The following Fedora 28 Security updates need testing:
Age URL
110
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d510cfd7eb
jgraphx-3.6.0.0-6.fc28
82
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c75a37ae9b
blktrace-1.2.0-6.fc28
69
https://bodhi.fedoraproject.org/updates/FEDORA-2018-202c536f70
gifsicle-1.91-1.fc28
60
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d7aeaa74da
nodejs-brace-expansion-1.1.11-1.fc28
58
https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc073fdc1a
nodejs-atob-2.1.1-1.fc28
51
https://bodhi.fedoraproject.org/updates/FEDORA-2018-9dd3f7c013
unrtf-0.21.9-8.fc28
46
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f972c1b36e
python-XStatic-jquery-ui-1.12.0.1-2.fc28
19
https://bodhi.fedoraproject.org/updates/FEDORA-2018-28e9841baf
docker-latest-1.13.1-37.git9cb56fd.fc28
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-0c586e5178
quazip-0.7.6-1.fc28
7
https://bodhi.fedoraproject.org/updates/FEDORA-2018-75fdc70018
pam_yubico-2.26-1.fc28
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-33fef25ed1
ghc-hakyll-4.10.0.0-3.fc28 pandoc-citeproc-0.12.2.5-4.fc28 ghc-hs-bibutils-6.6.0.0-1.fc28
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-7b97e553ff
mingw-gdal-2.2.4-5.fc28 mingw-xerces-c-3.2.1-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-e071e178f8
mailman-2.1.29-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-997efe762f
seamonkey-2.49.4-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f17daf1cd6
myrepos-1.20180726-1.fc28
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ff8d8c33b1
dpkg-1.18.25-1.fc28
The following Fedora 28 Critical Path updates have yet to be approved:
Age URL
9
https://bodhi.fedoraproject.org/updates/FEDORA-2018-167cedbe01
pungi-4.1.26-2.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1e0733ee2b
ostree-2018.7-1.fc28
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4b3f72d8c9
perl-5.26.2-413.fc28
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-0312a2c6ab
bubblewrap-0.3.0-2.fc28
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-077b4c7862
libxkbcommon-0.8.0-5.fc28
The following builds have been pushed to Fedora 28 updates-testing
CuraEngine-lulzbot-3.2.23-1.fc28
R-Rmpfr-0.7.1-1.fc28
R-diffobj-0.1.11-1.fc28
R-fts-0.9.9.1-1.fc28
R-igraph-1.2.2-1.fc28
R-inline-0.3.15-1.fc28
R-openssl-1.0.2-1.fc28
R-polyclip-1.9.1-1.fc28
RBTools-1.0.1-1.fc28
atomic-reactor-1.6.33-2.fc28
chafa-0.9.0-1.fc28
clamav-0.100.1-4.fc28
cura-lulzbot-3.2.23-1.fc28
dnssec-tools-2.2.1-1.fc28
evolution-3.28.5-1.fc28
evolution-data-server-3.28.5-1.fc28
evolution-ews-3.28.5-1.fc28
flatpak-module-tools-0.6-1.fc28
fuse-overlayfs-0.1-4.dev.git79c70fd.fc28
i2c-tools-4.0-9.fc28
kernel-4.17.11-200.fc28
kernel-headers-4.17.11-1.fc28
koji-containerbuild-0.7.9.1-1.fc28
lilypond-2.19.82-3.fc28
link-grammar-5.5.1-4.fc28
lm_sensors-3.4.0-17.20180522git70f7e08.fc28
lulzbot-marlin-firmware-1.1.8.62-1.fc28
mingw-LibRaw-0.18.13-2.fc28
mingw-quazip-0.7.6-1.fc28
minicom-2.7.1-8.fc28
moodle-3.4.4-1.fc28
mozjs52-52.9.0-1.fc28
nodejs-rhea-0.2.17-1.fc28
pango-1.42.3-1.fc28
patchutils-0.3.4-12.fc28
pcre2-10.31-8.fc28
perl-HTTP-Tiny-0.074-1.fc28
pythia8-8.2.35-4.fc28
python-pyngus-2.2.4-2.fc28
python-twisted-18.4.0-4.fc28
python-uranium-lulzbot-3.2.23-1.fc28
qpid-cpp-1.38.0-2.fc28
qpid-dispatch-1.2.0-1.fc28
qpid-proton-0.24.0-1.fc28
rubygem-qpid_messaging-1.38.0-2.fc28
sigil-0.9.10-1.fc28
slirp4netns-0.1-1.dev.gitc4e1bc5.fc28
Details about builds:
================================================================================
CuraEngine-lulzbot-3.2.23-1.fc28 (FEDORA-2018-7a9777480c)
Engine for processing 3D models into G-code instructions for 3D printers
--------------------------------------------------------------------------------
Update Information:
Update to Cura-Lulzbot 3.2.23. Fix CVE-2018-1000537
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Tom Callaway <spot(a)fedoraproject.org> - 1:3.2.23-1
- update to 3.2.23
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:3.2.21-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1595588 - CVE-2018-1000537 lulzbot-marlin-firmware: marlin: Buffer overflow
in cardreader.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1595588
--------------------------------------------------------------------------------
================================================================================
R-Rmpfr-0.7.1-1.fc28 (FEDORA-2018-8854c2cf8b)
R MPFR - Multiple Precision Floating-Point Reliable
