The following Fedora 33 Security updates need testing: Age URL 199 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c3d587d52c shim-15.4-1 18 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c24b515a72 firefox-93.0-2.fc33 13 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c5a9c85737 flatpak-1.10.5-1.fc33 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b2c6765a41 thunderbird-91.2.0-1.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4140b54de2 php-7.4.25-1.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-1cc8ffd122 java-1.8.0-openjdk-1.8.0.312.b07-1.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9a51a6f8b1 java-11-openjdk-11.0.13.0.8-1.fc33 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b3df83339e strongswan-5.9.4-1.fc33 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-131360fa9a webkit2gtk3-2.34.1-1.fc33 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b277e63494 java-latest-openjdk-17.0.1.0.12-1.rolling.fc33 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-0511a38484 stb-0-0.7.20211022gitaf1a5bc.fc33
The following Fedora 33 Critical Path updates have yet to be approved: Age URL 218 https://bodhi.fedoraproject.org/updates/FEDORA-2021-2961f34ccb PackageKit-1.2.3-1.fc33 153 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4797e362b3 abrt-2.14.6-1.fc33 libreport-2.15.1-1.fc33 satyr-0.37-2.fc33 69 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4ccf3840ed gnome-shell-3.38.6-1.fc33 mutter-3.38.6-1.fc33 18 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c24b515a72 firefox-93.0-2.fc33 13 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c5a9c85737 flatpak-1.10.5-1.fc33 11 https://bodhi.fedoraproject.org/updates/FEDORA-2021-54093e2d55 gdb-10.2-4.fc33 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b2c6765a41 thunderbird-91.2.0-1.fc33 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-85ddb22e57 kernel-5.14.14-100.fc33 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-131360fa9a webkit2gtk3-2.34.1-1.fc33
The following builds have been pushed to Fedora 33 updates-testing
ansible-2.9.27-1.fc33 c4core-0.1.6-2.fc33 chromium-94.0.4606.81-1.fc33 earcut-hpp-2.2.3-1.fc33 growlight-1.2.37-1.fc33 hplip-3.21.2-13.fc33 libxc-5.1.7-1.fc33 mock-core-configs-36.2-1.fc33 perl-Spreadsheet-XLSX-0.16-1.fc33 pungi-4.3.1-1.fc33 pyproject-rpm-macros-0-48.fc33 python-rpm-macros-3.9-18.fc33 radsecproxy-1.9.1-1.fc33 shutter-0.99.2-1.fc33 soundconverter-4.0.3-1.fc33
Details about builds:
================================================================================ ansible-2.9.27-1.fc33 (FEDORA-2021-71ff867094) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information:
Update to 2.9.27 bugfix release. Includes fix for CVE-2021-3620 -------------------------------------------------------------------------------- ChangeLog:
* Mon Oct 11 2021 Kevin Fenzi kevin@scrye.com - 2.9.27-1 - Update to 2.9.27. Fixes rhbz#2012918 * Tue Sep 14 2021 Kevin Fenzi kevin@scrye.com - 2.9.26-1 - Update to 2.9.26. Fixes rhbz#2002394 --------------------------------------------------------------------------------
================================================================================ c4core-0.1.6-2.fc33 (FEDORA-2021-70eb47849b) C++ core utilities -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #2007690 - Review Request: c4core - C++ core utilities https://bugzilla.redhat.com/show_bug.cgi?id=2007690 --------------------------------------------------------------------------------
================================================================================ chromium-94.0.4606.81-1.fc33 (FEDORA-2021-5093f11905) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information:
Update to 94.0.4606.81. Built with is_official_build=true, which disables all sorts of debugging check functions that upstream turned on in 94. These debugging checks were failing and causing the program to crash in ... fun ways. It also fixes the usual pile of security issues, most notably: CVE-2021-37974 CVE-2021-37975 CVE-2021-37976 CVE-2021-37977 CVE-2021-37978 CVE-2021-37979 CVE-2021-37980 -------------------------------------------------------------------------------- ChangeLog:
* Fri Oct 8 2021 Tom Callaway spot@fedoraproject.org - 94.0.4606.81-1 - update to 94.0.4606.81 * Wed Oct 6 2021 Tom Callaway spot@fedoraproject.org - 94.0.4606.71-2 - add official_build flag - apply upstream patch to handle nullptr correctly in PartitionGetSizeEstimate() * Tue Oct 5 2021 Tom Callaway spot@fedoraproject.org - 94.0.4606.71-1 - update to 94.0.4606.71 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2010573 - CVE-2021-37974 chromium-browser: Use after free in Safe Browsing https://bugzilla.redhat.com/show_bug.cgi?id=2010573 [ 2 ] Bug #2010574 - CVE-2021-37975 chromium-browser: Use after free in V8 https://bugzilla.redhat.com/show_bug.cgi?id=2010574 [ 3 ] Bug #2010575 - CVE-2021-37976 chromium-browser: Information leak in core https://bugzilla.redhat.com/show_bug.cgi?id=2010575 [ 4 ] Bug #2012660 - CVE-2021-37977 chromium-browser: Use after free in Garbage Collection https://bugzilla.redhat.com/show_bug.cgi?id=2012660 [ 5 ] Bug #2012661 - CVE-2021-37978 chromium-browser: Heap buffer overflow in Blink https://bugzilla.redhat.com/show_bug.cgi?id=2012661 [ 6 ] Bug #2012662 - CVE-2021-37979 chromium-browser: Heap buffer overflow in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=2012662 [ 7 ] Bug #2012663 - CVE-2021-37980 chromium-browser: Inappropriate implementation in Sandbox https://bugzilla.redhat.com/show_bug.cgi?id=2012663 --------------------------------------------------------------------------------
================================================================================ earcut-hpp-2.2.3-1.fc33 (FEDORA-2021-398baa5563) Fast, header-only polygon triangulation -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #2006590 - Review Request: earcut-hpp - Fast, header-only polygon triangulation https://bugzilla.redhat.com/show_bug.cgi?id=2006590 --------------------------------------------------------------------------------
================================================================================ growlight-1.2.37-1.fc33 (FEDORA-2021-18cc269127) Disk manipulation and system setup tool -------------------------------------------------------------------------------- Update Information:
bugfixes, rebuild against newest notcurses -------------------------------------------------------------------------------- ChangeLog:
* Fri Oct 15 2021 Nick Black dankamongmen@gmail.com 1.2.37-1 - new upstream 1.2.37 * Sun Oct 3 2021 Nick Black dankamongmen@gmail.com 1.2.36-1 - new upstream 1.2.36 --------------------------------------------------------------------------------
================================================================================ hplip-3.21.2-13.fc33 (FEDORA-2021-40a2896b2a) HP Linux Imaging and Printing Project -------------------------------------------------------------------------------- Update Information:
2015428 - python3.10 has Callable in collections.abc GUI hp-setup uses avahi- browse adjust osname for CoreOS/Linux 2015428 - python3.10 doesn't do an implicit conversion for integer arguments -------------------------------------------------------------------------------- ChangeLog:
* Tue Oct 26 2021 Zdenek Dohnal zdohnal@redhat.com - 3.21.2-13 - 2015428 - python3.10 has Callable in collections.abc - GUI hp-setup uses avahi-browse - adjust osname for CoreOS/Linux - 2015428 - python3.10 doesn't do an implicit conversion for integer arguments * Tue Sep 14 2021 Sahana Prasad sahana@redhat.com - 3.21.2-12 - Rebuilt with OpenSSL 3.0.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2015428 - hp-toolbox crashes due Python3.10 changes https://bugzilla.redhat.com/show_bug.cgi?id=2015428 --------------------------------------------------------------------------------
================================================================================ libxc-5.1.7-1.fc33 (FEDORA-2021-9d946b10a7) Library of exchange and correlation functionals for density-functional theory -------------------------------------------------------------------------------- Update Information:
Update to 5.1.7, see changes at https://gitlab.com/libxc/libxc/-/blob/master/ChangeLog.md -------------------------------------------------------------------------------- ChangeLog:
* Mon Oct 25 2021 Susi Lehtola jussilehtola@fedoraproject.org - 5.1.7-1 - Update to 5.1.7. --------------------------------------------------------------------------------
