The following Fedora 28 Security updates need testing:
Age URL
43
https://bodhi.fedoraproject.org/updates/FEDORA-2018-99eed1942f remctl-3.14-1.fc28
39
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d510cfd7eb
jgraphx-3.6.0.0-6.fc28
25
https://bodhi.fedoraproject.org/updates/FEDORA-2018-2c965abb15
dpdk-17.11.2-1.fc28
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c75a37ae9b
blktrace-1.2.0-6.fc28
10
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ed74f27aef
ncurses-6.1-5.20180224.fc28
10
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ab62814cee
nodejs-mixin-deep-1.3.1-1.fc28
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-636f73964f
nodejs-deep-extend-0.5.1-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-25674bb48e
graphviz-2.40.1-22.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-6d91fc0518
ca-certificates-2018.2.24-1.0.fc28
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-77fe2e20ad
thunderbird-enigmail-2.0.4-1.fc28
The following Fedora 28 Critical Path updates have yet to be approved:
Age URL
14
https://bodhi.fedoraproject.org/updates/FEDORA-2018-35ce81deaf
python-productmd-1.12-1.fc28
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-93b9a09597
perl-podlators-4.11-1.fc28
10
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ed74f27aef
ncurses-6.1-5.20180224.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-6a4441aeff proj-4.9.3-6.fc28
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-137a0296be sddm-0.17.0-3.fc28
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-6c4322c3d5
libguestfs-1.38.2-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-efd392524a
perl-5.26.2-411.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-6d91fc0518
ca-certificates-2018.2.24-1.0.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-90d8f2d6da
libwacom-0.30-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-98f6c89898 lorax-28.11-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d09ad1e0be sssd-1.16.1-8.fc28
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-20785bf78f
bubblewrap-0.2.1-1.fc28
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-8b7398852f
libepoxy-1.5.2-1.fc28
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-88be0696a1 qt-4.8.7-40.fc28
The following builds have been pushed to Fedora 28 updates-testing
diffoscope-95-1.fc28
dislocker-0.7.1-8.fc28
docker-1.13.1-54.git6c336e4.fc28
dolphin-emu-5.0-22.fc28
fedpkg-1.33-1.fc28
ghdl-0.35dev-0.20180520git66bb071.0.fc28
git-cinnabar-0.5.0-0.2.b3.fc28
gst-editing-services-1.14.1-1.fc28
gstreamer1-1.14.1-1.fc28
gstreamer1-plugins-bad-free-1.14.1-1.fc28
gstreamer1-plugins-base-1.14.1-1.fc28
gstreamer1-plugins-good-1.14.1-1.fc28
gstreamer1-plugins-ugly-free-1.14.1-1.fc28
gstreamer1-rtsp-server-1.14.1-1.fc28
gstreamer1-vaapi-1.14.1-1.fc28
kdevelop-5.2.3-1.fc28
kdevelop-php-5.2.3-1.fc28
kdevelop-python-5.2.3-1.py3.fc28
kea-1.3.0-9.fc28
libgnomekbd-3.26.0-5.fc28
libidn2-2.0.5-1.fc28
logwatch-7.4.3-10.fc28
mbedtls-2.9.0-1.fc28
mint-themes-1.6.4-1.fc28
mint-y-icons-1.1.9-1.fc28
mosquitto-1.5-1.fc28
nekovm-2.2.0-4.fc28
net-snmp-5.7.3-38.fc28
opensc-0.18.0-2.fc28
pam-1.3.1-1.fc28
pan-0.145-1.fc28
pari-2.9.5-1.fc28
perl-BSON-1.6.1-1.fc28
php-gettext-gettext-4.5.0-1.fc28
python-cli-helpers-1.0.2-2.fc28
python-construct-2.5.1-16.fc28
python-gstreamer1-1.14.1-1.fc28
python-hglib-2.6.1-1.fc28
python-parso-0.2.1-1.fc28
qcad-3.20.1.3-2.fc28
rpkg-1.54-2.fc28
selinux-policy-3.14.1-25.fc28
standard-test-roles-2.11-1.fc28
udiskie-1.7.4-1.fc28
vim-8.1.010-1.fc28
volume_key-0.3.10-1.fc28
Details about builds:
================================================================================
diffoscope-95-1.fc28 (FEDORA-2018-0028036f8b)
In-depth comparison of files, archives, and directories
--------------------------------------------------------------------------------
Update Information:
Version 95.
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 20 2018 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 95-1
- Update to latest version
(see
https://salsa.debian.org/reproducible-builds/diffoscope/blob/516d5930f168...).
--------------------------------------------------------------------------------
================================================================================
dislocker-0.7.1-8.fc28 (FEDORA-2018-044964688a)
Utility to access BitLocker encrypted volumes
--------------------------------------------------------------------------------
Update Information:
Mbed TLS 2.9.0 ============== Description ----------- Mbed TLS version 2.9.0
has now been released, in addition to maintenance releases for Mbed TLS 2.1 and
Mbed TLS 1.3. Mbed TLS 2.9.0 introduces some minor functional improvements
including code size reductions with smaller AES tables, and initial support for
Curve448 along with some security fixes and bug fixes. Security -------- *
(2.9, 2.7, 2.1) Fixed an issue in the X.509 module which could lead to a buffer
overread during certificate validation. Additionally, the issue could also lead
to unnecessary callback checks being made or to some validation checks to be
omitted. The overread could be triggered remotely, while the other issues would
require a non DER-compliant certificate to be correctly signed by a trusted CA,
or a trusted CA with a non DER-compliant certificate. Found by luocm. Fixes
#825. * (2.9, 2.7, 2.1) Fixed the buffer length assertion in the
ssl_parse_certificate_request() function which could lead to an arbitrary
overread of the message buffer. The overreads could be caused by receiving a
malformed algorithms section which was too short. In builds with debug output,
this overread data was output with the debug data. * (2.9, 2.7, 2.1) Fixed a
client-side bug in the validation of the server's ciphersuite choice which could
potentially lead to the client accepting a ciphersuite it didn't offer or a
ciphersuite that could not be used with the TLS or DTLS version chosen by the
server. This could lead to corruption of internal data structures for some
configurations. Features -------- * (2.9) Added an option of
MBEDTLS_AES_FEWER_TABLES, to dynamically compute smaller AES tables during
runtime, thereby reducing the RAM/ROM footprint by ~6KiB. Suggested and
contributed by jkivilin. * (2.9) Added initial support for Curve448 (RFC
7748). So far only mbedtls_ecp_mul() and ECDH primitive functions
(mbedtls_ecdh_gen_public(), mbedtls_ecdh_compute_shared()) are supported for
now. Contributed by Nicholas Wilson. API Changes ----------- Mbed TLS 2.9.0
maintains source code and binary compatibility with the last minor version, Mbed
TLS 2.8.0, but extends the interface with additional capabilities. * (2.9)
Extended the API with the function of mbedtls_net_poll() to allow user
applications to wait for a network context to become ready before reading or
writing. * (2.9) Added the function mbedtls_ssl_check_pending() to the public
API to allow a check for whether more more data is pending to be processed in
the internal message buffers. This function is necessary to determine the
underlying transport when event-driven IO is used. Bugfix ------ * (2.9,
2.7) Fixed a spurious uninitialized variable warning in cmac.c. Fix
independently contributed by Brian J Murray and David Brown. * (2.9, 2.7, 2.1)
Added missing dependencies in test suites that led to build failures in
configurations that omit certain hashes or public-key algorithms. Fixes #1040.
* (2.9, 2.7) Fixed a C89 incompatibility issue in benchmark.c. Contributed by
Brendan Shanks. Fixes #1353. * (2.9, 2.7, 2.1) Added missing dependencies for
MBEDTLS_HAVE_TIME_DATE and MBEDTLS_VERSION_FEATURES in some test suites.