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 0.7.1-1
- Update to latest version
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
R-diffobj-0.1.11-1.fc28 (FEDORA-2018-e71bb8a3c0)
Diffs for R Objects
--------------------------------------------------------------------------------
Update Information:
Initial package of diffobj for R
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1607215 - Review Request: R-diffobj - Diffs for R Objects
https://bugzilla.redhat.com/show_bug.cgi?id=1607215
--------------------------------------------------------------------------------
================================================================================
R-fts-0.9.9.1-1.fc28 (FEDORA-2018-568fd23c2b)
R Interface to 'tslib' (a Time Series Library in C++)
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 0.9.9.1-1
- Update to latest version
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.9-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
R-igraph-1.2.2-1.fc28 (FEDORA-2018-02b1005353)
Network Analysis and Visualization
--------------------------------------------------------------------------------
Update Information:
Initial package of igraph for R
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1607718 - Review Request: R-igraph - Network Analysis and Visualization
https://bugzilla.redhat.com/show_bug.cgi?id=1607718
--------------------------------------------------------------------------------
================================================================================
R-inline-0.3.15-1.fc28 (FEDORA-2018-65414e254c)
Functions to Inline C, C++, Fortran Function Calls from R
--------------------------------------------------------------------------------
Update Information:
Update to version 0.3.15
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 0.3.15-1
- Update to version 0.3.15
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.14-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
R-openssl-1.0.2-1.fc28 (FEDORA-2018-fee67b9a74)
Toolkit for Encryption, Signatures and Certificates Based on OpenSSL
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.0.2-1
- Update to latest version
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
R-polyclip-1.9.1-1.fc28 (FEDORA-2018-5e4d38a425)
Polygon Clipping
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.9.1-1
- Update to latest version
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.9.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
RBTools-1.0.1-1.fc28 (FEDORA-2018-9d7b39aaad)
Tools for use with ReviewBoard
--------------------------------------------------------------------------------
Update Information:
Update to 1.0.1 * Fixed tracking branch detection with Git
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Stephen Gallagher <sgallagh(a)redhat.com> - 1.0.1-1
- Update to RBTools 1.0.1
- Fixed tracking branch detection with Git
--------------------------------------------------------------------------------
================================================================================
atomic-reactor-1.6.33-2.fc28 (FEDORA-2018-fd4c0b69fc)
Improved builder for Docker images
--------------------------------------------------------------------------------
Update Information:
New upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Clement Verna <cverna(a)fedoraproject.org> - 1.6.33-2
- Add patch to manage jsonschema version
* Mon Jul 30 2018 Clement Verna <cverna(a)fedoraproject.org> - 1.6.33-1
- New upstream release
- Drop patches
- Drop stop_autorebuild_if_disabled plugin
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1560118 - atomic-reactor-1.6.33 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1560118
--------------------------------------------------------------------------------
================================================================================
chafa-0.9.0-1.fc28 (FEDORA-2018-735c2ef695)
Image-to-text converter for terminal
--------------------------------------------------------------------------------
Update Information:
Chafa is a command-line utility that converts all kinds of images, including
animated image formats like GIFs, into ANSI/Unicode character output that can be
displayed in a terminal. It is highly configurable, with support for alpha
transparency and multiple color modes and color spaces, combining a range of
Unicode characters for optimal output.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1609285 - Review Request: chafa - Image-to-text converter for terminal
