The following Fedora 32 Security updates need testing:
Age URL
67
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4c8458e373
containernetworking-plugins-0.9.1-1.fc32
63
https://bodhi.fedoraproject.org/updates/FEDORA-2021-16d1596c42
buildah-1.19.4-1.fc32
12
https://bodhi.fedoraproject.org/updates/FEDORA-2021-26a293c72b curl-7.69.1-8.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-596fc11138
libpano13-2.9.20-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b6b6093b3a
python3-3.8.9-1.fc32 python3-docs-3.8.9-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-9433bedebd
dnsmasq-2.85-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-29b96724c5
clamav-0.103.2-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a58cb9bc7a
gnuchess-6.2.7-5.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-2e174e8a96
singularity-3.7.3-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-0ea39d8eb3
ruby-2.7.3-136.fc32
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4b0a8b8629
seamonkey-2.53.7-3.fc32
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-bc6585e31a CImg-2.9.7-1.fc32
gmic-2.9.7-1.fc32
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-d934acdb42
nodejs-12.22.1-1.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-977ebc82da
leptonica-1.80.0-3.fc32 mingw-leptonica-1.80.0-2.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-1769a23935
mingw-python3-3.8.9-1.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-d23d016509
mingw-binutils-2.32-10.fc32
The following Fedora 32 Critical Path updates have yet to be approved:
Age URL
124
https://bodhi.fedoraproject.org/updates/FEDORA-2020-345d2fd2aa
iproute-5.9.0-1.fc32
33
https://bodhi.fedoraproject.org/updates/FEDORA-2021-ef4aa8623e gdisk-1.0.7-1.fc32
32
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b55547281d
osinfo-db-20210312-1.fc32
12
https://bodhi.fedoraproject.org/updates/FEDORA-2021-26a293c72b curl-7.69.1-8.fc32
12
https://bodhi.fedoraproject.org/updates/FEDORA-2021-247880fa9f
appstream-data-32-9.fc32
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4bacddc79e
usbredir-0.9.0-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c8095ab0ab fedora-repos-32-13
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-47595160ab
hwdata-0.346-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-13132f7ab7
createrepo_c-0.17.1-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-9433bedebd
dnsmasq-2.85-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b6b6093b3a
python3-3.8.9-1.fc32 python3-docs-3.8.9-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-5f3eded325
libbluray-1.3.0-1.fc32
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-db95cf8ade
libisoburn-1.5.4-2.fc32
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c832ec8669
libburn-1.5.4-2.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b4c70f1156
firefox-87.0-12.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-7cf4af5e3f nss-3.63.0-1.fc32
The following builds have been pushed to Fedora 32 updates-testing
atop-2.6.0-6.fc32
cups-2.3.3op2-4.fc32
koji-1.24.1-1.fc32
logiops-0.2.3-6.fc32
perl-Crypt-OpenSSL-ECDSA-0.09-1.fc32
python-tcxreader-0.3.6-2.fc32
spamassassin-3.4.6-1.fc32
vdr-osdteletext-2.0.2-2.fc32
volume_key-0.3.12-11.fc32
xorg-x11-server-1.20.11-1.fc32
xorgxrdp-0.2.15-3.fc32
Details about builds:
================================================================================
atop-2.6.0-6.fc32 (FEDORA-2021-01bf42fd5c)
An advanced interactive monitor to view the load on system and process level
--------------------------------------------------------------------------------
Update Information:
Upstream patch to correct service file
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 13 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 2.6.0-6
- Upstream patch to fix service file.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1945494 - atop logging doesn't work
https://bugzilla.redhat.com/show_bug.cgi?id=1945494
[ 2 ] Bug #1948624 - atop service doesn't parse options correctly on RHEL7
https://bugzilla.redhat.com/show_bug.cgi?id=1948624
--------------------------------------------------------------------------------
================================================================================
cups-2.3.3op2-4.fc32 (FEDORA-2021-ce94b88d4e)
CUPS printing system
--------------------------------------------------------------------------------
Update Information:
1935318 - old samsung USB devices malfunction with the current (250ms) timeout
for usb bulk transaction 1949054 - Use nss-user-lookup.target instead of
sssd.service and ypbind.service 1949068 - Print queue is paused after ipp
backend ends with CUPS_BACKEND_STOP backport setting multi-user.target via
configure, not via drop-in
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 14 2021 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.3.3op2-4
- 1935318 - old samsung USB devices malfunction with the current (250ms) timeout for usb
bulk transaction
- 1949054 - Use nss-user-lookup.target instead of sssd.service and ypbind.service
- 1949068 - Print queue is paused after ipp backend ends with CUPS_BACKEND_STOP
- backport setting multi-user.target via configure, not via drop-in
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1935318 - old samsung USB devices malfunction with the current (250ms)
timeout for usb bulk transaction
https://bugzilla.redhat.com/show_bug.cgi?id=1935318
[ 2 ] Bug #1949054 - Use nss-user-lookup.target instead of sssd.service and
ypbind.service
https://bugzilla.redhat.com/show_bug.cgi?id=1949054
[ 3 ] Bug #1949068 - Print queue is paused after ipp backend ends with
CUPS_BACKEND_STOP
https://bugzilla.redhat.com/show_bug.cgi?id=1949068
--------------------------------------------------------------------------------
================================================================================
koji-1.24.1-1.fc32 (FEDORA-2021-360ad970fd)
Build system tools
--------------------------------------------------------------------------------
Update Information:
Update to 1.24.1 upstream bugfix release. See
https://lists.fedorahosted.org/archives/list/koji-
devel(a)lists.fedorahosted.org/thread/EAUPV5BAZS52BBRTWQOMISVGDAV7SAQU/ for more
information.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 13 2021 Kevin Fenzi <kevin(a)scrye.com> - 1.24.1-1
- Update to 1.24.1. Fixes rhbz#1948545
--------------------------------------------------------------------------------