Contributed by Deomid Ryabkov. Fixes #1299, #1475. * (2.9, 2.7, 2.1) Fixed the
Makefile build process for building shared libraries on Mac OS X. Fixed by
mnacamura. * (2.9, 2.7, 2.1) Fixed parsing of PKCS#8 encoded Elliptic Curve
keys. Previously Mbed TLS was unable to parse keys which had only the optional
parameters field of the ECPrivateKey structure. Found by Jethro Beekman, fixed
in #1379. * (2.9, 2.7, 2.1) Added an optimisation to return the plaintext data
more quickly on unpadded CBC decryption, as stated in the
mbedtls_cipher_update() documentation. Contributed by Andy Leiserson. * (2.9,
2.7, 2.1) Fixed the overriding and ignoring of return values when parsing and
writing to a file in the pk_sign program. Found by kevlut in #1142. * (2.9)
Added restrictions to the usage of the error code MBEDTLS_ERR_SSL_WANT_READ to
situations where data needs to be fetched from the underlying transport in order
to make progress. Previously, this error code was also occasionally returned
when unexpected messages were being discarded, ignoring that further messages
could potentially already be pending to be processed in the internal buffers;
these cases led to deadlocks when event-driven I/O was used. Found and reported
by Hubert Mis in #772. * (2.9, 2.7, 2.1) Fixed buffer length assertions in the
ssl_parse_certificate_request() function which led to a potential one byte
overread of the message buffer. * (2.9, 2.7, 2.1) Fixed invalid buffer sizes
being passed to zlib during record compression and decompression. * (2.9)
Raised the soversion of libmbedcrypto to match the soversion of the maintained
2.7 branch. The soversion was increased in Mbed TLS version 2.7.1 to reflect
breaking changes in that release, but the increment was missed in 2.8.0 and
later releases outside of the 2.7 branch. Changes ------- * (2.9) Removed
some redundant code in bignum.c. Contributed by Alexey Skalozub. * (2.9, 2.7)
Added support for cmake builds where Mbed TLS is a subproject. Fix contributed
independently by Matthieu Volat and Arne Schwabe. * (2.9, 2.7, 2.1) Improved
the testing of configurations that omit certain hashes or public-key algorithms.
Includes contributions by Gert van Dijk. * (2.9, 2.7, 2.1) Improved negative
testing of X.509 parsing. * (2.9, 2.7, 2.1) Does not define global mutexes for
readdir() and gmtime() in configurations where the feature is disabled. Found
and fixed by Gergely Budai. * (2.9) Hardened the function
mbedtls_ssl_config_free() against misuse, so that it doesn't leak memory if the
user doesn't use mbedtls_ssl_conf_psk() and instead incorrectly manipulates the
configuration structure directly. Found and fix submitted by junyeonLEE in
#1220. * (2.9, 2.7, 2.1) Provided an empty implementation of
mbedtls_pkcs5_pbes2() when MBEDTLS_ASN1_PARSE_C is not enabled. This allows the
use of PBKDF2 without PBES2. Fixed by Marcos Del Sol Vives. * (2.9) Added the
order of the base point as N in the mbedtls_ecp_group structure for Curve25519,
which other curves already had. Contributed by Nicholas Wilson #481. * (2.9,
2.7, 2.1) Improved the documentation of mbedtls_net_accept(). Contributed by
Ivan Krylov. * (2.9, 2.7, 2.1) Improved the documentation of
mbedtls_ssl_write(). Suggested by Paul Sokolovsky in #1356. * (2.9, 2.7, 2.1)
Added an option in the Makefile to support ar utilities where the operation
letter must not be prefixed by '-', such as LLVM. Found and fixed by Alex Hixon.
* (2.9, 2.7, 2.1) Added the ability to allow configuration of the shared library
extension by setting the DLEXT environment variable when using the project
makefiles. * (2.9) Optimized unnecessary zeroing in mbedtls_mpi_copy(). Based
on a contribution by Alexey Skalozub in #405. * (2.9, 2.7, 2.1) Changed the
SSL module, such that when f_send, f_recv or f_recv_timeout report transmitting
more than the required length, they now return an error. Raised by Sam O'Connor
in #1245. * (2.9, 2.7, 2.1) Improved the robustness of
mbedtls_ssl_derive_keys() against the use of HMAC functions with non-HMAC
ciphersuites. Independently contributed by Jiayuan Chen. Fixes #1437. * (2.9)
Improved security of RSA key generation by including criteria from FIPS 186-4.
Contributed by Jethro Beekman. #1380 * (2.9) Added declaration of functions in
header files even when an alternative implementation of the corresponding module
uses an MBEDTLS_..._ALT macro. This means that alternative implementations no
longer need to copy the declarations, and ensures that they will have the same
API. * (2.9) Added platform setup and teardown calls in test suites, for
consistency, and to allow the test suites to work on platforms with
cryptographic acceleration.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 17 2018 Robert Scheck <robert(a)fedoraproject.org> 0.7.1-8
- Rebuilt for mbed TLS 2.7.3/2.9.0 (libmbedcrypto.so.2)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1575175 - mbedtls-2.9.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1575175
--------------------------------------------------------------------------------
================================================================================
docker-1.13.1-54.git6c336e4.fc28 (FEDORA-2018-63ae1c9b05)
Automates deployment of containerized applications
--------------------------------------------------------------------------------
Update Information:
Resolves: #1559274
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Frantisek Kluknavsky <fkluknav(a)redhat.com> -
2:1.13.1-54.git6c336e4
- Resolves: #1559274
- built docker @projectatomic/docker-1.13.1 commit 6c336e4
- built docker-novolume-plugin commit 385ec70
- built rhel-push-plugin commit af9107b
- built docker-lvm-plugin commit 04caa55
- built docker-runc @projectatomic/docker-1.13.1 commit 345dcfa
- built docker-containerd @projectatomic/docker-1.13.1 commit 375cb68
- built docker-init commit 5b117de
- built libnetwork commit c15b372
* Tue May 15 2018 Frantisek Kluknavsky <fkluknav(a)redhat.com> -
2:1.13.1-53.git89b0e65
- do not compress debuginfo with dwz to support delve debugger
* Fri Apr 13 2018 Lokesh Mandvekar <lsm5(a)fedoraproject.org> -
2:1.13.1-52.git89b0e65
- Resolves: #1558425
- built docker @projectatomic/docker-1.13.1 commit 89b0e65
- built docker-novolume-plugin commit 385ec70
- built rhel-push-plugin commit af9107b
- built docker-lvm-plugin commit 04caa55
- built docker-runc @projectatomic/docker-1.13.1 commit 345dcfa
- built docker-containerd @projectatomic/docker-1.13.1 commit 375cb68
- built docker-init commit 5b117de
- built libnetwork commit c15b372
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1559274 - .dockerignore is not processed correctly: `/bla` entry should
ignore directory named "bla" in root, but it doesn't
https://bugzilla.redhat.com/show_bug.cgi?id=1559274
--------------------------------------------------------------------------------
================================================================================
dolphin-emu-5.0-22.fc28 (FEDORA-2018-044964688a)
GameCube / Wii / Triforce Emulator
--------------------------------------------------------------------------------
Update Information:
Mbed TLS 2.9.0 ============== Description ----------- Mbed TLS version 2.9.0
has now been released, in addition to maintenance releases for Mbed TLS 2.1 and
Mbed TLS 1.3. Mbed TLS 2.9.0 introduces some minor functional improvements
including code size reductions with smaller AES tables, and initial support for
Curve448 along with some security fixes and bug fixes. Security -------- *
(2.9, 2.7, 2.1) Fixed an issue in the X.509 module which could lead to a buffer
overread during certificate validation. Additionally, the issue could also lead
to unnecessary callback checks being made or to some validation checks to be
omitted. The overread could be triggered remotely, while the other issues would
require a non DER-compliant certificate to be correctly signed by a trusted CA,
or a trusted CA with a non DER-compliant certificate. Found by luocm. Fixes
#825. * (2.9, 2.7, 2.1) Fixed the buffer length assertion in the
ssl_parse_certificate_request() function which could lead to an arbitrary
overread of the message buffer. The overreads could be caused by receiving a
malformed algorithms section which was too short. In builds with debug output,
this overread data was output with the debug data. * (2.9, 2.7, 2.1) Fixed a
client-side bug in the validation of the server's ciphersuite choice which could
potentially lead to the client accepting a ciphersuite it didn't offer or a
ciphersuite that could not be used with the TLS or DTLS version chosen by the
server. This could lead to corruption of internal data structures for some
configurations. Features -------- * (2.9) Added an option of
MBEDTLS_AES_FEWER_TABLES, to dynamically compute smaller AES tables during
runtime, thereby reducing the RAM/ROM footprint by ~6KiB. Suggested and
contributed by jkivilin. * (2.9) Added initial support for Curve448 (RFC
7748). So far only mbedtls_ecp_mul() and ECDH primitive functions
(mbedtls_ecdh_gen_public(), mbedtls_ecdh_compute_shared()) are supported for
now. Contributed by Nicholas Wilson. API Changes ----------- Mbed TLS 2.9.0
maintains source code and binary compatibility with the last minor version, Mbed
TLS 2.8.0, but extends the interface with additional capabilities. * (2.9)
Extended the API with the function of mbedtls_net_poll() to allow user
applications to wait for a network context to become ready before reading or
writing. * (2.9) Added the function mbedtls_ssl_check_pending() to the public
API to allow a check for whether more more data is pending to be processed in
the internal message buffers. This function is necessary to determine the
underlying transport when event-driven IO is used. Bugfix ------ * (2.9,
2.7) Fixed a spurious uninitialized variable warning in cmac.c. Fix
independently contributed by Brian J Murray and David Brown. * (2.9, 2.7, 2.1)
Added missing dependencies in test suites that led to build failures in
configurations that omit certain hashes or public-key algorithms. Fixes #1040.