https://bugzilla.redhat.com/show_bug.cgi?id=1609285
--------------------------------------------------------------------------------
================================================================================
clamav-0.100.1-4.fc28 (FEDORA-2018-61b6e4545f)
End-user tools for the Clam Antivirus scanner
--------------------------------------------------------------------------------
Update Information:
Change the default location of configuration files in clamconf, binaries and
---- Modify group of /var/run/clamd.scan to virusgroup Add some SELinux notes
from (#787434) Drop pointless clamav-0.99.1-setsebool.patch Drop conditionalized
build of noarch Spec cleanups
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 S��rgio Basto <sergio(a)serjux.com> - 0.100.1-4
- Change the default location of configuration files in clamconf, binaries and
man pages, replacing with our default packaging (#859339).
* Sun Jul 29 2018 S��rgio Basto <sergio(a)serjux.com> - 0.100.1-3
- Modify group of /var/run/clamd.scan to virusgroup
- Add some SELinux notes from (#787434)
- Drop pointless clamav-0.99.1-setsebool.patch
- Drop conditionalized build of noarch
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.100.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #859339 - Clamdscan hardcoded to /etc/clamd.conf config
https://bugzilla.redhat.com/show_bug.cgi?id=859339
[ 2 ] Bug #787434 - Clamav does not create /var/run/clamd.scan/ with correct
permissions
https://bugzilla.redhat.com/show_bug.cgi?id=787434
--------------------------------------------------------------------------------
================================================================================
cura-lulzbot-3.2.23-1.fc28 (FEDORA-2018-7a9777480c)
3D printer control software
--------------------------------------------------------------------------------
Update Information:
Update to Cura-Lulzbot 3.2.23. Fix CVE-2018-1000537
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Tom Callaway <spot(a)fedoraproject.org> - 1:3.2.23-1
- update to 3.2.23
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:3.2.21-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 1:3.2.21-2
- Rebuilt for Python 3.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1595588 - CVE-2018-1000537 lulzbot-marlin-firmware: marlin: Buffer overflow
in cardreader.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1595588
--------------------------------------------------------------------------------
================================================================================
dnssec-tools-2.2.1-1.fc28 (FEDORA-2018-2165257f6b)
A suite of tools for managing dnssec aware DNS usage
--------------------------------------------------------------------------------
Update Information:
fix build issues
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Wes Hardaker <wjhns174(a)hardakers.net> - 2.2.1-1
- fix build issues
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2-10
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Thu Jun 28 2018 Jitka Plesnikova <jplesnik(a)redhat.com> - 2.2-9
- Perl 5.28 rebuild
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Wed Aug 2 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sun Jun 4 2017 Jitka Plesnikova <jplesnik(a)redhat.com> - 2.2-5
- Perl 5.26 rebuild
* Fri Feb 10 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1381613 - dnssec-tools-2.2-3.fc26 FTBFS: 'NS_ALG_MD5RSA' undeclared
here (not in a function)
https://bugzilla.redhat.com/show_bug.cgi?id=1381613
--------------------------------------------------------------------------------
================================================================================
evolution-3.28.5-1.fc28 (FEDORA-2018-edd1317556)
Mail and calendar client for GNOME
--------------------------------------------------------------------------------
Update Information:
Update to 3.28.5 upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Milan Crha <mcrha(a)redhat.com> - 3.28.5-1
- Update to 3.28.5
--------------------------------------------------------------------------------
================================================================================
evolution-data-server-3.28.5-1.fc28 (FEDORA-2018-edd1317556)
Backend data server for Evolution
--------------------------------------------------------------------------------
Update Information:
Update to 3.28.5 upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Milan Crha <mcrha(a)redhat.com> - 3.28.5-1
- Update to 3.28.5
