 2023 Security Releases](https://nodejs.org/en/blog/vulnerability/february-2023-security- releases/) blog post. This security release includes OpenSSL security updates as outlined in the recent [OpenSSL security advisory](https://www.openssl.org/news/secadv/20230207.txt). ### Commits * [[`7fef050447`](https://github.com/nodejs/node/commit/7fef050447)] - **build**: build ICU with ICU_NO_USER_DATA_OVERRIDE (RafaelGSS) [nodejs-private/node- private#374](https://github.com/nodejs-private/node-private/pull/374) * [[`b558e9f476`](https://github.com/nodejs/node/commit/b558e9f476)] - **crypto**: clear OpenSSL error on invalid ca cert (RafaelGSS) [nodejs- private/node-private#375](https://github.com/nodejs-private/node- private/pull/375) * [[`160adb7ffc`](https://github.com/nodejs/node/commit/160adb7ffc)] - **crypto**: clear OpenSSL error queue after calling X509_check_private_key() (Filip Skokan) [#45495](https://github.com/nodejs/node/pull/45495) * [[`d0ece30948`](https://github.com/nodejs/node/commit/d0ece30948)] - **crypto**: clear OpenSSL error queue after calling X509_verify() (Takuro Sato) [#45377](https://github.com/nodejs/node/pull/45377) * [[`2d9ae4f184`](https://github.com/nodejs/node/commit/2d9ae4f184)] - **deps**: update undici to v5.19.1 (Matteo Collina) [nodejs-private/node- private#388](https://github.com/nodejs-private/node-private/pull/388) * [[`d80e8312fd`](https://github.com/nodejs/node/commit/d80e8312fd)] - **deps**: cherry-pick Windows ARM64 fix for openssl (Richard Lau) [#46568](https://github.com/nodejs/node/pull/46568) * [[`de5c8d2c2f`](https://github.com/nodejs/node/commit/de5c8d2c2f)] - **deps**: update archs files for quictls/openssl-1.1.1t+quic (RafaelGSS) [#46568](https://github.com/nodejs/node/pull/46568) * [[`1a8ccfe908`](https://github.com/nodejs/node/commit/1a8ccfe908)] - **deps**: upgrade openssl sources to OpenSSL_1_1_1t+quic (RafaelGSS) [#46568](https://github.com/nodejs/node/pull/46568) * [[`693789780b`](https://github.com/nodejs/node/commit/693789780b)] - **doc**: clarify release notes for Node.js 16.19.0 (Richard Lau) [#45846](https://github.com/nodejs/node/pull/45846) * [[`f95ef064f4`](https://github.com/nodejs/node/commit/f95ef064f4)] - **lib**: makeRequireFunction patch when experimental policy (RafaelGSS) [nodejs- private/node-private#358](https://github.com/nodejs-private/node- private/pull/358) * [[`b02d895137`](https://github.com/nodejs/node/commit/b02d895137)] - **policy**: makeRequireFunction on mainModule.require (RafaelGSS) [nodejs- private/node-private#358](https://github.com/nodejs-private/node- private/pull/358) * [[`d7f83c420c`](https://github.com/nodejs/node/commit/d7f83c420c)] - **test**: avoid left behind child processes (Richard Lau) [#46276](https://github.com/nodejs/node/pull/46276) -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.20.0-1 - Update to 16.20.0 * Mon Mar 27 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.1-7 - Fix build issue on non-default releases * Mon Mar 27 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.1-6 - Fix libv8 packaging issue * Thu Mar 16 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.1-5 - Namespace the v8 compatibility libraries * Wed Mar 1 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.1-4 - sources: re-sync to nodejs20 * Thu Feb 23 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.1-3 - Fix an incompatibility with GCC 13+ - The Makefile patch is also no longer needed since we switched to ninja. * Tue Feb 21 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.1-2 - Update to latest nodejs-sources.sh * Fri Feb 17 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.1-1 - Update to 16.19.1 - https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V16.md# 16.19.1 - packaging: Drop vestigial package.cfg file. - packaging: Make nodejs-sources.sh clean up after itself * Mon Jan 23 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.0-5 - Upload sources correctly * Mon Jan 23 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.0-4 - Rework nodejs-sources.sh * Mon Jan 23 2023 Stephen Gallagher sgallagh@redhat.com - 1:16.19.0-3 - Fix v8 symlinks * Thu Jan 19 2023 Fedora Release Engineering releng@fedoraproject.org - 1:16.19.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild --------------------------------------------------------------------------------

================================================================================ nodejs18-18.15.0-5.fc38 (FEDORA-2023-cdd4df1681) JavaScript runtime -------------------------------------------------------------------------------- Update Information:

Assorted fixes for v8-devel ---- Update to 19.8.1 Fix confilct with nodejs18 ---- ## 2023-02-16, Version 16.19.1 'Gallium' (LTS), @richardlau This is a security release. ### Notable Changes The following CVEs are fixed in this release: * **[CVE-2023-23918](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23918)**: Node.js Permissions policies can be bypassed via process.mainModule (High) * **[CVE-2023-23919](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23919)**: Node.js OpenSSL error handling issues in nodejs crypto library (Medium) * **[CVE-2023-23920](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23920)**: Node.js insecure loading of ICU data through ICU_DATA environment variable (Low) Fixed by an update to undici: * **[CVE-2023-23936](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23936)**: Fetch API in Node.js did not protect against CRLF injection in host headers (Medium) * See https://github.com/nodejs/undici/security/advisories/GHSA-5r9g-qh6m-jxff for more information. * **[CVE-2023-24807](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-24807)**: Regular Expression Denial of Service in Headers in Node.js fetch API (Low) * See https://github.com/nodejs/undici/security/advisories/GHSA-r6ch-mqf9-qc9w for more information. More detailed information on each of the vulnerabilities can be found in [February 2023 Security Releases](https://nodejs.org/en/blog/vulnerability/february-2023-security- releases/) blog post. This security release includes OpenSSL security updates as outlined in the recent [OpenSSL security advisory](https://www.openssl.org/news/secadv/20230207.txt). ### Commits * [[`7fef050447`](https://github.com/nodejs/node/commit/7fef050447)] - **build**: build ICU with ICU_NO_USER_DATA_OVERRIDE (RafaelGSS) [nodejs-private/node- private#374](https://github.com/nodejs-private/node-private/pull/374) * [[`b558e9f476`](https://github.com/nodejs/node/commit/b558e9f476)] - **crypto**: clear OpenSSL error on invalid ca cert (RafaelGSS) [nodejs- private/node-private#375](https://github.com/nodejs-private/node- private/pull/375) * [[`160adb7ffc`](https://github.com/nodejs/node/commit/160adb7ffc)] - **crypto**: clear OpenSSL error queue after calling X509_check_private_key() (Filip Skokan) [#45495](https://github.com/nodejs/node/pull/45495) * [[`d0ece30948`](https://github.com/nodejs/node/commit/d0ece30948)] - **crypto**: clear OpenSSL error queue after calling X509_verify() (Takuro Sato) [#45377](https://github.com/nodejs/node/pull/45377) * [[`2d9ae4f184`](https://github.com/nodejs/node/commit/2d9ae4f184)] - **deps**: update undici to v5.19.1 (Matteo Collina) [nodejs-private/node- private#388](https://github.com/nodejs-private/node-private/pull/388) * [[`d80e8312fd`](https://github.com/nodejs/node/commit/d80e8312fd)] - **deps**: cherry-pick Windows ARM64 fix for openssl (Richard Lau) [#46568](https://github.com/nodejs/node/pull/46568) * [[`de5c8d2c2f`](https://github.com/nodejs/node/commit/de5c8d2c2f)] - **deps**: update archs files for quictls/openssl-1.1.1t+quic (RafaelGSS) [#46568](https://github.com/nodejs/node/pull/46568) * [[`1a8ccfe908`](https://github.com/nodejs/node/commit/1a8ccfe908)] - **deps**: upgrade openssl sources to OpenSSL_1_1_1t+quic (RafaelGSS) [#46568](https://github.com/nodejs/node/pull/46568) * [[`693789780b`](https://github.com/nodejs/node/commit/693789780b)] - **doc**: clarify release notes for Node.js 16.19.0 (Richard Lau) [#45846](https://github.com/nodejs/node/pull/45846) * [[`f95ef064f4`](https://github.com/nodejs/node/commit/f95ef064f4)] - **lib**: makeRequireFunction patch when experimental policy (RafaelGSS) [nodejs- private/node-private#358](https://github.com/nodejs-private/node- private/pull/358) * [[`b02d895137`](https://github.com/nodejs/node/commit/b02d895137)] - **policy**: makeRequireFunction on mainModule.require (RafaelGSS) [nodejs- private/node-private#358](https://github.com/nodejs-private/node- private/pull/358) * [[`d7f83c420c`](https://github.com/nodejs/node/commit/d7f83c420c)] - **test**: avoid left behind child processes (Richard Lau) [#46276](https://github.com/nodejs/node/pull/46276) -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Stephen Gallagher sgallagh@redhat.com - 1:18.15.0-5 - Pull in changes from nodejs20 * Mon Mar 27 2023 Stephen Gallagher sgallagh@redhat.com - 1:18.15.0-4 - Fix build issue on non-default releases * Mon Mar 27 2023 Stephen Gallagher sgallagh@redhat.com - 1:18.15.0-3 - Fix libv8 packaging issue * Thu Mar 16 2023 Stephen Gallagher sgallagh@redhat.com - 1:18.15.0-2 - Namespace the v8 compat libraries --------------------------------------------------------------------------------

================================================================================ nodejs20-19.8.1-6.fc38 (FEDORA-2023-cdd4df1681) JavaScript runtime -------------------------------------------------------------------------------- Update Information:

Assorted fixes for v8-devel ---- Update to 19.8.1 Fix confilct with nodejs18 ---- ## 2023-02-16, Version 16.19.1 'Gallium' (LTS), @richardlau This is a security release. ### Notable Changes The following CVEs are fixed in this release: * **[CVE-2023-23918](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23918)**: Node.js Permissions policies can be bypassed via process.mainModule (High) * **[CVE-2023-23919](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23919)**: Node.js OpenSSL error handling issues in nodejs crypto library (Medium) * **[CVE-2023-23920](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23920)**: Node.js insecure loading of ICU data through ICU_DATA environment variable (Low) Fixed by an update to undici: * **[CVE-2023-23936](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-23936)**: Fetch API in Node.js did not protect against CRLF injection in host headers (Medium) * See https://github.com/nodejs/undici/security/advisories/GHSA-5r9g-qh6m-jxff for more information. * **[CVE-2023-24807](https://cve.mitre.org/cgi- bin/cvename.cgi?name=CVE-2023-24807)**: Regular Expression Denial of Service in Headers in Node.js fetch API (Low) * See https://github.com/nodejs/undici/security/advisories/GHSA-r6ch-mqf9-qc9w for more information. More detailed information on each of the vulnerabilities can be found in [February 2023 Security Releases](https://nodejs.org/en/blog/vulnerability/february-2023-security- releases/) blog post. This security release includes OpenSSL security updates as outlined in the recent [OpenSSL security advisory](https://www.openssl.org/news/secadv/20230207.txt). ### Commits * [[`7fef050447`](https://github.com/nodejs/node/commit/7fef050447)] - **build**: build ICU with ICU_NO_USER_DATA_OVERRIDE (RafaelGSS) [nodejs-private/node- private#374](https://github.com/nodejs-private/node-private/pull/374) * [[`b558e9f476`](https://github.com/nodejs/node/commit/b558e9f476)] - **crypto**: clear OpenSSL error on invalid ca cert (RafaelGSS) [nodejs- private/node-private#375](https://github.com/nodejs-private/node- private/pull/375) * [[`160adb7ffc`](https://github.com/nodejs/node/commit/160adb7ffc)] - **crypto**: clear OpenSSL error queue after calling X509_check_private_key() (Filip Skokan) [#45495](https://github.com/nodejs/node/pull/45495) * [[`d0ece30948`](https://github.com/nodejs/node/commit/d0ece30948)] - **crypto**: clear OpenSSL error queue after calling X509_verify() (Takuro Sato) [#45377](https://github.com/nodejs/node/pull/45377) * [[`2d9ae4f184`](https://github.com/nodejs/node/commit/2d9ae4f184)] - **deps**: update undici to v5.19.1 (Matteo Collina) [nodejs-private/node- private#388](https://github.com/nodejs-private/node-private/pull/388) * [[`d80e8312fd`](https://github.com/nodejs/node/commit/d80e8312fd)] - **deps**: cherry-pick Windows ARM64 fix for openssl (Richard Lau) [#46568](https://github.com/nodejs/node/pull/46568) * [[`de5c8d2c2f`](https://github.com/nodejs/node/commit/de5c8d2c2f)] - **deps**: update archs files for quictls/openssl-1.1.1t+quic (RafaelGSS) [#46568](https://github.com/nodejs/node/pull/46568) * [[`1a8ccfe908`](https://github.com/nodejs/node/commit/1a8ccfe908)] - **deps**: upgrade openssl sources to OpenSSL_1_1_1t+quic (RafaelGSS) [#46568](https://github.com/nodejs/node/pull/46568) * [[`693789780b`](https://github.com/nodejs/node/commit/693789780b)] - **doc**: clarify release notes for Node.js 16.19.0 (Richard Lau) [#45846](https://github.com/nodejs/node/pull/45846) * [[`f95ef064f4`](https://github.com/nodejs/node/commit/f95ef064f4)] - **lib**: makeRequireFunction patch when experimental policy (RafaelGSS) [nodejs- private/node-private#358](https://github.com/nodejs-private/node- private/pull/358) * [[`b02d895137`](https://github.com/nodejs/node/commit/b02d895137)] - **policy**: makeRequireFunction on mainModule.require (RafaelGSS) [nodejs- private/node-private#358](https://github.com/nodejs-private/node- private/pull/358) * [[`d7f83c420c`](https://github.com/nodejs/node/commit/d7f83c420c)] - **test**: avoid left behind child processes (Richard Lau) [#46276](https://github.com/nodejs/node/pull/46276) -------------------------------------------------------------------------------- ChangeLog:

* Wed Mar 29 2023 Stephen Gallagher sgallagh@redhat.com - 1:19.8.1-6 - Add pkg-config files * Wed Mar 29 2023 Stephen Gallagher sgallagh@redhat.com - 1:19.8.1-5 - More v8-devel fixes * Mon Mar 27 2023 Stephen Gallagher sgallagh@redhat.com - 1:19.8.1-4 - Drop extraneous endif * Mon Mar 27 2023 Stephen Gallagher sgallagh@redhat.com - Fix build issue on non-default releases * Mon Mar 27 2023 Stephen Gallagher sgallagh@redhat.com - 1:19.8.1-2 - Fix libv8 packaging issue * Thu Mar 16 2023 Stephen Gallagher sgallagh@redhat.com - 1:19.8.1-1 - Update to 19.8.1 - Namespace the v8 compatibility libraries * Wed Mar 15 2023 Stephen Gallagher sgallagh@redhat.com - 1:19.8.0-1 - Update to 19.8.0 - https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V19.md# 19.8.0 --------------------------------------------------------------------------------