* (2.9, 2.7) Fixed a C89 incompatibility issue in benchmark.c. Contributed by
Brendan Shanks. Fixes #1353. * (2.9, 2.7, 2.1) Added missing dependencies for
MBEDTLS_HAVE_TIME_DATE and MBEDTLS_VERSION_FEATURES in some test suites.
Contributed by Deomid Ryabkov. Fixes #1299, #1475. * (2.9, 2.7, 2.1) Fixed the
Makefile build process for building shared libraries on Mac OS X. Fixed by
mnacamura. * (2.9, 2.7, 2.1) Fixed parsing of PKCS#8 encoded Elliptic Curve
keys. Previously Mbed TLS was unable to parse keys which had only the optional
parameters field of the ECPrivateKey structure. Found by Jethro Beekman, fixed
in #1379. * (2.9, 2.7, 2.1) Added an optimisation to return the plaintext data
more quickly on unpadded CBC decryption, as stated in the
mbedtls_cipher_update() documentation. Contributed by Andy Leiserson. * (2.9,
2.7, 2.1) Fixed the overriding and ignoring of return values when parsing and
writing to a file in the pk_sign program. Found by kevlut in #1142. * (2.9)
Added restrictions to the usage of the error code MBEDTLS_ERR_SSL_WANT_READ to
situations where data needs to be fetched from the underlying transport in order
to make progress. Previously, this error code was also occasionally returned
when unexpected messages were being discarded, ignoring that further messages
could potentially already be pending to be processed in the internal buffers;
these cases led to deadlocks when event-driven I/O was used. Found and reported
by Hubert Mis in #772. * (2.9, 2.7, 2.1) Fixed buffer length assertions in the
ssl_parse_certificate_request() function which led to a potential one byte
overread of the message buffer. * (2.9, 2.7, 2.1) Fixed invalid buffer sizes
being passed to zlib during record compression and decompression. * (2.9)
Raised the soversion of libmbedcrypto to match the soversion of the maintained
2.7 branch. The soversion was increased in Mbed TLS version 2.7.1 to reflect
breaking changes in that release, but the increment was missed in 2.8.0 and
later releases outside of the 2.7 branch. Changes ------- * (2.9) Removed
some redundant code in bignum.c. Contributed by Alexey Skalozub. * (2.9, 2.7)
Added support for cmake builds where Mbed TLS is a subproject. Fix contributed
independently by Matthieu Volat and Arne Schwabe. * (2.9, 2.7, 2.1) Improved
the testing of configurations that omit certain hashes or public-key algorithms.
Includes contributions by Gert van Dijk. * (2.9, 2.7, 2.1) Improved negative
testing of X.509 parsing. * (2.9, 2.7, 2.1) Does not define global mutexes for
readdir() and gmtime() in configurations where the feature is disabled. Found
and fixed by Gergely Budai. * (2.9) Hardened the function
mbedtls_ssl_config_free() against misuse, so that it doesn't leak memory if the
user doesn't use mbedtls_ssl_conf_psk() and instead incorrectly manipulates the
configuration structure directly. Found and fix submitted by junyeonLEE in
#1220. * (2.9, 2.7, 2.1) Provided an empty implementation of
mbedtls_pkcs5_pbes2() when MBEDTLS_ASN1_PARSE_C is not enabled. This allows the
use of PBKDF2 without PBES2. Fixed by Marcos Del Sol Vives. * (2.9) Added the
order of the base point as N in the mbedtls_ecp_group structure for Curve25519,
which other curves already had. Contributed by Nicholas Wilson #481. * (2.9,
2.7, 2.1) Improved the documentation of mbedtls_net_accept(). Contributed by
Ivan Krylov. * (2.9, 2.7, 2.1) Improved the documentation of
mbedtls_ssl_write(). Suggested by Paul Sokolovsky in #1356. * (2.9, 2.7, 2.1)
Added an option in the Makefile to support ar utilities where the operation
letter must not be prefixed by '-', such as LLVM. Found and fixed by Alex Hixon.
* (2.9, 2.7, 2.1) Added the ability to allow configuration of the shared library
extension by setting the DLEXT environment variable when using the project
makefiles. * (2.9) Optimized unnecessary zeroing in mbedtls_mpi_copy(). Based
on a contribution by Alexey Skalozub in #405. * (2.9, 2.7, 2.1) Changed the
SSL module, such that when f_send, f_recv or f_recv_timeout report transmitting
more than the required length, they now return an error. Raised by Sam O'Connor
in #1245. * (2.9, 2.7, 2.1) Improved the robustness of
mbedtls_ssl_derive_keys() against the use of HMAC functions with non-HMAC
ciphersuites. Independently contributed by Jiayuan Chen. Fixes #1437. * (2.9)
Improved security of RSA key generation by including criteria from FIPS 186-4.
Contributed by Jethro Beekman. #1380 * (2.9) Added declaration of functions in
header files even when an alternative implementation of the corresponding module
uses an MBEDTLS_..._ALT macro. This means that alternative implementations no
longer need to copy the declarations, and ensures that they will have the same
API. * (2.9) Added platform setup and teardown calls in test suites, for
consistency, and to allow the test suites to work on platforms with
cryptographic acceleration.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Robert Scheck <robert(a)fedoraproject.org> - 5.0-22
- Rebuilt for mbed TLS 2.9.0 (libmbedcrypto.so.2)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1575175 - mbedtls-2.9.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1575175
--------------------------------------------------------------------------------
================================================================================
fedpkg-1.33-1.fc28 (FEDORA-2018-02a72376d5)
Fedora utility for working with dist-git
--------------------------------------------------------------------------------
Update Information:
- Allow running tests against specified rpkg (cqi) - Fix test due to rpkg uses
getpass.getuser (cqi) - Getting bodhi version works with Python 3 - #213 (cqi) -
Detect Bodhi client by major version - #204 (cqi) - Allow requesting modular
repositories without bug ID - #197 (rdossant) - Fix test
test_verify_sls_invalid_date - #209 (cqi) - Copy pip-pycurl to ensure pycurl is
installed correctly (cqi) - Fix unicode issue for update command in Python 3 -
#206 (cqi) - Fix a few E722 code styles errors (cqi) - Fix fake PDC URL in test
(cqi) - Use tox to run tests with multiple Python versions (cqi) - Reword error
message for missing pagure token - #194 (cqi) - Tell which token ACL is required
for request-repo - #195 (cqi) - Rename incorrect references of Koshei to be
Anitya (mprahl)
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 14 2018 Chenxiong Qi <cqi(a)redhat.com> - 1.33-1
- Allow running tests against specified rpkg (cqi)
- Fix test due to rpkg uses getpass.getuser (cqi)
- Getting bodhi version works with Python 3 - #213 (cqi)
- Detect Bodhi client by major version - #204 (cqi)
- Allow requesting modular repositories without bug ID - #197 (rdossant)
- Fix test test_verify_sls_invalid_date - #209 (cqi)
- Copy pip-pycurl to ensure pycurl is installed correctly (cqi)
- Fix unicode issue for update command in Python 3 - #206 (cqi)
- Fix a few E722 code styles errors (cqi)
- Fix fake PDC URL in test (cqi)
- Use tox to run tests with multiple Python versions (cqi)
- Reword error message for missing pagure token - #194 (cqi)
- Tell which token ACL is required for request-repo - #195 (cqi)
- Rename incorrect references of Koshei to be Anitya (mprahl)
* Thu May 10 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 1.32-2
- Switch to Python 3 on Fedora > 28 and EL > 7
- Drop Groups
- Switch to %{buildroot}
- Switch to %py_build and _install
--------------------------------------------------------------------------------
================================================================================
ghdl-0.35dev-0.20180520git66bb071.0.fc28 (FEDORA-2018-4c44f7a8e3)
A VHDL simulator, using the GCC technology
--------------------------------------------------------------------------------
Update Information:
- update to git66bb071
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 20 2018 Thomas Sailer <t.sailer(a)alumni.ethz.ch> -
0.35dev-0.20180520git66bb071.0
- update to 0.35dev (git66bb071)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1576131 - GHDL tries to link against gnat-7 but should against gnat-8
https://bugzilla.redhat.com/show_bug.cgi?id=1576131
--------------------------------------------------------------------------------
================================================================================
git-cinnabar-0.5.0-0.2.b3.fc28 (FEDORA-2018-8f26b2ba62)
Git remote helper to interact with mercurial repositories
--------------------------------------------------------------------------------
Update Information:
Update to latest beta * Miscellaneous metadata format changes. * Move more
operations to the helper, hopefully making things faster. * Updated git to
2.17.0 for the helper. * Properly handle clones with bundles when the repository
doesn't contain anything newer than the bundle. * Fixed tag cache, which could
