The following Fedora 32 Security updates need testing:
Age URL
66
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4c8458e373
containernetworking-plugins-0.9.1-1.fc32
62
https://bodhi.fedoraproject.org/updates/FEDORA-2021-16d1596c42
buildah-1.19.4-1.fc32
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-26a293c72b curl-7.69.1-8.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-596fc11138
libpano13-2.9.20-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b6b6093b3a
python3-3.8.9-1.fc32 python3-docs-3.8.9-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-9433bedebd
dnsmasq-2.85-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-29b96724c5
clamav-0.103.2-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a58cb9bc7a
gnuchess-6.2.7-5.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-2e174e8a96
singularity-3.7.3-1.fc32
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-0ea39d8eb3
ruby-2.7.3-136.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4b0a8b8629
seamonkey-2.53.7-3.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-bc6585e31a CImg-2.9.7-1.fc32
gmic-2.9.7-1.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-d934acdb42
nodejs-12.22.1-1.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-977ebc82da
leptonica-1.80.0-3.fc32 mingw-leptonica-1.80.0-2.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-1769a23935
mingw-python3-3.8.9-1.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-57a7ba61f8
kernel-5.11.13-100.fc32
The following Fedora 32 Critical Path updates have yet to be approved:
Age URL
123
https://bodhi.fedoraproject.org/updates/FEDORA-2020-345d2fd2aa
iproute-5.9.0-1.fc32
32
https://bodhi.fedoraproject.org/updates/FEDORA-2021-ef4aa8623e gdisk-1.0.7-1.fc32
31
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b55547281d
osinfo-db-20210312-1.fc32
13
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a51c0106f6
libkcapi-1.2.1-1.fc32
13
https://bodhi.fedoraproject.org/updates/FEDORA-2021-7fa34a0d1f taglib-1.12-4.fc32
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-26a293c72b curl-7.69.1-8.fc32
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-247880fa9f
appstream-data-32-9.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4bacddc79e
usbredir-0.9.0-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c8095ab0ab fedora-repos-32-13
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-47595160ab
hwdata-0.346-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-13132f7ab7
createrepo_c-0.17.1-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-9433bedebd
dnsmasq-2.85-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b6b6093b3a
python3-3.8.9-1.fc32 python3-docs-3.8.9-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-5f3eded325
libbluray-1.3.0-1.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-db95cf8ade
libisoburn-1.5.4-2.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c832ec8669
libburn-1.5.4-2.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-57a7ba61f8
kernel-5.11.13-100.fc32
The following builds have been pushed to Fedora 32 updates-testing
dwarves-1.21-1.fc32
firefox-87.0-12.fc32
guayadeque-0.4.7-0.29.20210412gitfb61dee.fc32
mingw-binutils-2.32-10.fc32
nss-3.63.0-1.fc32
postfix-3.5.10-1.fc32
rpmlint-1.11-16.fc32
ssldump-1.4-1.fc32
vdr-osdteletext-2.0.1-1.fc32
Details about builds:
================================================================================
dwarves-1.21-1.fc32 (FEDORA-2021-175df7b732)
Debugging Information Manipulation Tools (pahole & friends)
--------------------------------------------------------------------------------
Update Information:
New release: v1.21
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 9 2021 Arnaldo Carvalho de Melo <acme(a)redhat.com> - 1.21-1
- New release: v1.21
- DWARF loader:
- Handle DWARF5 DW_OP_addrx properly
- Handle subprogram ret type with abstract_origin properly
- Check .notes section for LTO build info
- Check .debug_abbrev for cross-CU references
- Permit merging all DWARF CU's for clang LTO built binary
- Factor out common code to initialize a cu
- Permit a flexible HASHTAGS__BITS
- Use a better hashing function, from libbpf
- btf_encoder:
- Add --btf_gen_all flag
- Match ftrace addresses within ELF functions
- Funnel ELF error reporting through a macro
- Sanitize non-regular int base type
- Add support for the floating-point types
- Pretty printer:
- Honour conf_fprintf.hex when printing enumerations
--------------------------------------------------------------------------------
================================================================================
firefox-87.0-12.fc32 (FEDORA-2021-b4c70f1156)
Mozilla Firefox Web browser
--------------------------------------------------------------------------------
Update Information:
- Fixed VP9 video playback via Widevine plugin (Netflix and so on).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 12 2021 Martin Stransky <stransky(a)redhat.com> - 87.0-12
- Added fix for mozbz#1701089 (Widevine playback issues).