--------------------------------------------------------------------------------
================================================================================
evolution-ews-3.28.5-1.fc28 (FEDORA-2018-edd1317556)
Evolution extension for Exchange Web Services
--------------------------------------------------------------------------------
Update Information:
Update to 3.28.5 upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Milan Crha <mcrha(a)redhat.com> - 3.28.5-1
- Update to 3.28.5
--------------------------------------------------------------------------------
================================================================================
flatpak-module-tools-0.6-1.fc28 (FEDORA-2018-3210cc23f4)
Tools for maintaining Flatpak applications and runtimes as Fedora modules
--------------------------------------------------------------------------------
Update Information:
* Version 0.6 of flatpak-module-tools adds support for a number of keys in the
`flatpak:` section of `container.yaml` such as rename-icon and * pythonN-
module-tools subpackages are split out to use as a library from atomic-reactor.
---- Version 0.4 (fix container builds from Koji) ---- Version 0.3 (minor
fixes) ---- Initial package of tools for maintaining Flatpak applications and
runtimes as Fedora modules
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1581865 - Review Request: flatpak-module-tools - Tools for maintaining
Flatpak applications and runtimes as Fedora modules
https://bugzilla.redhat.com/show_bug.cgi?id=1581865
--------------------------------------------------------------------------------
================================================================================
fuse-overlayfs-0.1-4.dev.git79c70fd.fc28 (FEDORA-2018-345884d092)
FUSE overlay+shiftfs implementation for rootless containers
--------------------------------------------------------------------------------
Update Information:
Resolves: #1609598 - initial upload to Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1609598 - Review Request: fuse-overlayfs - FUSE overlay+shiftfs
implementation for rootless containers
https://bugzilla.redhat.com/show_bug.cgi?id=1609598
--------------------------------------------------------------------------------
================================================================================
i2c-tools-4.0-9.fc28 (FEDORA-2018-9805a6fdcb)
A heterogeneous set of I2C tools for Linux
--------------------------------------------------------------------------------
Update Information:
Corrected the License tags
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Ond��ej Lyson��k <olysonek(a)redhat.com> - 4.0-9
- Corrected the License tags
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.0-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Fri Jun 29 2018 Adam Jackson <ajax(a)redhat.com> - 4.0-7
- Use ldconfig scriptlets
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 4.0-6
- Rebuilt for Python 3.7
--------------------------------------------------------------------------------
================================================================================
kernel-4.17.11-200.fc28 (FEDORA-2018-cc812838fb)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 4.17.11 stable update contains a number of important fixes across the tree.
Also of note, starting with this release, kernel-headers is built from a
different srpm. The contents should be the same, but there were some benefits to
breaking it from the kernel build. ---- The 4.17.10 stable kernel update
contains a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Justin M. Forbes <jforbes(a)fedoraproject.org> - 4.17.11-200
- Linux v4.17.11
- Turn off kernel-headers for the split
- Fix CVE-2018-14678 (rhbz 1608559 1608560)
* Wed Jul 25 2018 Justin M. Forbes <jforbes(a)fedoraproject.org> - 4.17.10-200
- Linux v4.17.10
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1608559 - CVE-2018-14678 xen: Uninitialized state in PV syscall return path
(XSA-274)
https://bugzilla.redhat.com/show_bug.cgi?id=1608559
--------------------------------------------------------------------------------
================================================================================
kernel-headers-4.17.11-1.fc28 (FEDORA-2018-cc812838fb)
Header files for the Linux kernel for use by glibc
--------------------------------------------------------------------------------
Update Information:
The 4.17.11 stable update contains a number of important fixes across the tree.