================================================================================ passt-0^20230329.gb10b983-1.fc38 (FEDORA-2023-f8346eb237) User-mode networking daemons for virtual machines and namespaces -------------------------------------------------------------------------------- Update Information:

User-visible changes: fixed path conflict with selinux-policy-devel, and (harmless) syntax errors in pasta.if SELinux interface file (unused, now gone). It's now possible to bind ports specifying an interface, without a specific address. -------------------------------------------------------------------------------- ChangeLog:

* Wed Mar 29 2023 Stefano Brivio sbrivio@redhat.com - 0^20230329.gb10b983-1 - Adjust path for SELinux policy and interface file to latest guidelines - Don't install useless SELinux interface file for pasta - Upstream changes: https://passt.top/passt/log/?qt=range&q=2023_03_21.1ee2f7c..2023_03_29.b... -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2182145 - /usr/share/selinux/devel/include/contrib/pasta.if: Syntax error https://bugzilla.redhat.com/show_bug.cgi?id=2182145 [ 2 ] Bug #2182476 - duplicate file https://bugzilla.redhat.com/show_bug.cgi?id=2182476 --------------------------------------------------------------------------------

================================================================================ pungi-4.3.8-1.fc38 (FEDORA-2023-69bd945b58) Distribution compose tool -------------------------------------------------------------------------------- Update Information:

pungi 4.3.8 release -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Haibo Lin hlin@redhat.com - 4.3.8-1 - createiso: Update possibly changed file on DVD (lsedlar) - pkgset: Stop reuse if configuration changed (lsedlar) - Allow disabling inheriting ExcludeArch to noarch packages (lsedlar) - pkgset: Support extra builds with no tags (lsedlar) - buildinstall: Avoid pointlessly tweaking the boot images (lsedlar) - Prevent to reuse if unsigned packages are allowed (hlin) - Pass parent id/respin id to CTS (lsedlar) - Exclude existing files in boot.iso (hlin) - image-build/osbuild: Pull ISOs into the compose (lsedlar) - Retry 401 error from CTS (lsedlar) - gather: Better detection of debuginfo in lookaside (lsedlar) - Log versions of all installed packages (hlin) - Use authentication for all CTS calls (lsedlar) - Fix black complaints (lsedlar) - Add vhd.gz extension to compressed VHD images (lsedlar) - Add vhd-compressed image type (lsedlar) - Update to work with latest mock (lsedlar) - Default bztar format for sdist command (onosek) --------------------------------------------------------------------------------

================================================================================ pyproj-3.5.0-1.fc38 (FEDORA-2023-b13ef4cf9a) Cython wrapper to provide python interfaces to Proj -------------------------------------------------------------------------------- Update Information:

Update to 3.5.0 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Jos de Kloe josdekloe@gmail.com 3.5.0-0 - Update to 3.5.0 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2181703 - pyproj-3.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181703 --------------------------------------------------------------------------------

================================================================================ python-breathe-4.35.0-1.fc38 (FEDORA-2023-bd3765b4c4) Adds support for Doxygen xml output to reStructuredText and Sphinx -------------------------------------------------------------------------------- Update Information:

New upstream release 4.35.0 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Karolina Surma ksurma@redhat.com - 4.35.0-1 - Update to 4.35.0 (resolves rhbz#2179094) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2179094 - python-breathe FTBFS with Sphinx 6+ in Rawhide https://bugzilla.redhat.com/show_bug.cgi?id=2179094 --------------------------------------------------------------------------------

================================================================================ python-crochet-1.12.0-1.fc38 (FEDORA-2023-c495ed7ef0) A library that makes it easier to use Twisted from blocking code -------------------------------------------------------------------------------- Update Information:

Version 1.12.0 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Aurelien Bompard abompard@fedoraproject.org - 1.12.0-1 - Version 1.12.0 * Fri Jan 20 2023 Fedora Release Engineering releng@fedoraproject.org - 1.10.0-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild --------------------------------------------------------------------------------

================================================================================ python-faker-18.3.1-1.fc38 (FEDORA-2023-06d5c051c2) Faker is a Python package that generates fake data for you -------------------------------------------------------------------------------- Update Information:

Version 18.3.1 -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Juan Orti Alcaine jortialc@redhat.com - 18.3.1-1 - Version 18.3.1 (RHBZ#2174256) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2174256 - python-faker-18.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2174256 --------------------------------------------------------------------------------

================================================================================ python-ijson-3.2.0-1.fc38 (FEDORA-2023-179656fece) Iterative JSON parser -------------------------------------------------------------------------------- Update Information:

Update to v3.2.0 -------------------------------------------------------------------------------- ChangeLog:

* Wed Mar 29 2023 Kai A. Hiller V02460@gmail.com - 3.2.0-1 - Update to v3.2.0 * Wed Mar 29 2023 Kai A. Hiller V02460@gmail.com - 3.1.4-9 - SPDX migration -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2158718 - python-ijson-3.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2158718 --------------------------------------------------------------------------------

================================================================================ redis-7.0.10-2.fc38 (FEDORA-2023-81823be4d0) A persistent key-value database -------------------------------------------------------------------------------- Update Information:

* fix modules directory ownership and permissions * drop redis-shutdown helper and rely on systemd -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Remi Collet remi@remirepo.net - 7.0.10-2 - fix modules directory ownership and permissions #2176173 - drop redis-shutdown helper and rely on systemd #2181181 --------------------------------------------------------------------------------

================================================================================ retsnoop-0.9.5-2.fc38 (FEDORA-2023-f572df4847) A tool for investigating kernel error call stacks -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.9.5-2 - Bump addr2line to 0.19, gimli to 0.27, and object to 0.30 --------------------------------------------------------------------------------

================================================================================ rust-addr2line-0.19.0-1.fc38 (FEDORA-2023-f572df4847) Cross-platform symbolication library written in Rust, using gimli -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.19.0-1 - Update to version 0.19.0; Fixes RHBZ#2147527 --------------------------------------------------------------------------------

================================================================================ rust-anyhow-1.0.70-1.fc38 (FEDORA-2023-f7665c02e3) Flexible concrete Error type built on std::error::Error -------------------------------------------------------------------------------- Update Information:

Update to version 1.0.70. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.70-1 - Update to version 1.0.70; Fixes RHBZ#2179486 --------------------------------------------------------------------------------

================================================================================ rust-backtrace-0.3.67-2.fc38 (FEDORA-2023-f572df4847) Library to acquire a stack trace (backtrace) at runtime in a Rust program -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.3.67-2 - Skip a test that fails on i686 for unknown reasons * Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.3.67-1 - Update to version 0.3.67; Fixes RHBZ#2153583 --------------------------------------------------------------------------------

================================================================================ rust-cmake-0.1.50-1.fc38 (FEDORA-2023-f116ee37ac) Build dependency for running cmake to build a native library -------------------------------------------------------------------------------- Update Information:

Update to version 0.1.50. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.1.50-1 - Update to version 0.1.50; Fixes RHBZ#2182241 --------------------------------------------------------------------------------

================================================================================ rust-cpc-1.9.1-1.fc38 (FEDORA-2023-df373e1876) Evaluates math expressions, with support for units and conversion between units -------------------------------------------------------------------------------- Update Information:

Update to version 1.9.1. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.9.1-1 - Update to version 1.9.1; Fixes RHBZ#2182933 --------------------------------------------------------------------------------

================================================================================ rust-cpp_demangle-0.4.0-1.fc38 (FEDORA-2023-f572df4847) Crate for demangling C++ symbols -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.4.0-1 - Update to version 0.4.0; Fixes RHBZ#2136539 --------------------------------------------------------------------------------

================================================================================ rust-cxx-1.0.94-1.fc38 (FEDORA-2023-1a5e796ee3) Safe interop between Rust and C++ -------------------------------------------------------------------------------- Update Information:

Update the cxx crates to version 1.0.94 / 0.7.94. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.94-1 - Update to version 1.0.94; Fixes RHBZ#2179490 --------------------------------------------------------------------------------

================================================================================ rust-cxx-build-1.0.94-1.fc38 (FEDORA-2023-1a5e796ee3) C++ code generator for integrating cxx crate into a Cargo build -------------------------------------------------------------------------------- Update Information:

Update the cxx crates to version 1.0.94 / 0.7.94. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.94-1 - Update to version 1.0.94; Fixes RHBZ#2179492 --------------------------------------------------------------------------------

================================================================================ rust-cxx-gen-0.7.94-1.fc38 (FEDORA-2023-1a5e796ee3) C++ code generator for integrating cxx crate into higher level tools -------------------------------------------------------------------------------- Update Information:

Update the cxx crates to version 1.0.94 / 0.7.94. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.7.94-1 - Update to version 0.7.94; Fixes RHBZ#2179493 --------------------------------------------------------------------------------

================================================================================ rust-cxxbridge-flags-1.0.94-1.fc38 (FEDORA-2023-1a5e796ee3) Compiler configuration of the cxx crate (implementation detail) -------------------------------------------------------------------------------- Update Information:

Update the cxx crates to version 1.0.94 / 0.7.94. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.94-1 - Update to version 1.0.94; Fixes RHBZ#2179489 --------------------------------------------------------------------------------

================================================================================ rust-cxxbridge-macro-1.0.94-1.fc38 (FEDORA-2023-1a5e796ee3) Implementation detail of the cxx crate -------------------------------------------------------------------------------- Update Information:

Update the cxx crates to version 1.0.94 / 0.7.94. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.94-1 - Update to version 1.0.94; Fixes RHBZ#2179491 --------------------------------------------------------------------------------

================================================================================ rust-flate2-1.0.25-1.fc38 (FEDORA-2023-f572df4847) DEFLATE compression and decompression exposed as Read/BufRead/Write streams -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.25-1 - Update to version 1.0.25; Fixes RHBZ#2148188 --------------------------------------------------------------------------------