* Tue Apr 6 2021 Martin Stransky <stransky(a)redhat.com> - 87.0-11
- Enabled xpcshell/crashtests on Wayland.
* Sat Apr 3 2021 Martin Stransky <stransky(a)redhat.com> - 87.0-10
- Wayland testing again.
* Thu Apr 1 2021 Martin Stransky <stransky(a)redhat.com> - 87.0-9
- Added fix for mozbz#1702606 / rhbz#1936071
- Switched tests back to X11 due to massive failures.
* Thu Apr 1 2021 Martin Stransky <stransky(a)redhat.com> - 87.0-8
- Run testsuite on Wayland on Fedora 33+
- Spec cleanup
* Wed Mar 31 2021 Martin Stransky <stransky(a)redhat.com> - 87.0-7
- Added fix for mozbz#1693472 - Wayland/KDE rendering issues.
* Tue Mar 30 2021 Jonathan Wakely <jwakely(a)redhat.com> - 87.0-6
- Rebuilt for removed libstdc++ symbol (#1937698)
* Tue Mar 30 2021 Martin Stransky <stransky(a)redhat.com> - 87.0-5
- Reftest fix
* Fri Mar 26 2021 Martin Stransky <stransky(a)redhat.com> - 87.0-4
- More test fixes
- Enabled ppc64le
- Disabled crashreporter on Fedora 34+
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1948170 - Unable to watch on Netflix
https://bugzilla.redhat.com/show_bug.cgi?id=1948170
[ 2 ] Bug #1948321 - Widevine 4.10.2209.1 does not work in Firefox 87
https://bugzilla.redhat.com/show_bug.cgi?id=1948321
--------------------------------------------------------------------------------
================================================================================
guayadeque-0.4.7-0.29.20210412gitfb61dee.fc32 (FEDORA-2021-80fbe952d2)
Music player
--------------------------------------------------------------------------------
Update Information:
Update to 0.4.7-0.29.20210412gitfb61dee ---- Update to
0.4.7-0.28.20210409gitdfc6b42
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 12 2021 Martin Gansser <martinkg(a)fedoraproject.org> -
0.4.7-0.29.20210412gitfb61dee
- Update to 0.4.7-0.28.20210412gitfb61dee
* Sat Apr 10 2021 Martin Gansser <martinkg(a)fedoraproject.org> -
0.4.7-0.28.20210409gitdfc6b42
- Update to 0.4.7-0.28.20210409gitdfc6b42
--------------------------------------------------------------------------------
================================================================================
mingw-binutils-2.32-10.fc32 (FEDORA-2021-d23d016509)
Cross-compiled version of binutils for Win32 and Win64 environments
--------------------------------------------------------------------------------
Update Information:
Backport patch for CVE-2021-3487.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 12 2021 Sandro Mani <manisandro(a)gmail.com> - 2.32-10
- Backport patch for CVE-2021-3487
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1947970 - CVE-2021-3487 mingw-binutils: binutils: excessive debug section
size can cause excessive memory consumption in bfd's dwarf2.c read_section()
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1947970
--------------------------------------------------------------------------------
================================================================================
nss-3.63.0-1.fc32 (FEDORA-2021-7cf4af5e3f)
Network Security Services
--------------------------------------------------------------------------------
Update Information:
NSS update for Firefox 88
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 25 2021 Bob Relyea <rrelyea(a)redhat.com> - 3.63.0-1
- Update to NSS 3.63.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1941831 - Update nss to 3.63 [F33]
https://bugzilla.redhat.com/show_bug.cgi?id=1941831
[ 2 ] Bug #1941832 - Update nss to 3.63 [F32]
https://bugzilla.redhat.com/show_bug.cgi?id=1941832
--------------------------------------------------------------------------------
================================================================================
postfix-3.5.10-1.fc32 (FEDORA-2021-82e9896e56)
Postfix Mail Transport Agent
--------------------------------------------------------------------------------
Update Information:
This is new version of postfix.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 12 2021 Jaroslav ��karvada <jskarvad(a)redhat.com> - 2:3.5.10-1