Also of note, starting with this release, kernel-headers is built from a
different srpm. The contents should be the same, but there were some benefits to
breaking it from the kernel build. ---- The 4.17.10 stable kernel update
contains a number of important fixes across the tree.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1608559 - CVE-2018-14678 xen: Uninitialized state in PV syscall return path
(XSA-274)
https://bugzilla.redhat.com/show_bug.cgi?id=1608559
--------------------------------------------------------------------------------
================================================================================
koji-containerbuild-0.7.9.1-1.fc28 (FEDORA-2018-da680ba975)
Koji support for building layered container images
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Clement Verna <cverna(a)fedoraproject.org> - 0.7.9.1-1
- Update to latest upstream
- conditional install for py3
- make CLI proper koji plugin
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.8-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
lilypond-2.19.82-3.fc28 (FEDORA-2018-ece07aad79)
A typesetting system for music notation
--------------------------------------------------------------------------------
Update Information:
Relocate vim files.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Gwyn Ciesla <limburgher(a)gmail.com> - 2.19.82-3
- Update vim file location.
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.19.82-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1599424 - Lilypond syntax files for vim not in vim81 folder
https://bugzilla.redhat.com/show_bug.cgi?id=1599424
--------------------------------------------------------------------------------
================================================================================
link-grammar-5.5.1-4.fc28 (FEDORA-2018-60eb938ef6)
A full-service natural language dependency parser
--------------------------------------------------------------------------------
Update Information:
5.5.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Gwyn Ciesla <limburgher(a)gmail.com> - 5.5.1-1
- 5.5.1.
* Sun Jul 22 2018 Niels de Vos <ndevos(a)redhat.com> - 5.5.0-4
- Add gcc-c++ to BuildRequires (#1604705)
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.5.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 5.5.0-2
- Rebuilt for Python 3.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1609437 - link-grammar-5.5.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1609437
--------------------------------------------------------------------------------
================================================================================
lm_sensors-3.4.0-17.20180522git70f7e08.fc28 (FEDORA-2018-1bf3393b9d)
Hardware monitoring tools
--------------------------------------------------------------------------------
Update Information:
Corrected the License tag
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 17 2018 Ond��ej Lyson��k <olysonek(a)redhat.com> -
3.4.0-17.20180522git70f7e08
- Corrected the License tag
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
3.4.0-16.20180522git70f7e08
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Mon Jun 25 2018 Ond��ej Lyson��k <olysonek(a)redhat.com> -
3.4.0-15.20180522git70f7e08
- New version
* Fri May 4 2018 Ond��ej Lyson��k <olysonek(a)redhat.com> - 3.4.0-14
- Add detection of AMD Ryzen w/ Vega graphics
- Resolves: rhbz#1573399
- Covscan fixes
--------------------------------------------------------------------------------
================================================================================
lulzbot-marlin-firmware-1.1.8.62-1.fc28 (FEDORA-2018-7a9777480c)
Marlin firmware files for the Lulzbot family of 3D printers
--------------------------------------------------------------------------------
Update Information:
Update to Cura-Lulzbot 3.2.23. Fix CVE-2018-1000537
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Tom Callaway <spot(a)fedoraproject.org> - 1:1.1.8.62-1
- update to 1.1.8.62
* Fri Jul 13 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 1:1.1.8.59-3
- Security fix for CVE-2018-1000537
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:1.1.8.59-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1595588 - CVE-2018-1000537 lulzbot-marlin-firmware: marlin: Buffer overflow
in cardreader.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1595588
--------------------------------------------------------------------------------
================================================================================
mingw-LibRaw-0.18.13-2.fc28 (FEDORA-2018-f37cbaafdf)
Library for reading RAW files obtained from digital photo cameras
--------------------------------------------------------------------------------
Update Information:
Update to LibRaw-0.18.13, see
https://www.libraw.org/news/libraw-0-18-13 for
details. Fixes CVE-2018-5815, CVE-2018-5816.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Sandro Mani <manisandro(a)gmail.com> - 0.18.13-2
- Backport fix for CVE-2018-5816 (#1610158)
* Tue Jul 31 2018 Sandro Mani <manisandro(a)gmail.com> - 0.18.13-1
- Update to 0.18.13
- Backport fix for CVE-2018-5815 (#1610153)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1610156 - CVE-2018-5816 LibRaw: Integer overflow in
internal/dcraw_common.cpp:identify() allows for denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1610156
[ 2 ] Bug #1610151 - CVE-2018-5815 LibRaw: Integer overflow in