lead to missing tags.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
gst-editing-services-1.14.1-1.fc28 (FEDORA-2018-9c2e51c07c)
Gstreamer editing services
--------------------------------------------------------------------------------
Update Information:
update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Wim Taymans <wim.taymans(a)gmail.com> - 1.14.1-1
- update to 1.14.1
--------------------------------------------------------------------------------
================================================================================
gstreamer1-1.14.1-1.fc28 (FEDORA-2018-4ca4d2da44)
GStreamer streaming media framework runtime
--------------------------------------------------------------------------------
Update Information:
Update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Wim Taymans <wtaymans(a)redhat.com> - 1.14.1-1
- Update to 1.14.1
- Remove obsolete patch
--------------------------------------------------------------------------------
================================================================================
gstreamer1-plugins-bad-free-1.14.1-1.fc28 (FEDORA-2018-c03425c9ce)
GStreamer streaming media framework "bad" plugins
--------------------------------------------------------------------------------
Update Information:
Update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Wim Taymans <wtaymans(a)redhat.com> - 1.14.1-1
- Update to 1.14.1
- Use openjpeg2 instead of openjpeg (#1553079)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1553079 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1553079
--------------------------------------------------------------------------------
================================================================================
gstreamer1-plugins-base-1.14.1-1.fc28 (FEDORA-2018-ff488bee35)
GStreamer streaming media framework base plugins
--------------------------------------------------------------------------------
Update Information:
Update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Wim Taymans <wtaymans(a)redhat.com> - 1.14.1-1
- Update to 1.14.1
- Remove obsolete patches
--------------------------------------------------------------------------------
================================================================================
gstreamer1-plugins-good-1.14.1-1.fc28 (FEDORA-2018-f6701f690c)
GStreamer plugins with good code and licensing
--------------------------------------------------------------------------------
Update Information:
Update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Wim Taymans <wtaymans(a)redhat.com> - 1.14.1-1
- Update to 1.14.1
* Fri Mar 23 2018 Iryna Shcherbina <ishcherb(a)redhat.com> - 1.14.0-2
- Update Python 2 dependency declarations to new packaging standards
(See
https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3)
--------------------------------------------------------------------------------
================================================================================
gstreamer1-plugins-ugly-free-1.14.1-1.fc28 (FEDORA-2018-cdd27c4f3e)
GStreamer streaming media framework "ugly" plugins
--------------------------------------------------------------------------------
Update Information:
Update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Wim Taymans <wtaymans(a)redhat.com> - 1.14.1-1
- Update to 1.14.1
--------------------------------------------------------------------------------
================================================================================
gstreamer1-rtsp-server-1.14.1-1.fc28 (FEDORA-2018-0c6ee6f115)
GStreamer RTSP server library
--------------------------------------------------------------------------------
Update Information:
update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Wim Taymans <wtaymans(a)redhat.com> - 1.14.1-1
- update to 1.14.1
--------------------------------------------------------------------------------
================================================================================
gstreamer1-vaapi-1.14.1-1.fc28 (FEDORA-2018-26fb93a09f)
GStreamer plugins to use VA API video acceleration
--------------------------------------------------------------------------------
Update Information:
Update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Taymans <wtaymans(a)redhat.com> - 1.14.1-1
- Update to 1.14.1
--------------------------------------------------------------------------------
================================================================================
kdevelop-5.2.3-1.fc28 (FEDORA-2018-dc9d1436b3)
Integrated Development Environment for C++/C
--------------------------------------------------------------------------------
Update Information:
KDevelop 5.2.3 release. See
https://www.kdevelop.org/news/kdevelop-522-and-523-released for more
information.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Jan Grulich <jgrulich(a)redhat.com> - 9:5.2.3-1
- Update to 5.2.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1580000 - kdevelop-5.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1580000
--------------------------------------------------------------------------------
================================================================================
kdevelop-php-5.2.3-1.fc28 (FEDORA-2018-dc9d1436b3)
Php language and documentation plugins for KDevelop
--------------------------------------------------------------------------------
Update Information:
KDevelop 5.2.3 release. See
https://www.kdevelop.org/news/kdevelop-522-and-523-released for more
information.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Jan Grulich <jgrulich(a)redhat.com> - 5.2.3-1
- Update to 5.2.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1580000 - kdevelop-5.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1580000
--------------------------------------------------------------------------------
================================================================================
kdevelop-python-5.2.3-1.py3.fc28 (FEDORA-2018-dc9d1436b3)
Python 3 Plugin for KDevelop
--------------------------------------------------------------------------------
Update Information:
KDevelop 5.2.3 release. See
https://www.kdevelop.org/news/kdevelop-522-and-523-released for more
information.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Jan Grulich <jgrulich(a)redhat.com> - 5.2.3-1.py3
- Update to 5.2.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1580000 - kdevelop-5.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1580000
--------------------------------------------------------------------------------
================================================================================
kea-1.3.0-9.fc28 (FEDORA-2018-15c950203f)
DHCPv4, DHCPv6 and DDNS server from ISC
--------------------------------------------------------------------------------
Update Information:
Fix config files names (#1579298)
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 17 2018 Pavel Zhukov <pzhukov(a)redhat.com> - 1.3.0-9
- Fix config files names (#1579298)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1579298 - Kea systemd service files reference config file that doesn't
exist
https://bugzilla.redhat.com/show_bug.cgi?id=1579298
--------------------------------------------------------------------------------
================================================================================
libgnomekbd-3.26.0-5.fc28 (FEDORA-2018-1403338387)
A keyboard configuration library
--------------------------------------------------------------------------------
Update Information:
Remove obsolete GConf2 scriptlets
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Kalev Lember <klember(a)redhat.com> - 3.26.0-5
- Remove obsolete GConf2 scriptlets (#1277728)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277728 - Retire GConf2 dependency
https://bugzilla.redhat.com/show_bug.cgi?id=1277728
--------------------------------------------------------------------------------
================================================================================
libidn2-2.0.5-1.fc28 (FEDORA-2018-5c033fdd13)
Library to support IDNA2008 internationalized domain names
--------------------------------------------------------------------------------
Update Information:
Libidn 2.0.5 (released 2018-05-18) ================================== *
Switched the default library behavior to IDNA2008 as amended by TR#46 (non-
transitional). That default behavior is enabled when no flags are specified to
function calls. Applications can utilize the %IDN2_NO_TR46 flag to switch to the
unamended IDNA2008. This is done in the interest of interoperability based on
the fact that this is what application writers care about rather than strict
compliance with a particular protocol. * Fixed memleak in
idn2_to_unicode_8zlz(). * Return error (IDN2_ICONV_FAIL) on charset conversion
errors. * Fixed issue with STD3 rules applying in non-transitional TR46 mode.