================================================================================
logiops-0.2.3-6.fc32 (FEDORA-2021-5d68ce0c64)
Unofficial driver for Logitech mice and keyboard
--------------------------------------------------------------------------------
Update Information:
New version 0.2.3
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 13 2021 Nicolas De Amicis <deamicis(a)bluewin.ch> - 0.2.3-6
- New version 0.2.3
* Wed Mar 31 2021 Jonathan Wakely <jwakely(a)redhat.com> - 0.2.2-5
- Rebuilt for removed libstdc++ symbols (#1937698)
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 0.2.2-4
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
* Mon Feb 15 2021 Nicolas De Amicis <deamicis(a)bluewin.ch> - 0.2.2-3
- Fix build error (thread import) see bug 1923298
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
perl-Crypt-OpenSSL-ECDSA-0.09-1.fc32 (FEDORA-2021-5ef434ce27)
Perl extension for OpenSSL ECDSA (Elliptic Curve Digital Signature Algorithm)
--------------------------------------------------------------------------------
Update Information:
This release incorporate Fedora patches. We deliver it only to provide an up-to-
date version string. We also package upstream tests in a dedicated tests
subpackage.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 14 2021 Petr Pisar <ppisar(a)redhat.com> - 0.09-1
- 1.09 bump
- Package the tests
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1949332 - perl-Crypt-OpenSSL-ECDSA-0.09 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1949332
--------------------------------------------------------------------------------
================================================================================
python-tcxreader-0.3.6-2.fc32 (FEDORA-2021-965b197d59)
tcxreader is a parser/reader for Garmin's TCX file format
--------------------------------------------------------------------------------
Update Information:
Enhancement
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 13 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.3.6-2
- Editing dependencies (problems with F32 and F33)
* Tue Mar 30 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.3.6-1
- New version - 0.3.6
- Enable tests
* Mon Mar 22 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.3.3-2
- Removing cosmetic macro
* Sun Mar 14 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.3.3-1
- New version - 0.3.3
--------------------------------------------------------------------------------
================================================================================
spamassassin-3.4.6-1.fc32 (FEDORA-2021-66a3ea762e)
Spam filter for email which can be invoked from mail delivery agents
--------------------------------------------------------------------------------
Update Information:
New release 3.4.6 (#1948520) ---- Bump config version
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 14 2021 Pavel Zhukov <pzhukov(a)redhat.com> - 3.4.6-1
- New release 3.4.6 (#1948520)
* Tue Apr 6 2021 Pavel Zhukov <landgraf(a)fedoraproject.org> - 3.4.5-2
- Bump config version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1946175 - requires version 3.004004 of SpamAssassin, but this is code version
3.004005
https://bugzilla.redhat.com/show_bug.cgi?id=1946175
[ 2 ] Bug #1948520 - spamassassin-3.4.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1948520
--------------------------------------------------------------------------------
================================================================================
vdr-osdteletext-2.0.2-2.fc32 (FEDORA-2021-822e202f09)
OSD teletext plugin for VDR
--------------------------------------------------------------------------------
Update Information:
Update to 2.0.2-2 - Use correct release tag for 2.0.2 ---- Update to 2.0.2-1
---- Update to 2.0.1-1 ---- Update to 2.0.0-1
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 14 2021 Martin Gansser <martinkg(a)fedoraproject.org> - 2.0.2-2
- Use correct release tag for 2.0.2
* Wed Apr 14 2021 Martin Gansser <martinkg(a)fedoraproject.org> - 2.0.2-1
- Update to 2.0.2
* Tue Apr 13 2021 Martin Gansser <martinkg(a)fedoraproject.org> - 2.0.1-1
- Update to 2.0.1
* Mon Apr 12 2021 Martin Gansser <martinkg(a)fedoraproject.org> - 2.0.0-1
- Update to 2.0.0
--------------------------------------------------------------------------------
================================================================================
volume_key-0.3.12-11.fc32 (FEDORA-2021-3e064c50da)
An utility for manipulating storage encryption keys and passphrases
--------------------------------------------------------------------------------
Update Information:
Backport rawhide changes (resource leaks fix) to Fedora 3{4,3,2}.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 31 2021 Jiri Kucera <jkucera(a)redhat.com> - 0.3.12-11
- Fix resource leaks
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.12-10
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.12-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 0.3.12-8
- Rebuilt for Python 3.9
--------------------------------------------------------------------------------
================================================================================
xorg-x11-server-1.20.11-1.fc32 (FEDORA-2021-f7b4c97879)
X.Org X11 X server
--------------------------------------------------------------------------------
Update Information:
xserver 1.20.11 Security fix for CVE-2021-3472 / ZDI-CAN-1259
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 14 2021 Olivier Fourdan <ofourdan(a)redhat.com> - 1.20.11-1
- xserver 1.20.11 (CVE-2021-3472 / ZDI-CAN-1259)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1944167 - CVE-2021-3472 xorg-x11-server: XChangeFeedbackControl integer
underflow leads to privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=1944167
--------------------------------------------------------------------------------
================================================================================
xorgxrdp-0.2.15-3.fc32 (FEDORA-2021-5381e65dc4)
Implementation of xrdp backend as Xorg modules
--------------------------------------------------------------------------------
Update Information:
Rebuild against xorg-x11-server 1.20.11.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 14 2021 Bojan Smojver <bojan(a)rexursive.com> - 0.2.15-2
- Rebuild against xorg-x11-server 1.20.11
* Thu Jan 28 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.15-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------