internal/dcraw_common.cpp:parse_qt() allows for denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1610151
--------------------------------------------------------------------------------
================================================================================
mingw-quazip-0.7.6-1.fc28 (FEDORA-2018-e2bfddfee1)
MinGW Windows quazip library
--------------------------------------------------------------------------------
Update Information:
Update to quazip-0.7.6, see
https://github.com/stachenov/quazip/releases/tag/0.7.6 for details.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Sandro Mani <manisandro(a)gmail.com> - 0.7.6-1
- Update to 0.7.6
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.3-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Thu Feb 8 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.3-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
minicom-2.7.1-8.fc28 (FEDORA-2018-ae3fef79aa)
A text-based modem control and terminal emulation program
--------------------------------------------------------------------------------
Update Information:
Corrected the License tag
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 23 2018 Ond��ej Lyson��k <olysonek(a)redhat.com> - 2.7.1-8
- Corrected the License tag
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.7.1-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
moodle-3.4.4-1.fc28 (FEDORA-2018-64955716d6)
A Course Management System
--------------------------------------------------------------------------------
Update Information:
Multiple CVE fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Gwyn Ciesla <limburgher(a)gmail.com> - 3.4.4-1
- 3.4.4.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1599817 - CVE-2018-10891 moodle: Quiz question bank import preview could
execute JavaScript [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1599817
[ 2 ] Bug #1599807 - CVE-2018-10890 moodle: Web service core_course_get_categories may
return invisible categories [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1599807
[ 3 ] Bug #1599816 - CVE-2018-10891 moodle: Quiz question bank import preview could
execute JavaScript [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1599816
[ 4 ] Bug #1599806 - CVE-2018-10890 moodle: Web service core_course_get_categories may
return invisible categories [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1599806
[ 5 ] Bug #1599800 - CVE-2018-10889 moodle: Privacy data exports include log data
[fedora-27]
https://bugzilla.redhat.com/show_bug.cgi?id=1599800
--------------------------------------------------------------------------------
================================================================================
mozjs52-52.9.0-1.fc28 (FEDORA-2018-999aa2af22)
SpiderMonkey JavaScript library
--------------------------------------------------------------------------------
Update Information:
mozjs52 52.9.0, including various security, stability and regression fixes from
Firefox 52.9.0 ESR. For details, see
https://www.mozilla.org/en-
US/firefox/52.9.0/releasenotes/
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 25 2018 Kalev Lember <klember(a)redhat.com> - 52.9.0-1
- Update to 52.9.0
* Mon Jun 11 2018 Ray Strode <rstrode(a)redhat.com> - 52.8.0-2
- safeguard against linking against bundled nss
Related: #1563708
--------------------------------------------------------------------------------
================================================================================
nodejs-rhea-0.2.17-1.fc28 (FEDORA-2018-2b0e704698)
A reactive messaging library based on the AMQP protocol
--------------------------------------------------------------------------------
Update Information:
Rebase to 0.2.17.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 24 2018 Irina Boverman <iboverma(a)redhat.com> - 0.2.17-1
- Rebased to 0.2.17
* Tue Jul 10 2018 Irina Boverman <iboverma(a)redhat.com> - 0.2.15-1
- Rebased to 0.2.15
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1582009 - nodejs-rhea-0.2.17 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1582009
--------------------------------------------------------------------------------
================================================================================
pango-1.42.3-1.fc28 (FEDORA-2018-65b8fe98b3)
System for layout and rendering of internationalized text
--------------------------------------------------------------------------------
Update Information:
pango 1.42.3 release. - Fix handling of font lists on OS X (#252) - Fix a
memory leak ---- pango 1.42.2 release. - Require harfbuzz 1.4.2 - Restore
scaling of CoreText fonts - Speed up font face enumeration - Add a pango-list
utility
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Kalev Lember <klember(a)redhat.com> - 1.42.3-1
- Update to 1.42.3
* Wed Jul 25 2018 Kalev Lember <klember(a)redhat.com> - 1.42.2-1
- Update to 1.42.2
--------------------------------------------------------------------------------
================================================================================
patchutils-0.3.4-12.fc28 (FEDORA-2018-60c79aee61)
A collection of programs for manipulating patch files
--------------------------------------------------------------------------------
Update Information:
Added requirement for patch
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Tim Waugh <twaugh(a)redhat.com> - 0.3.4-12
- Requires patch (bug #1609946).