* idn2: added option --usestd3asciirules.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Robert Scheck <robert(a)fedoraproject.org> 2.0.5-1
- Upgrade to 2.0.5 (#1577864, #1579825)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1577864 - libidn2: Enable TR46 by default
https://bugzilla.redhat.com/show_bug.cgi?id=1577864
[ 2 ] Bug #1579825 - libidn2-2.0.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1579825
--------------------------------------------------------------------------------
================================================================================
logwatch-7.4.3-10.fc28 (FEDORA-2018-948f036ba1)
A log file analysis program
--------------------------------------------------------------------------------
Update Information:
Fix parsing of log entries produced by sendmail process with 7-digit PID
(rhbz#1561587)
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Jan Syn����ek <jsynacek(a)redhat.com> - 7.4.3-10
- Fix parsing of log entries produced by sendmail process with 7-digit PID (#1561587)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1561587 - Logwatch fails to parse log entries produced by sendmail process
with 7-digit PID
https://bugzilla.redhat.com/show_bug.cgi?id=1561587
--------------------------------------------------------------------------------
================================================================================
mbedtls-2.9.0-1.fc28 (FEDORA-2018-044964688a)
Light-weight cryptographic and SSL/TLS library
--------------------------------------------------------------------------------
Update Information:
Mbed TLS 2.9.0 ============== Description ----------- Mbed TLS version 2.9.0
has now been released, in addition to maintenance releases for Mbed TLS 2.1 and
Mbed TLS 1.3. Mbed TLS 2.9.0 introduces some minor functional improvements
including code size reductions with smaller AES tables, and initial support for
Curve448 along with some security fixes and bug fixes. Security -------- *
(2.9, 2.7, 2.1) Fixed an issue in the X.509 module which could lead to a buffer
overread during certificate validation. Additionally, the issue could also lead
to unnecessary callback checks being made or to some validation checks to be
omitted. The overread could be triggered remotely, while the other issues would
require a non DER-compliant certificate to be correctly signed by a trusted CA,
or a trusted CA with a non DER-compliant certificate. Found by luocm. Fixes
#825. * (2.9, 2.7, 2.1) Fixed the buffer length assertion in the
ssl_parse_certificate_request() function which could lead to an arbitrary
overread of the message buffer. The overreads could be caused by receiving a
malformed algorithms section which was too short. In builds with debug output,
this overread data was output with the debug data. * (2.9, 2.7, 2.1) Fixed a
client-side bug in the validation of the server's ciphersuite choice which could
potentially lead to the client accepting a ciphersuite it didn't offer or a
ciphersuite that could not be used with the TLS or DTLS version chosen by the
server. This could lead to corruption of internal data structures for some
configurations. Features -------- * (2.9) Added an option of
MBEDTLS_AES_FEWER_TABLES, to dynamically compute smaller AES tables during
runtime, thereby reducing the RAM/ROM footprint by ~6KiB. Suggested and
contributed by jkivilin. * (2.9) Added initial support for Curve448 (RFC
7748). So far only mbedtls_ecp_mul() and ECDH primitive functions
(mbedtls_ecdh_gen_public(), mbedtls_ecdh_compute_shared()) are supported for
now. Contributed by Nicholas Wilson. API Changes ----------- Mbed TLS 2.9.0
maintains source code and binary compatibility with the last minor version, Mbed
TLS 2.8.0, but extends the interface with additional capabilities. * (2.9)
Extended the API with the function of mbedtls_net_poll() to allow user
applications to wait for a network context to become ready before reading or
writing. * (2.9) Added the function mbedtls_ssl_check_pending() to the public
API to allow a check for whether more more data is pending to be processed in
the internal message buffers. This function is necessary to determine the
underlying transport when event-driven IO is used. Bugfix ------ * (2.9,
2.7) Fixed a spurious uninitialized variable warning in cmac.c. Fix
independently contributed by Brian J Murray and David Brown. * (2.9, 2.7, 2.1)
Added missing dependencies in test suites that led to build failures in
configurations that omit certain hashes or public-key algorithms. Fixes #1040.
* (2.9, 2.7) Fixed a C89 incompatibility issue in benchmark.c. Contributed by
Brendan Shanks. Fixes #1353. * (2.9, 2.7, 2.1) Added missing dependencies for
MBEDTLS_HAVE_TIME_DATE and MBEDTLS_VERSION_FEATURES in some test suites.
Contributed by Deomid Ryabkov. Fixes #1299, #1475. * (2.9, 2.7, 2.1) Fixed the
Makefile build process for building shared libraries on Mac OS X. Fixed by
mnacamura. * (2.9, 2.7, 2.1) Fixed parsing of PKCS#8 encoded Elliptic Curve
keys. Previously Mbed TLS was unable to parse keys which had only the optional
parameters field of the ECPrivateKey structure. Found by Jethro Beekman, fixed
in #1379. * (2.9, 2.7, 2.1) Added an optimisation to return the plaintext data
more quickly on unpadded CBC decryption, as stated in the
mbedtls_cipher_update() documentation. Contributed by Andy Leiserson. * (2.9,
2.7, 2.1) Fixed the overriding and ignoring of return values when parsing and
writing to a file in the pk_sign program. Found by kevlut in #1142. * (2.9)
Added restrictions to the usage of the error code MBEDTLS_ERR_SSL_WANT_READ to
situations where data needs to be fetched from the underlying transport in order
to make progress. Previously, this error code was also occasionally returned
when unexpected messages were being discarded, ignoring that further messages
could potentially already be pending to be processed in the internal buffers;
these cases led to deadlocks when event-driven I/O was used. Found and reported
by Hubert Mis in #772. * (2.9, 2.7, 2.1) Fixed buffer length assertions in the
ssl_parse_certificate_request() function which led to a potential one byte
overread of the message buffer. * (2.9, 2.7, 2.1) Fixed invalid buffer sizes
being passed to zlib during record compression and decompression. * (2.9)
Raised the soversion of libmbedcrypto to match the soversion of the maintained
2.7 branch. The soversion was increased in Mbed TLS version 2.7.1 to reflect
breaking changes in that release, but the increment was missed in 2.8.0 and
later releases outside of the 2.7 branch. Changes ------- * (2.9) Removed
some redundant code in bignum.c. Contributed by Alexey Skalozub. * (2.9, 2.7)
Added support for cmake builds where Mbed TLS is a subproject. Fix contributed
independently by Matthieu Volat and Arne Schwabe. * (2.9, 2.7, 2.1) Improved
the testing of configurations that omit certain hashes or public-key algorithms.
Includes contributions by Gert van Dijk. * (2.9, 2.7, 2.1) Improved negative
testing of X.509 parsing. * (2.9, 2.7, 2.1) Does not define global mutexes for
readdir() and gmtime() in configurations where the feature is disabled. Found
and fixed by Gergely Budai. * (2.9) Hardened the function
mbedtls_ssl_config_free() against misuse, so that it doesn't leak memory if the
user doesn't use mbedtls_ssl_conf_psk() and instead incorrectly manipulates the
configuration structure directly. Found and fix submitted by junyeonLEE in
#1220. * (2.9, 2.7, 2.1) Provided an empty implementation of
mbedtls_pkcs5_pbes2() when MBEDTLS_ASN1_PARSE_C is not enabled. This allows the
use of PBKDF2 without PBES2. Fixed by Marcos Del Sol Vives. * (2.9) Added the
order of the base point as N in the mbedtls_ecp_group structure for Curve25519,
which other curves already had. Contributed by Nicholas Wilson #481. * (2.9,
2.7, 2.1) Improved the documentation of mbedtls_net_accept(). Contributed by
Ivan Krylov. * (2.9, 2.7, 2.1) Improved the documentation of
mbedtls_ssl_write(). Suggested by Paul Sokolovsky in #1356. * (2.9, 2.7, 2.1)
Added an option in the Makefile to support ar utilities where the operation
letter must not be prefixed by '-', such as LLVM. Found and fixed by Alex Hixon.
* (2.9, 2.7, 2.1) Added the ability to allow configuration of the shared library
extension by setting the DLEXT environment variable when using the project
makefiles. * (2.9) Optimized unnecessary zeroing in mbedtls_mpi_copy(). Based
on a contribution by Alexey Skalozub in #405. * (2.9, 2.7, 2.1) Changed the
SSL module, such that when f_send, f_recv or f_recv_timeout report transmitting
more than the required length, they now return an error. Raised by Sam O'Connor
in #1245. * (2.9, 2.7, 2.1) Improved the robustness of
mbedtls_ssl_derive_keys() against the use of HMAC functions with non-HMAC
ciphersuites. Independently contributed by Jiayuan Chen. Fixes #1437. * (2.9)
Improved security of RSA key generation by including criteria from FIPS 186-4.