- New version
Resolves: rhbz#1948306
* Thu Mar 25 2021 Jaroslav ��karvada <jskarvad(a)redhat.com> - 2:3.5.9-7
- Simplified macros related to NIS
* Wed Mar 24 2021 Jaroslav ��karvada <jskarvad(a)redhat.com> - 2:3.5.9-6
- Disable NIS support for RHEL9+ (patch from fjanus(a)redhat.com)
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 2:3.5.9-5
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
* Fri Feb 19 2021 Jaroslav ��karvada <jskarvad(a)redhat.com> - 2:3.5.9-4
- Fixed sysvinit conditionals for RHEL
Resolves: rhbz#1930709
* Mon Feb 8 2021 Pavel Raiskup <praiskup(a)redhat.com> - 2:3.5.9-3
- rebuild for libpq ABI fix rhbz#1908268
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:3.5.9-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1948306 - postfix-3.5.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1948306
--------------------------------------------------------------------------------
================================================================================
rpmlint-1.11-16.fc32 (FEDORA-2021-755d105497)
Tool for checking common errors in RPM packages
--------------------------------------------------------------------------------
Update Information:
Filter out empty specfile-errors, they are duplicates Before: $ rpmlint
python-setuptools.spec python-setuptools.spec: E: specfile-error warning:
extra tokens at the end of %endif directive in line 58: %endif # with tests
python-setuptools.spec: E: specfile-error python-setuptools.spec: E:
specfile-error warning: extra tokens at the end of %endif directive in line 67:
%endif # without bootstrap python-setuptools.spec: E: specfile-error
python-setuptools.spec: E: specfile-error warning: extra tokens at the end of
%endif directive in line 181: %endif # with tests 0 packages and 1
specfiles checked; 5 errors, 0 warnings. After: $ rpmlint python-
setuptools.spec python-setuptools.spec: E: specfile-error warning: extra
tokens at the end of %endif directive in line 58: %endif # with tests
python-setuptools.spec: E: specfile-error warning: extra tokens at the end of
%endif directive in line 67: %endif # without bootstrap python-
setuptools.spec: E: specfile-error warning: extra tokens at the end of %endif
directive in line 181: %endif # with tests 0 packages and 1 specfiles
checked; 3 errors, 0 warnings.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 13 2021 Miro Hron��ok <mhroncok(a)redhat.com> - 1.11-16
- Filter out empty specfile-errors, they are duplicates
--------------------------------------------------------------------------------
================================================================================
ssldump-1.4-1.fc32 (FEDORA-2021-0e9a49a56e)
SSL/TLS network protocol analyzer
--------------------------------------------------------------------------------
Update Information:
ssldump 1.4 =========== - IPv6 support added - JA3 hashes added - Various
bugs fixed
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 13 2021 Robert Scheck <robert(a)fedoraproject.org> 1.4-1
- Upgrade to 1.4 (#1948756)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1948756 - ssldump-1.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1948756
--------------------------------------------------------------------------------
================================================================================
vdr-osdteletext-2.0.1-1.fc32 (FEDORA-2021-4356e59b13)
OSD teletext plugin for VDR
--------------------------------------------------------------------------------
Update Information:
Update to 2.0.1-1 ---- Update to 2.0.0-1
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 13 2021 Martin Gansser <martinkg(a)fedoraproject.org> - 2.0.1-1
- Update to 2.0.1
* Mon Apr 12 2021 Martin Gansser <martinkg(a)fedoraproject.org> - 2.0.0-1
- Update to 2.0.0
--------------------------------------------------------------------------------