================================================================================ mock-core-configs-36.2-1.fc33 (FEDORA-2021-e2e98a1f26) Mock core config files basic chroots -------------------------------------------------------------------------------- Update Information:
Fix ELN - bump to F36 needed -------------------------------------------------------------------------------- ChangeLog:
* Tue Oct 26 2021 Pavel Raiskup praiskup@redhat.com 36.2-1 - bump eln to F36 (praiskup@redhat.com) --------------------------------------------------------------------------------
================================================================================ perl-Spreadsheet-XLSX-0.16-1.fc33 (FEDORA-2021-f10ded5d20) Perl extension for reading Microsoft Excel 2007 files -------------------------------------------------------------------------------- Update Information:
Spreadsheet::XLSX 0.16 ====================== - Added GitHub repository - Fix RT #125112: Update module name in comments and POD - Improve POD - Improve kwalitee test -------------------------------------------------------------------------------- ChangeLog:
* Mon Oct 25 2021 Robert Scheck robert@fedoraproject.org 0.16-1 - Upgrade to 0.16 (#2017154) * Thu Jul 22 2021 Fedora Release Engineering releng@fedoraproject.org - 0.15-18 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Sat May 22 2021 Jitka Plesnikova jplesnik@redhat.com - 0.15-17 - Perl 5.34 rebuild * Wed Jan 27 2021 Fedora Release Engineering releng@fedoraproject.org - 0.15-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2017154 - perl-Spreadsheet-XLSX-0.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=2017154 --------------------------------------------------------------------------------
================================================================================ pungi-4.3.1-1.fc33 (FEDORA-2021-b90eada621) Distribution compose tool -------------------------------------------------------------------------------- Update Information:
New upstream release - Correct irc network name & add matrix room - Add missing mock to osbs tests - osbs: Reuse images from old compose - image_build: Allow reusing old image_build results - Allow ISO-Level configuration within the config file - Work around ODCS creating COMPOSE_ID later - When `cts_url` is configured, use CTS `/repo` API for buildContainer yum_repourls. - Add COMPOSE_ID into the pungi log file - buildinstall: Add easy way to check if previous result was reused -------------------------------------------------------------------------------- ChangeLog:
* Tue Oct 26 2021 Lubom��r Sedl���� lsedlar@redhat.com - 4.3.1-1 - Correct irc network name & add matrix room (dan.cermak) - Add missing mock to osbs tests (lsedlar) - osbs: Reuse images from old compose (hlin) - image_build: Allow reusing old image_build results (hlin) - Allow ISO-Level configuration within the config file (ounsal) - Work around ODCS creating COMPOSE_ID later (lsedlar) - When `cts_url` is configured, use CTS `/repo` API for buildContainer yum_repourls. (jkaluza) - Add COMPOSE_ID into the pungi log file (ounsal) - buildinstall: Add easy way to check if previous result was reused (lsedlar) --------------------------------------------------------------------------------
================================================================================ pyproject-rpm-macros-0-48.fc33 (FEDORA-2021-7ddfcf642a) RPM macros for PEP 517 Python packages -------------------------------------------------------------------------------- Update Information:
`%pyproject_buildrequires`: Accept installed pre-releases for all requirements -------------------------------------------------------------------------------- ChangeLog:
* Sat Oct 16 2021 Miro Hron��ok mhroncok@redhat.com - 0-48 - %pyproject_buildrequires: Accept installed pre-releases for all requirements - Fixes: rhbz#2014639 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2014639 - ocrmypdf: FTBFS in Fedora Rawhide https://bugzilla.redhat.com/show_bug.cgi?id=2014639 --------------------------------------------------------------------------------