Contributed by Jethro Beekman. #1380 * (2.9) Added declaration of functions in
header files even when an alternative implementation of the corresponding module
uses an MBEDTLS_..._ALT macro. This means that alternative implementations no
longer need to copy the declarations, and ensures that they will have the same
API. * (2.9) Added platform setup and teardown calls in test suites, for
consistency, and to allow the test suites to work on platforms with
cryptographic acceleration.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 16 2018 Morten Stevens <mstevens(a)fedoraproject.org> - 2.9.0-1
- Update to 2.90
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1575175 - mbedtls-2.9.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1575175
--------------------------------------------------------------------------------
================================================================================
mint-themes-1.6.4-1.fc28 (FEDORA-2018-354b88aded)
Mint themes
--------------------------------------------------------------------------------
Update Information:
Update
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Leigh Scott <leigh123linux(a)googlemail.com> - 1:1.6.4-1
- Update to 1.6.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1579337 - mint-themes-1.6.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1579337
[ 2 ] Bug #1578599 - mint-y-icons-1.1.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1578599
--------------------------------------------------------------------------------
================================================================================
mint-y-icons-1.1.9-1.fc28 (FEDORA-2018-354b88aded)
The Mint-Y icon theme
--------------------------------------------------------------------------------
Update Information:
Update
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Leigh Scott <leigh123linux(a)googlemail.com> - 1.1.9-1
- New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1579337 - mint-themes-1.6.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1579337
[ 2 ] Bug #1578599 - mint-y-icons-1.1.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1578599
--------------------------------------------------------------------------------
================================================================================
mosquitto-1.5-1.fc28 (FEDORA-2018-7c132fef8a)
An Open Source MQTT v3.1/v3.1.1 Broker
--------------------------------------------------------------------------------
Update Information:
Update to new upstream version 1.5 (rhbz#1580115)
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 20 2018 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.5-2
- Update to new upstream version 1.5 (rhbz#1580115)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1580115 - Update mosquitto to new 1.5 upstream
https://bugzilla.redhat.com/show_bug.cgi?id=1580115
--------------------------------------------------------------------------------
================================================================================
nekovm-2.2.0-4.fc28 (FEDORA-2018-044964688a)
Neko embedded scripting language and virtual machine
--------------------------------------------------------------------------------
Update Information:
Mbed TLS 2.9.0 ============== Description ----------- Mbed TLS version 2.9.0
has now been released, in addition to maintenance releases for Mbed TLS 2.1 and
Mbed TLS 1.3. Mbed TLS 2.9.0 introduces some minor functional improvements
including code size reductions with smaller AES tables, and initial support for
Curve448 along with some security fixes and bug fixes. Security -------- *
(2.9, 2.7, 2.1) Fixed an issue in the X.509 module which could lead to a buffer
overread during certificate validation. Additionally, the issue could also lead
to unnecessary callback checks being made or to some validation checks to be
omitted. The overread could be triggered remotely, while the other issues would
require a non DER-compliant certificate to be correctly signed by a trusted CA,
or a trusted CA with a non DER-compliant certificate. Found by luocm. Fixes
#825. * (2.9, 2.7, 2.1) Fixed the buffer length assertion in the
ssl_parse_certificate_request() function which could lead to an arbitrary
overread of the message buffer. The overreads could be caused by receiving a
malformed algorithms section which was too short. In builds with debug output,
this overread data was output with the debug data. * (2.9, 2.7, 2.1) Fixed a
client-side bug in the validation of the server's ciphersuite choice which could
potentially lead to the client accepting a ciphersuite it didn't offer or a
ciphersuite that could not be used with the TLS or DTLS version chosen by the
server. This could lead to corruption of internal data structures for some
configurations. Features -------- * (2.9) Added an option of
MBEDTLS_AES_FEWER_TABLES, to dynamically compute smaller AES tables during
runtime, thereby reducing the RAM/ROM footprint by ~6KiB. Suggested and
contributed by jkivilin. * (2.9) Added initial support for Curve448 (RFC
7748). So far only mbedtls_ecp_mul() and ECDH primitive functions
(mbedtls_ecdh_gen_public(), mbedtls_ecdh_compute_shared()) are supported for
now. Contributed by Nicholas Wilson. API Changes ----------- Mbed TLS 2.9.0
maintains source code and binary compatibility with the last minor version, Mbed
TLS 2.8.0, but extends the interface with additional capabilities. * (2.9)
Extended the API with the function of mbedtls_net_poll() to allow user
applications to wait for a network context to become ready before reading or
writing. * (2.9) Added the function mbedtls_ssl_check_pending() to the public
API to allow a check for whether more more data is pending to be processed in
the internal message buffers. This function is necessary to determine the
underlying transport when event-driven IO is used. Bugfix ------ * (2.9,
2.7) Fixed a spurious uninitialized variable warning in cmac.c. Fix
independently contributed by Brian J Murray and David Brown. * (2.9, 2.7, 2.1)
Added missing dependencies in test suites that led to build failures in
configurations that omit certain hashes or public-key algorithms. Fixes #1040.
* (2.9, 2.7) Fixed a C89 incompatibility issue in benchmark.c. Contributed by
Brendan Shanks. Fixes #1353. * (2.9, 2.7, 2.1) Added missing dependencies for
MBEDTLS_HAVE_TIME_DATE and MBEDTLS_VERSION_FEATURES in some test suites.
Contributed by Deomid Ryabkov. Fixes #1299, #1475. * (2.9, 2.7, 2.1) Fixed the
Makefile build process for building shared libraries on Mac OS X. Fixed by
mnacamura. * (2.9, 2.7, 2.1) Fixed parsing of PKCS#8 encoded Elliptic Curve
keys. Previously Mbed TLS was unable to parse keys which had only the optional
parameters field of the ECPrivateKey structure. Found by Jethro Beekman, fixed
in #1379. * (2.9, 2.7, 2.1) Added an optimisation to return the plaintext data
more quickly on unpadded CBC decryption, as stated in the
mbedtls_cipher_update() documentation. Contributed by Andy Leiserson. * (2.9,
2.7, 2.1) Fixed the overriding and ignoring of return values when parsing and
writing to a file in the pk_sign program. Found by kevlut in #1142. * (2.9)
Added restrictions to the usage of the error code MBEDTLS_ERR_SSL_WANT_READ to
situations where data needs to be fetched from the underlying transport in order
to make progress. Previously, this error code was also occasionally returned
when unexpected messages were being discarded, ignoring that further messages
could potentially already be pending to be processed in the internal buffers;
these cases led to deadlocks when event-driven I/O was used. Found and reported
by Hubert Mis in #772. * (2.9, 2.7, 2.1) Fixed buffer length assertions in the
ssl_parse_certificate_request() function which led to a potential one byte
overread of the message buffer. * (2.9, 2.7, 2.1) Fixed invalid buffer sizes
being passed to zlib during record compression and decompression. * (2.9)
Raised the soversion of libmbedcrypto to match the soversion of the maintained
2.7 branch. The soversion was increased in Mbed TLS version 2.7.1 to reflect
breaking changes in that release, but the increment was missed in 2.8.0 and
later releases outside of the 2.7 branch. Changes ------- * (2.9) Removed
some redundant code in bignum.c. Contributed by Alexey Skalozub. * (2.9, 2.7)
Added support for cmake builds where Mbed TLS is a subproject. Fix contributed
independently by Matthieu Volat and Arne Schwabe. * (2.9, 2.7, 2.1) Improved
the testing of configurations that omit certain hashes or public-key algorithms.