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.4-11
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1609946 - patchutils does not depend on patch
https://bugzilla.redhat.com/show_bug.cgi?id=1609946
--------------------------------------------------------------------------------
================================================================================
pcre2-10.31-8.fc28 (FEDORA-2018-0dd9176f34)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
This release fixes backtracking atomic groups when they are not separated by
something with a backtracking point.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Petr Pisar <ppisar(a)redhat.com> - 10.31-8
- Fix backtracking atomic groups when they are not separated by something with
a backtracking point
--------------------------------------------------------------------------------
================================================================================
perl-HTTP-Tiny-0.074-1.fc28 (FEDORA-2018-25a251c107)
Small, simple, correct HTTP/1.1 client
--------------------------------------------------------------------------------
Update Information:
This release updates documentation and corrects tests.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Petr Pisar <ppisar(a)redhat.com> - 0.074-1
- 0.074 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1610065 - perl-HTTP-Tiny-0.074 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1610065
--------------------------------------------------------------------------------
================================================================================
pythia8-8.2.35-4.fc28 (FEDORA-2018-34d2f03f01)
Pythia Event Generator for High Energy Physics
--------------------------------------------------------------------------------
Update Information:
Don't own toplevel __pycache__ directory
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 8.2.35-4
- Don't own toplevel __pycache__ directory
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 8.2.35-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-pyngus-2.2.4-2.fc28 (FEDORA-2018-34cea2afa3)
Callback API implemented over Proton
--------------------------------------------------------------------------------
Update Information:
Rebase to 2.2.4.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jul 26 2018 Irina Boverman <iboverma(a)redhat.com> - 2.2.4-2
- Added python2-pyngus
* Tue Jul 24 2018 Irina Boverman <iboverma(a)redhat.com> - 2.2.4-1
- Rebased to 2.2.4
- Removed python2-pyngus
--------------------------------------------------------------------------------
================================================================================
python-twisted-18.4.0-4.fc28 (FEDORA-2018-8c87b9b0a2)
Twisted is a networking engine written in Python
--------------------------------------------------------------------------------
Update Information:
Fix installation order for Python 2 ---- Keep old Obsoletes/Provides for
Fedora 28 ---- Keep default binaries to Python2 for Fedora 28
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> - 18.4.0-4
- Fix installation order for Python 2
* Sun Jul 29 2018 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> - 18.4.0-3
- Keep old Obsoletes/Provides for Fedora 28
* Tue Jul 17 2018 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> - 18.4.0-2
- Keep default binaries to Python2 for Fedora 28
* Wed Jun 27 2018 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> - 18.4.0-1
- Update to 18.4.0
- Default binaries to Python 3
- Drop old Obsoletes/Provides
- Refresh BR
- Remove useless macros
- Use python_enable_dependency_generator
* Wed May 23 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 16.4.1-10
- Fix ambiguous shebangs
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1563037 - kajongg won't install because it is missing a dependency for
python3-twisted
https://bugzilla.redhat.com/show_bug.cgi?id=1563037
[ 2 ] Bug #1496581 - kajongg 17.08.x requires python-twisted >= 16.6
https://bugzilla.redhat.com/show_bug.cgi?id=1496581
--------------------------------------------------------------------------------
================================================================================
python-uranium-lulzbot-3.2.23-1.fc28 (FEDORA-2018-7a9777480c)
A Python framework for building desktop applications (Lulzbot fork)
--------------------------------------------------------------------------------