================================================================================ python-rpm-macros-3.9-18.fc33 (FEDORA-2021-1b5e916d66) The common Python RPM macros -------------------------------------------------------------------------------- Update Information:
Define a new macros %python_wheel_dir and %python_wheel_pkg_prefix -------------------------------------------------------------------------------- ChangeLog:
* Tue Oct 26 2021 Tomas Orsava torsava@redhat.com - 3.9-18 - Define a new macros %python_wheel_dir and %python_wheel_pkg_prefix --------------------------------------------------------------------------------
================================================================================ radsecproxy-1.9.1-1.fc33 (FEDORA-2021-59d0518237) Generic RADIUS proxy with RadSec support -------------------------------------------------------------------------------- Update Information:
radsecproxy 1.9.1 (2021-10-25) ============================== Misc ---- - OpenSSL 3.0 compatibility Bug Fixes --------- - Fix refused startup with openssl < 1.1 - Fix compiler issue for Fedora 33 on s390x - Fix small memory leak in config parser - Fix lazy certificate check when connecting to TLS servers - Fix connect is aborted if first host in list has invalid certificate - Fix setstacksize for glibc 2.34 - Fix system defaults/settings for TLS version not honored -------------------------------------------------------------------------------- ChangeLog:
* Mon Oct 25 2021 Robert Scheck robert@fedoraproject.org 1.9.1-1 - Upgrade to 1.9.1 (#2017132) * Tue Sep 14 2021 Robert Scheck robert@fedoraproject.org 1.9.0-5 - Use -Wno-error=deprecated-declarations with OpenSSL 3.0.0 * Tue Sep 14 2021 Sahana Prasad sahana@redhat.com - 1.9.0-4 - Rebuilt with OpenSSL 3.0.0 * Mon Jul 26 2021 Robert Scheck robert@fedoraproject.org 1.9.0-3 - Added upstream patch to fix setstacksize() for glibc >= 2.34 * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 1.9.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2017132 - radsecproxy-1.9.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2017132 --------------------------------------------------------------------------------
================================================================================ shutter-0.99.2-1.fc33 (FEDORA-2021-ea8a24c04a) GTK+3-based screenshot application written in Perl -------------------------------------------------------------------------------- Update Information:
Update to 0.99.2-1 -------------------------------------------------------------------------------- ChangeLog:
* Tue Oct 26 2021 Martin Gansser martinkg@fedoraproject.org - 0.99.2-1 - Update to 0.99.2-1 * Mon Oct 18 2021 Martin Gansser martinkg@fedoraproject.org - 0.99.1-1 - Update to 0.99.1-1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2017373 - shutter-0.99.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2017373 --------------------------------------------------------------------------------
================================================================================ soundconverter-4.0.3-1.fc33 (FEDORA-2021-4d386aa200) Simple sound converter application for GNOME -------------------------------------------------------------------------------- Update Information:
Update to latest version to address RHBZ#1948670. -------------------------------------------------------------------------------- ChangeLog:
* Mon Oct 25 2021 Richard Shaw hobbes1069@gmail.com - 4.0.3-1 - Update to 4.0.3. * Mon Oct 4 2021 Adam Williamson awilliam@redhat.com - 4.0.1-5 - Backport PR #54 to fix crasher bug #1988116 * Mon Oct 4 2021 Adam Williamson awilliam@redhat.com - 4.0.1-4 - Backport fixes for https://bugs.launchpad.net/soundconverter/+bug/1945838 * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 4.0.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint python-maint@redhat.com - 4.0.1-2 - Rebuilt for Python 3.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2014775 - soundconverter-4.0.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2014775 [ 2 ] Bug #2016919 - [abrt] soundconverter: get_progress(): converter.py:263:get_progress:ZeroDivisionError: float division by zero https://bugzilla.redhat.com/show_bug.cgi?id=2016919 --------------------------------------------------------------------------------