Includes contributions by Gert van Dijk. * (2.9, 2.7, 2.1) Improved negative
testing of X.509 parsing. * (2.9, 2.7, 2.1) Does not define global mutexes for
readdir() and gmtime() in configurations where the feature is disabled. Found
and fixed by Gergely Budai. * (2.9) Hardened the function
mbedtls_ssl_config_free() against misuse, so that it doesn't leak memory if the
user doesn't use mbedtls_ssl_conf_psk() and instead incorrectly manipulates the
configuration structure directly. Found and fix submitted by junyeonLEE in
#1220. * (2.9, 2.7, 2.1) Provided an empty implementation of
mbedtls_pkcs5_pbes2() when MBEDTLS_ASN1_PARSE_C is not enabled. This allows the
use of PBKDF2 without PBES2. Fixed by Marcos Del Sol Vives. * (2.9) Added the
order of the base point as N in the mbedtls_ecp_group structure for Curve25519,
which other curves already had. Contributed by Nicholas Wilson #481. * (2.9,
2.7, 2.1) Improved the documentation of mbedtls_net_accept(). Contributed by
Ivan Krylov. * (2.9, 2.7, 2.1) Improved the documentation of
mbedtls_ssl_write(). Suggested by Paul Sokolovsky in #1356. * (2.9, 2.7, 2.1)
Added an option in the Makefile to support ar utilities where the operation
letter must not be prefixed by '-', such as LLVM. Found and fixed by Alex Hixon.
* (2.9, 2.7, 2.1) Added the ability to allow configuration of the shared library
extension by setting the DLEXT environment variable when using the project
makefiles. * (2.9) Optimized unnecessary zeroing in mbedtls_mpi_copy(). Based
on a contribution by Alexey Skalozub in #405. * (2.9, 2.7, 2.1) Changed the
SSL module, such that when f_send, f_recv or f_recv_timeout report transmitting
more than the required length, they now return an error. Raised by Sam O'Connor
in #1245. * (2.9, 2.7, 2.1) Improved the robustness of
mbedtls_ssl_derive_keys() against the use of HMAC functions with non-HMAC
ciphersuites. Independently contributed by Jiayuan Chen. Fixes #1437. * (2.9)
Improved security of RSA key generation by including criteria from FIPS 186-4.
Contributed by Jethro Beekman. #1380 * (2.9) Added declaration of functions in
header files even when an alternative implementation of the corresponding module
uses an MBEDTLS_..._ALT macro. This means that alternative implementations no
longer need to copy the declarations, and ensures that they will have the same
API. * (2.9) Added platform setup and teardown calls in test suites, for
consistency, and to allow the test suites to work on platforms with
cryptographic acceleration.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Robert Scheck <robert(a)fedoraproject.org> - 2.2.0-4
- Rebuilt for mbed TLS 2.9.0 (libmbedcrypto.so.2)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1575175 - mbedtls-2.9.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1575175
--------------------------------------------------------------------------------
================================================================================
net-snmp-5.7.3-38.fc28 (FEDORA-2018-8894f1f77f)
A collection of SNMP protocol tools and libraries
--------------------------------------------------------------------------------
Update Information:
Revert python3 support
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Josef Ridky <jridky(a)redhat.com> - 1:5.7.3-38
- revert Python3 support
* Tue Mar 27 2018 Josef Ridky <jridky(a)redhat.com> - 1:5.7.3-37
- backport upstream patch for structure iterator
--------------------------------------------------------------------------------
================================================================================
opensc-0.18.0-2.fc28 (FEDORA-2018-678fe12c85)
Smart card library and applications
--------------------------------------------------------------------------------
Update Information:
New upstream release (#1567503)
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Jakub Jelen <jjelen(a)redhat.com> - 0.18.0-2
- Backport a fix for C_WaitForSlotEvent crash (#1579933)
* Thu May 17 2018 Jakub Jelen <jjelen(a)redhat.com> - 0.18.0-1
- New upstream release (#1567503)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1567503 - opensc-0.18.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1567503
[ 2 ] Bug #1579933 - OpenSC 0.18.0 regression: SIGSEGV during simultaneous
C_WaitForSlotEvent and C_GetSlotList
https://bugzilla.redhat.com/show_bug.cgi?id=1579933
--------------------------------------------------------------------------------
================================================================================
pam-1.3.1-1.fc28 (FEDORA-2018-d36aeb7f22)
An extensible library which provides authentication for applications
--------------------------------------------------------------------------------
Update Information:
New minor upstream release 1.3.1 with multiple bug fixes and improvements.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 18 2018 Tom���� Mr��z <tmraz(a)redhat.com> 1.3.1-1
- new upstream release 1.3.1 with multiple improvements
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1579241 - pam_motd: please distro-patch upstream support for motd.d
https://bugzilla.redhat.com/show_bug.cgi?id=1579241
[ 2 ] Bug #1543927 - libnsl2 library and header paths have changed: change build options
please
https://bugzilla.redhat.com/show_bug.cgi?id=1543927
--------------------------------------------------------------------------------
================================================================================
pan-0.145-1.fc28 (FEDORA-2018-15aa4361f6)
A Usenet newsreader for GNOME/GTK+
--------------------------------------------------------------------------------
Update Information:
This is a quick bugfix release that addresses a couple of issues, including
crashes on startup and when manipulating NZB files.
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 20 2018 Petr Kovar <pkovar(a)redhat.com> - 1:0.145-1
- Update to version 0.145
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1564190 - [abrt] pan: std::__replacement_assert(): pan killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1564190
[ 2 ] Bug #1546863 - pan fails to start after latest rawhide update to the package
https://bugzilla.redhat.com/show_bug.cgi?id=1546863
--------------------------------------------------------------------------------
================================================================================
pari-2.9.5-1.fc28 (FEDORA-2018-64bde65053)
Number Theory-oriented Computer Algebra System
--------------------------------------------------------------------------------
Update Information:
Cumulative bug-fix release from upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Paul Howarth <paul(a)city-fan.org> - 2.9.5-1
- Update to 2.9.5 (see CHANGES for details)
--------------------------------------------------------------------------------
================================================================================
perl-BSON-1.6.1-1.fc28 (FEDORA-2018-a512949fcf)
BSON serialization and deserialization
--------------------------------------------------------------------------------
Update Information:
Updated to the latest version ---- Updated to the latest version
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.6.1-1
- 1.6.1 bump
* Wed May 16 2018 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.6.0-1
- 1.6.0 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1579574 - perl-BSON-v1.6.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1579574
[ 2 ] Bug #1578594 - perl-BSON-v1.6.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1578594
--------------------------------------------------------------------------------
================================================================================
php-gettext-gettext-4.5.0-1.fc28 (FEDORA-2018-9429d4a253)
PHP gettext manager
--------------------------------------------------------------------------------
Update Information:
Update to
[
4.5.0](https://github.com/oscarotero/Gettext/blob/v4.5.0/CHANGELOG.md).
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 20 2018 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 4.5.0-1
- Update to 4.5.0 (#1571010).
-
https://github.com/oscarotero/Gettext/blob/v4.5.0/CHANGELOG.md
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1571010 - php-gettext-gettext-v4.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1571010
--------------------------------------------------------------------------------
================================================================================
python-cli-helpers-1.0.2-2.fc28 (FEDORA-2018-c7634723de)
Python helpers for common CLI tasks
--------------------------------------------------------------------------------
Update Information:
Description for package was wrong due to use of undefined macro.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Terje Rosten <terje.rosten(a)ntnu.no> - 1.0.2-2
- Fix description, (rhzb#1580109), thanks to Dick Marinus!