Update Information:
Update to Cura-Lulzbot 3.2.23. Fix CVE-2018-1000537
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Tom Callaway <spot(a)fedoraproject.org> - 3.2.23-1
- update to 3.2.23
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.2.21-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 3.2.21-2
- Rebuilt for Python 3.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1595588 - CVE-2018-1000537 lulzbot-marlin-firmware: marlin: Buffer overflow
in cardreader.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1595588
--------------------------------------------------------------------------------
================================================================================
qpid-cpp-1.38.0-2.fc28 (FEDORA-2018-4ec040c87b)
Libraries for Qpid C++ client applications
--------------------------------------------------------------------------------
Update Information:
Rebuilt against qpid-proton 0.24.0.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 24 2018 Irina Boverman <iboverma(a)redhat.com> - 1.38.0-2
- Rebuilt against qpid-proton 0.24.0
--------------------------------------------------------------------------------
================================================================================
qpid-dispatch-1.2.0-1.fc28 (FEDORA-2018-1e850e37e9)
Dispatch router for Qpid
--------------------------------------------------------------------------------
Update Information:
Rebase to 1.2.0.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 27 2018 Irina Boverman <iboverma(a)redhat.com> - 1.2.0-1
- Rebased to 1.2.0
- Added DISPATCH-1087 patch
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
qpid-proton-0.24.0-1.fc28 (FEDORA-2018-0a226e08e0)
A high performance, lightweight messaging library
--------------------------------------------------------------------------------
Update Information:
Rebase to 0.24.0.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 27 2018 Irina Boverman <iboverma(a)redhat.com> - 0.24.0-1
- Rebased to 0.24.0
--------------------------------------------------------------------------------
================================================================================
rubygem-qpid_messaging-1.38.0-2.fc28 (FEDORA-2018-40b1ca37c9)
Ruby bindings for the Qpid messaging framework
--------------------------------------------------------------------------------
Update Information:
Resolved bz 1545205. ---- Rebase to 1.38.0.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2018 Irina Boverman <iboverma(a)redhat.com> - 1.38.0-2
- Resolved bz 1545205
* Tue Jul 24 2018 Irina Boverman <iboverma(a)redhat.com> - 1.38.0-1
- Rebased to qpid_messaging 1.38.0
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.37.0-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1545205 - rubygem-qpid_messaging is using arch-dependent BuildRequires
https://bugzilla.redhat.com/show_bug.cgi?id=1545205
--------------------------------------------------------------------------------
================================================================================
sigil-0.9.10-1.fc28 (FEDORA-2018-d840af3c98)
WYSIWYG ebook editor
--------------------------------------------------------------------------------
Update Information:
- updated to 0.9.10 -
https://sigil-ebook.com/2018/07/27/sigil-0-9-10-released/
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2018 Dan Hor��k <dan[at]danny.cz> - 0.9.10-1
- New upstream release 0.9.10 (#1608388)
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.9-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 0.9.9-3
- Rebuilt for Python 3.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1608388 - sigil-0.9.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1608388
--------------------------------------------------------------------------------
================================================================================
slirp4netns-0.1-1.dev.gitc4e1bc5.fc28 (FEDORA-2018-fcb5dcd67e)
slirp for network namespaces
--------------------------------------------------------------------------------
Update Information:
Resolves: #1609595 - initial upload
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1609595 - Review Request: slirp4netns - slirp for network namespaces
https://bugzilla.redhat.com/show_bug.cgi?id=1609595
--------------------------------------------------------------------------------