================================================================================ rust-foreign-types-macros-0.2.3-1.fc38 (FEDORA-2023-c43cac886b) Internal crate used by foreign-types -------------------------------------------------------------------------------- Update Information:

Update to version 0.2.3. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.2.3-1 - Update to version 0.2.3; Fixes RHBZ#2181899 --------------------------------------------------------------------------------

================================================================================ rust-generic-array-0.14.7-1.fc38 (FEDORA-2023-ea30486d0d) Generic types implementing functionality of arrays -------------------------------------------------------------------------------- Update Information:

Update to version 0.14.7. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.14.7-1 - Update to version 0.14.7; Fixes RHBZ#2182226 --------------------------------------------------------------------------------

================================================================================ rust-gimli-0.27.2-1.fc38 (FEDORA-2023-f572df4847) Library for reading and writing the DWARF debugging format -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.27.2-1 - Update to version 0.27.2; Fixes RHBZ#2147544 --------------------------------------------------------------------------------

================================================================================ rust-gtk3-macros-0.17.1-1.fc38 (FEDORA-2023-acf0f45e28) Rust bindings for the GTK 3 library -------------------------------------------------------------------------------- Update Information:

- Update the packages for the gtk3-macros crate to version 0.17.1, 0.16.3, and 0.15.5. - Update the packages for the gtk4-macros crate to version 0.6.5, 0.5.6, and 0.4.10. Thise versions fix an error in the crates' metadata which started causing build failures. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.17.1-1 - Update to version 0.17.1; Fixes RHBZ#2181318 --------------------------------------------------------------------------------

================================================================================ rust-gtk3-macros0.15-0.15.6-1.fc38 (FEDORA-2023-acf0f45e28) Rust bindings for the GTK 3 library -------------------------------------------------------------------------------- Update Information:

- Update the packages for the gtk3-macros crate to version 0.17.1, 0.16.3, and 0.15.5. - Update the packages for the gtk4-macros crate to version 0.6.5, 0.5.6, and 0.4.10. Thise versions fix an error in the crates' metadata which started causing build failures. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.15.6-1 - Update to version 0.15.6 --------------------------------------------------------------------------------

================================================================================ rust-gtk3-macros0.16-0.16.3-1.fc38 (FEDORA-2023-acf0f45e28) Rust bindings for the GTK 3 library -------------------------------------------------------------------------------- Update Information:

- Update the packages for the gtk3-macros crate to version 0.17.1, 0.16.3, and 0.15.5. - Update the packages for the gtk4-macros crate to version 0.6.5, 0.5.6, and 0.4.10. Thise versions fix an error in the crates' metadata which started causing build failures. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.16.3-1 - Update to version 0.16.3 --------------------------------------------------------------------------------

================================================================================ rust-gtk4-macros-0.6.5-1.fc38 (FEDORA-2023-acf0f45e28) Macros helpers for GTK 4 bindings -------------------------------------------------------------------------------- Update Information:

- Update the packages for the gtk3-macros crate to version 0.17.1, 0.16.3, and 0.15.5. - Update the packages for the gtk4-macros crate to version 0.6.5, 0.5.6, and 0.4.10. Thise versions fix an error in the crates' metadata which started causing build failures. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.6.5-1 - Update to version 0.6.5; Fixes RHBZ#2181319 --------------------------------------------------------------------------------

================================================================================ rust-gtk4-macros0.4-0.4.10-1.fc38 (FEDORA-2023-acf0f45e28) Macros helpers for GTK 4 bindings -------------------------------------------------------------------------------- Update Information:

- Update the packages for the gtk3-macros crate to version 0.17.1, 0.16.3, and 0.15.5. - Update the packages for the gtk4-macros crate to version 0.6.5, 0.5.6, and 0.4.10. Thise versions fix an error in the crates' metadata which started causing build failures. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.4.10-1 - Update to version 0.4.10 --------------------------------------------------------------------------------

================================================================================ rust-gtk4-macros0.5-0.5.6-1.fc38 (FEDORA-2023-acf0f45e28) Macros helpers for GTK 4 bindings -------------------------------------------------------------------------------- Update Information:

- Update the packages for the gtk3-macros crate to version 0.17.1, 0.16.3, and 0.15.5. - Update the packages for the gtk4-macros crate to version 0.6.5, 0.5.6, and 0.4.10. Thise versions fix an error in the crates' metadata which started causing build failures. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.5.6-1 - Update to version 0.5.6 --------------------------------------------------------------------------------

================================================================================ rust-iana-time-zone-0.1.55-1.fc38 (FEDORA-2023-22d6c260eb) Get the IANA time zone for the current system -------------------------------------------------------------------------------- Update Information:

Update to version 0.1.55. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.1.55-1 - Update to version 0.1.55; Fixes RHBZ#2183072 --------------------------------------------------------------------------------