* Sun Apr 8 2018 Terje Rosten <terje.rosten(a)ntnu.no> - 1.0.2-1
- 1.0.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1580109 - unexpanded-macro %desc
https://bugzilla.redhat.com/show_bug.cgi?id=1580109
--------------------------------------------------------------------------------
================================================================================
python-construct-2.5.1-16.fc28 (FEDORA-2018-9a8b2391f4)
A powerful declarative parser/builder for binary data
--------------------------------------------------------------------------------
Update Information:
Fix relative import issue for Python 3.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Terje Rosten <terje.rosten(a)ntnu.no> - 2.5.1-16
- Add patch to fix Python 3 import issue (rhbz#1560199)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1560199 - construct/protocols/layer3/ipv6.py contains python2 style relative
import
https://bugzilla.redhat.com/show_bug.cgi?id=1560199
--------------------------------------------------------------------------------
================================================================================
python-gstreamer1-1.14.1-1.fc28 (FEDORA-2018-2202e0d57d)
Python bindings for GStreamer
--------------------------------------------------------------------------------
Update Information:
Update to 1.14.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Wim Taymans <wtaymans(a)redhat.com> - 1.14.1-1
- Update to 1.14.1
--------------------------------------------------------------------------------
================================================================================
python-hglib-2.6.1-1.fc28 (FEDORA-2018-5988f14d52)
Mercurial Python library
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release python-hglib 2.6.1.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Terje Rosten <terje.rosten(a)ntnu.no> - 2.6.1-1
- 2.6.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1574062 - python-hglib-2.6.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1574062
--------------------------------------------------------------------------------
================================================================================
python-parso-0.2.1-1.fc28 (FEDORA-2018-2a0bb44496)
Parser that supports error recovery and round-trip parsing
--------------------------------------------------------------------------------
Update Information:
- Latest upstream
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Carl George <carl(a)george.computer> - 0.2.1-1
- Latest upstream
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1580421 - python-parso-0.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1580421
--------------------------------------------------------------------------------
================================================================================
qcad-3.20.1.3-2.fc28 (FEDORA-2018-15ac7876a2)
Powerful 2D CAD system
--------------------------------------------------------------------------------
Update Information:
- Update to 3.20.1.3 - Unbunlde vlgothic-fonts and dejavu-sans-fonts - Include
readme.txt for Help menu
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 20 2018 Antonio Trande <sagitter AT fedoraproject.org> - 3.20.1.3-2
- Include readme.txt for Help menu
* Sun May 20 2018 Antonio Trande <sagitter AT fedoraproject.org> - 3.20.1.3-1
- Update to 3.20.1.3
- Unbunlde vlgothic-fonts and dejavu-sans-fonts
* Wed Apr 4 2018 Antonio Trande <sagitter AT fedoraproject.org> - 3.19.2.8-1
- Update to 3.19.2.8
* Sun Mar 4 2018 Antonio Trande <sagitter AT fedoraproject.org> - 3.19.2.3-2
- Build with Qt5 on fedora 26 too
--------------------------------------------------------------------------------
================================================================================
rpkg-1.54-2.fc28 (FEDORA-2018-e720c88e8f)
Python library for interacting with rpm+git
--------------------------------------------------------------------------------
Update Information:
- Remove koji and rpm-py-installer Python package requires - Fix argparse
version for el6
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Chenxiong Qi <cqi(a)redhat.com> - 1.54-2
- Remove koji and rpm-py-installer Python package requires
- Fix argparse version for el6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1579367 - pkg_resources.DistributionNotFound: The 'rpm-py-installer'
distribution was not found and is required by rpkg
https://bugzilla.redhat.com/show_bug.cgi?id=1579367
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.14.1-25.fc28 (FEDORA-2018-d19ffdb4ba)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
More info:
https://koji.fedoraproject.org/koji/buildinfo?buildID=1083534
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.1-25
- Add dac_override capability to remote_login_t domain
- Allow chrome_sandbox_t to mmap tmp files
- Update ulogd SELinux security policy
- Allow rhsmcertd_t domain send signull to apache processes
- Allow systemd socket activation for modemmanager
- Allow geoclue to dbus chat with systemd
- Fix file contexts on conntrackd policy
- Temporary fix for varnish and apache adding capability for DAC_OVERRIDE
- Allow lsmd_plugin_t domain to getattr lsm_t unix stream sockets
- Add label for /usr/sbin/pacemaker-remoted to have cluster_exec_t
- Allow nscd_t domain to be system dbusd client
- Allow abrt_t domain to read sysctl
- Add dac_read_search capability for tangd
- Allow systemd socket activation for rshd domain
- Add label for /usr/libexec/cyrus-imapd/master as cyrus_exec_t to have proper SELinux
domain transition from init_t to cyrus_t
- Allow kdump_t domain to map /boot files
- Allow conntrackd_t domain to send msgs to syslog
- Label /usr/sbin/nhrpd and /usr/sbin/pimd binaries as zebra_exec_t
- Allow swnserve_t domain to stream connect to sasl domain
- Allow smbcontrol_t to create dirs with samba_var_t label
- Remove execstack,execmem and execheap from domains setroubleshootd_t, locate_t and
podsleuth_t to increase security. BZ(1579760)
- Allow tangd to read public sssd files BZ(1509054)
- Allow geoclue start with nnp systemd security feature with proper SELinux Domain
transition BZ(1575212)
- Allow ctdb_t domain modify ctdb_exec_t files
- Allow firewalld_t domain to create netlink_netfilter sockets
- Allow radiusd_t domain to read network sysctls
- Allow pegasus_t domain to mount tracefs_t filesystem
- Allow psad_t domain to read all domains state
- Allow tomcat_t domain to connect to mongod_t tcp port
- Allow dovecot and postfix to connect to systemd stream sockets
- Make nmbd_t domain dbus system client BZ(1569856)
- Merge pull request #55 from SISheogorath/fix/tlp-policy
- Merge pull request #54 from tmzullinger/rawhide
- Allow also listing system_dbusd_var_run_t dirs in dbusd_read_pid_files macro
BZ(1566168)
- Allow gssproxy_t domain to read gssd_t state BZ(1572945)
- Allow create systemd to mount pid files
- Add files_map_boot_files() interface
- Remove execstack,execmem and execheap from domain fsadm_t to increase security.
BZ(1579760)
- Fix typo xserver SELinux module
- Allow systemd to mmap files with var_log_t label
- Allow x_userdomains read/write to xserver session
- Allow users staff and sysadm to run wireshark on own domain
- Fix typos s/xserver/xdm/ for allow creating xserver misc devices
- Allow systemd-bootchart to create own tmpfs files
- Merge pull request #213 from tmzullinger/rawhide
- Allow xdm_t domain to install Nouveau drivers BZ(1570996)
- Allow unconfined_domain_type to create libs filetrans named content BZ(1513806)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1509054 - Tang needs a policy
https://bugzilla.redhat.com/show_bug.cgi?id=1509054
[ 2 ] Bug #1566168 - SELinux is preventing /usr/lib/systemd/systemd-resolved from
'read' accesses on the directory /run/dbus.
https://bugzilla.redhat.com/show_bug.cgi?id=1566168
[ 3 ] Bug #1570310 - SELinux is preventing abrt-action-sav from 'write' accesses
on the file /var/lib/rpm/.dbenv.lock.
https://bugzilla.redhat.com/show_bug.cgi?id=1570310
--------------------------------------------------------------------------------
================================================================================
standard-test-roles-2.11-1.fc28 (FEDORA-2018-36e1ef6f9f)
Standard Test Interface Ansible roles
--------------------------------------------------------------------------------
Update Information:
Update to 2.11
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Andrei Stepanov <astepano(a)redhat.com> - 2.11-1
- Build with the latest merged PRs.
--------------------------------------------------------------------------------
================================================================================
udiskie-1.7.4-1.fc28 (FEDORA-2018-9879afe1f4)
Removable disk auto-mounter
--------------------------------------------------------------------------------
Update Information:
Update udiskie package to the latest upsteam version.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Jan Stan��k <jstanek(a)redhat.com> - 1.7.4-1
- Upgrade to 1.7.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1579345 - udiskie-1.7.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1579345
--------------------------------------------------------------------------------
================================================================================
vim-8.1.010-1.fc28 (FEDORA-2018-a09caac96e)
The VIM editor
--------------------------------------------------------------------------------
Update Information:
The newest upstream commit
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 21 2018 Karsten Hopp <karsten(a)redhat.com> 8.1.010-1
- patchlevel 010
* Fri May 18 2018 Karsten Hopp <karsten(a)redhat.com> 8.1.001-1
- patchlevel 001
* Fri May 18 2018 Zdenek Dohnal <zdohnal(a)redhat.com> - 8.0.1848-2
- vim-update.sh - update vimdir and baseversion(for major rebases)
- vim-update.sh - enhance debugging of vim-update script
--------------------------------------------------------------------------------
================================================================================
volume_key-0.3.10-1.fc28 (FEDORA-2018-a3a1d1e391)
An utility for manipulating storage encryption keys and passphrases
--------------------------------------------------------------------------------
Update Information:
Update to **volume_key-0.3.10**
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 16 2018 Jiri Kucera <jkucera(a)redhat.com> - 0.3.10-1
- Update to volume_key-0.3.10
Resolves: #1479349, #1517016
* Wed Feb 14 2018 Iryna Shcherbina <ishcherb(a)redhat.com> - 0.3.9-20
- Update Python 2 dependency declarations to new packaging standards
(See
https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1479349 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1479349
[ 2 ] Bug #1517016 - Please depend on gnupg2, not on gnupg 1.x
https://bugzilla.redhat.com/show_bug.cgi?id=1517016
--------------------------------------------------------------------------------