================================================================================ rust-miniz_oxide-0.6.2-1.fc38 (FEDORA-2023-f572df4847) DEFLATE compression and decompression library rewritten in Rust based on miniz -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.6.2-1 - Update to version 0.6.2 --------------------------------------------------------------------------------

================================================================================ rust-miniz_oxide0.5-0.5.4-1.fc38 (FEDORA-2023-f572df4847) DEFLATE compression and decompression library rewritten in Rust based on miniz -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.5.4-1 - Initial import (miniz_oxide 0.5 compat package) --------------------------------------------------------------------------------

================================================================================ rust-object-0.30.3-1.fc38 (FEDORA-2023-f572df4847) Unified interface for reading and writing object file formats -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.30.3-1 - Update to version 0.30.3; Fixes RHBZ#2144698 --------------------------------------------------------------------------------

================================================================================ rust-paris-1.5.15-1.fc38 (FEDORA-2023-68fd37d6c4) Simple logger for your CLI apps or other things you want in the terminal -------------------------------------------------------------------------------- Update Information:

Update to version 1.5.15. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.5.15-1 - Update to version 1.5.15; Fixes RHBZ#2182796 --------------------------------------------------------------------------------

================================================================================ rust-png-0.17.7-1.fc38 (FEDORA-2023-f572df4847) PNG decoding and encoding library in pure Rust -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.17.7-1 - Update to version 0.17.7; Fixes RHBZ#2138662 --------------------------------------------------------------------------------

================================================================================ rust-proc-macro2-1.0.54-1.fc38 (FEDORA-2023-706747d070) Substitute implementation of the Rust compiler's proc_macro API -------------------------------------------------------------------------------- Update Information:

Update to version 1.0.54. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.54-1 - Update to version 1.0.54; Fixes RHBZ#2181902 --------------------------------------------------------------------------------

================================================================================ rust-remoteprocess-0.4.10-3.fc38 (FEDORA-2023-f572df4847) Cross platform api for getting information on a running processes -------------------------------------------------------------------------------- Update Information:

- Update the backtrace crate to version 0.3.67. - Update the addr2line crate to version 0.19.0. - Update the object crate to version 0.30.3. - Update the gimli crate to version 0.27.2. - Update the cpp_demangle crate to version 0.4.0. - Update the png crate to version 0.17.7. - Update the flate2 crate to version 1.0.25. - Update the miniz_oxide crate to version 0.6.2. - Add a compat package for version 0.5 of the miniz_oxide crate. - Adapt retsnoop and the remoteprocess crate to object v0.30, gimli v0.27, and addr2line v0.19. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.4.10-3 - Bump addr2line from 0.18 to 0.19 and object from 0.29 to 0.30 --------------------------------------------------------------------------------

================================================================================ rust-reqwest-0.11.16-1.fc38 (FEDORA-2023-5ac1996416) Higher level HTTP client library -------------------------------------------------------------------------------- Update Information:

Update to version 0.11.16. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.11.16-1 - Update to version 0.11.16; Fixes RHBZ#2182147 --------------------------------------------------------------------------------

================================================================================ rust-serde-1.0.159-1.fc38 (FEDORA-2023-2a12de6c28) Generic serialization/deserialization framework -------------------------------------------------------------------------------- Update Information:

Update the serde, serde_derive, and serde_test crates to version 1.0.159. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.159-1 - Update to version 1.0.159; Fixes RHBZ#2182292 --------------------------------------------------------------------------------

================================================================================ rust-serde_derive-1.0.159-1.fc38 (FEDORA-2023-2a12de6c28) Macros 1.1 implementation of #[derive(Serialize, Deserialize)] -------------------------------------------------------------------------------- Update Information:

Update the serde, serde_derive, and serde_test crates to version 1.0.159. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.159-1 - Update to version 1.0.159; Fixes RHBZ#2182293 --------------------------------------------------------------------------------

================================================================================ rust-serde_json-1.0.95-1.fc38 (FEDORA-2023-369a5bee25) JSON serialization file format -------------------------------------------------------------------------------- Update Information:

Update to version 1.0.95. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.95-1 - Update to version 1.0.95; Fixes RHBZ#2182159 --------------------------------------------------------------------------------

================================================================================ rust-serde_test-1.0.159-1.fc38 (FEDORA-2023-2a12de6c28) Token De/Serializer for testing De/Serialize implementations -------------------------------------------------------------------------------- Update Information:

Update the serde, serde_derive, and serde_test crates to version 1.0.159. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.0.159-1 - Update to version 1.0.159; Fixes RHBZ#2182294 --------------------------------------------------------------------------------

================================================================================ rust-spin-0.9.7-1.fc38 (FEDORA-2023-4a5bbaee38) Spin-based synchronization primitives -------------------------------------------------------------------------------- Update Information:

Update to version 0.9.7. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 0.9.7-1 - Update to version 0.9.7; Fixes RHBZ#2182219 --------------------------------------------------------------------------------

================================================================================ rust-syn-2.0.11-1.fc38 (FEDORA-2023-709964f7b7) Parser for Rust source code -------------------------------------------------------------------------------- Update Information:

Update to version 2.0.11. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 2.0.11-1 - Update to version 2.0.11; Fixes RHBZ#2181012 --------------------------------------------------------------------------------

================================================================================ rust-zeroize-1.6.0-1.fc38 (FEDORA-2023-6c45a6f13d) Securely clear secrets from memory -------------------------------------------------------------------------------- Update Information:

- Update the zeroize crate to version 1.6.0. - Update the zeroize_derive crate to version 1.4.1. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.6.0-1 - Update to version 1.6.0; Fixes RHBZ#2181927 --------------------------------------------------------------------------------

================================================================================ rust-zeroize_derive-1.4.1-1.fc38 (FEDORA-2023-6c45a6f13d) Custom derive support for zeroize -------------------------------------------------------------------------------- Update Information:

- Update the zeroize crate to version 1.6.0. - Update the zeroize_derive crate to version 1.4.1. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Fabio Valentini decathorpe@gmail.com - 1.4.1-1 - Update to version 1.4.1; Fixes RHBZ#2181928 --------------------------------------------------------------------------------

================================================================================ synapse-0.2.99.4-12.fc38 (FEDORA-2023-4a49a982cd) A semantic launcher written in Vala -------------------------------------------------------------------------------- Update Information:

Fix BuilRequires. Also rest support is enabled -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Mamoru TASAKA mtasaka@fedoraproject.org - 0.2.99.4-12 - Migrate to SPDX identifier - Fix up BuildRequires - Some more clean up spec file - Add rest support --------------------------------------------------------------------------------

================================================================================ system76-keyboard-configurator-1.3.1-3.fc38 (FEDORA-2023-dc283278b9) System76 Keyboard Configurator -------------------------------------------------------------------------------- Update Information:

New version -------------------------------------------------------------------------------- ChangeLog:

* Wed Mar 29 2023 Link Dupont linkdupont@fedoraproject.org - 1.3.1-1 - New upstream version (RHBZ#2182528) --------------------------------------------------------------------------------

================================================================================ tigervnc-1.13.1-3.fc38 (FEDORA-2023-b87fd3a628) A TigerVNC remote display system -------------------------------------------------------------------------------- Update Information:

Fixes CVE-2023-1393: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Jan Grulich jgrulich@redhat.com - 1.13.1-3 - Drop BR: xorg-x11-font-utils CVE-2023-1393 * Thu Mar 30 2023 Jan Grulich jgrulich@redhat.com - 1.13.1-2 - Rebuild (xorg-x11-server) CVE-2023-1393 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2180288 - CVE-2023-1393 xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=2180288 --------------------------------------------------------------------------------

================================================================================ vcpkg-2023.03.29-1.fc38 (FEDORA-2023-3e0dea0de6) C++ Library Manager -------------------------------------------------------------------------------- Update Information:

Updated to version 2023.03.29. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Vitaly Zaitsev vitaly@easycoding.org - 2023.03.29-1 - Updated to version 2023.03.29. * Thu Mar 23 2023 Vitaly Zaitsev vitaly@easycoding.org - 2023.03.22-1 - Updated to version 2023.03.22. --------------------------------------------------------------------------------

================================================================================ vym-2.9.0-1.fc38 (FEDORA-2023-dd6a6ffc45) View your mind -------------------------------------------------------------------------------- Update Information:

2.9.0 -------------------------------------------------------------------------------- ChangeLog:

* Fri Mar 24 2023 Gwyn Ciesla gwync@protonmail.com - 2.9.0-1 - 2.9.0 * Fri Mar 3 2023 Gwyn Ciesla gwync@protonmail.com - 2.8.8-6 - migrated to SPDX license -------------------------------------------------------------------------------- References:

[ 1 ] Bug #2181385 - vym-2.9.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181385 --------------------------------------------------------------------------------

================================================================================ weasyprint-58.1-1.fc38 (FEDORA-2023-6a90d72c55) Utility to render HTML and CSS to PDF -------------------------------------------------------------------------------- Update Information:

new upstream version -------------------------------------------------------------------------------- ChangeLog:

* Tue Mar 7 2023 Felix Schwarz fschwarz@fedoraproject.org - 58.1-1 - update to 58.1 --------------------------------------------------------------------------------

================================================================================ webp-pixbuf-loader-0.2.4-1.fc38 (FEDORA-2023-792b06cc95) WebP image loader for GTK+ applications -------------------------------------------------------------------------------- Update Information:

Update to 0.2.4, fixes a crash and improves performance with large files. -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Mikel Olasagasti Uranga mikel@olasagasti.info - 0.2.4-1 - Update to 0.2.4 - Closes rhbz#2182837 --------------------------------------------------------------------------------

================================================================================ wordpress-6.2-1.fc38 (FEDORA-2023-c948eabbae) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information:

See upstream announcement: [WordPress 6.2 ���Dolphy���](https://wordpress.org/news/2023/03/dolphy/) -------------------------------------------------------------------------------- ChangeLog:

* Thu Mar 30 2023 Remi Collet remi@remirepo.net - 6.2-1 - WordPress 6.2 ���Dolphy��� - use SPDX license IDs --------------------------------------------------------------------------------