The following Fedora 33 Security updates need testing: Age URL 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-dc7de65eed php-pear-1.10.12-5.fc33 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-06cbd73fba erlang-23.2.3-1.fc33 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-848fd34b0b opensmtpd-6.8.0p2-1.fc33 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-ced31f3f0c mingw-python3-3.9.1-2.fc33
The following Fedora 33 Critical Path updates have yet to be approved: Age URL 19 https://bodhi.fedoraproject.org/updates/FEDORA-2021-d1074696ac libguestfs-1.44.0-1.fc33 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-0ecd4abda7 pungi-4.2.7-2.fc33
The following builds have been pushed to Fedora 33 updates-testing
389-ds-base-1.4.4.11-1.fc33 GoldenCheetah-3.6-0.2.20200808git7c90abf.fc33 OpenIPMI-2.0.31-1.fc33 apt-2.1.18-1.fc33 arm-image-installer-3.1-1.fc33 beakerlib-1.23-1.fc33 bind-dyndb-ldap-11.3-6.fc33 container-selinux-2.156.0-1.fc33 cups-filters-1.28.7-2.fc33 evince-3.38.1-1.fc33 fbzx-4.2.0-1.fc33 feh-3.6.3-1.fc33 gnote-3.38.1-1.fc33 golang-github-facebookincubator-go2chef-0-0.1.20210125git576f5d4.fc33 ibus-typing-booster-2.10.3-1.fc33 icewm-2.1.1-1.fc33 jasper-2.0.24-1.fc33 kernel-5.10.10-200.fc33 libebml-1.4.1-1.fc33 lua-rpm-macros-1-3.fc33 mediawriter-4.2.0-1.fc33 openmpi-4.0.5-1.fc33 pari-2.13.1-1.fc33 pdfbox-2.0.21-3.fc33 perl-5.32.1-466.fc33 perl-CPAN-Perl-Releases-5.20210123-1.fc33 perl-Module-CoreList-5.20210123-1.fc33 perl-autodie-2.34-1.fc33 php-doctrine-datafixtures-1.5.0-1.fc33 php-laminas-servicemanager-3.6.3-1.fc33 php-laminas-validator-2.14.4-1.fc33 python-natsort-7.1.1-1.fc33 python-snaptime-0.2.4-1.fc33 qt5-qtwebengine-5.15.2-7.fc33 quilter-3.1.5-1.fc33 rpmdevtools-9.3-3.fc33 rpmlint-1.11-13.fc33 spectral-0-14.20201224gitfba0df0.fc33 sqlite-3.34.1-1.fc33 tcmu-runner-1.5.2-7.fc33 thunderbird-78.6.1-1.fc33 vte291-0.62.2-1.fc33
Details about builds:
================================================================================ 389-ds-base-1.4.4.11-1.fc33 (FEDORA-2021-5258e9cb11) 389 Directory Server (base) -------------------------------------------------------------------------------- Update Information:
Bump version to 1.4.4.11 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Mark Reynolds mreynolds@redhat.com - 1.4.4.11-1 - Bump version to 1.4.4.11 - Issue 4548 - CLI - dsconf needs better root DN access control plugin validation - Issue 4513 - Fix schema test and lib389 task module (#4514) - Issue 4535 - lib389 - Fix log function in backends.py - Issue 4534 - libasan read buffer overflow in filtercmp (#4541) * Thu Jan 14 2021 Mark Reynolds mreynolds@redhat.com - 1.4.4.10-1 - Bump version to 1.4.4.10 - Issue 4381 - RFE - LDAPI authentication DN rewritter - Issue 4539 - BUG - no such file if no overlays in openldap during migration (#4540) - Issue 4513 - CI Tests - fix test failures - Issue 4528 - Fix cn=monitor SCOPE_ONE search (#4529) - Issue 4535 - lib389 - healthcheck throws exception if backend is not replicated - Issue 4504 - insure that repl_monitor_test use ldapi (for RHEL) - fix merge issue (#4533) - Issue 4504 - Insure ldapi is enabled in repl_monitor_test.py (Needed on RHEL) (#4527) - Issue 4506 - BUG - Fix bounds on fd table population (#4520) - Issue 4521 - DS crash in deref plugin if dereferenced entry exists but is not returned by internal search (#4525) - Issue 4384 - Separate eventq into REALTIME and MONOTONIC - Issue 4418 - ldif2db - offline. Warn the user of skipped entries - Issue 4419 - Warn users of skipped entries during ldif2db online import (#4476) - Issue 4414 - disk monitoring - prevent division by zero crash - Issue 4507 - Improve csngen testing task (#4508) - Issue 4498 - BUG - entryuuid replication may not work (#4503) - Issue 4504 - Fix pytest test_dsconf_replication_monitor (#4505) - Issue 4480 - Unexpected info returned to ldap request (#4491) - Issue 4373 - BUG - one line cleanup, free results in mt if ent 0 (#4502) - Issue 4500 - Add cockpit enabling to dsctl - Issue 4272 - RFE - add support for gost-yescrypt for hashing passwords (#4497) - Issue 1795 - RFE - Enable logging for libldap and libber in error log (#4481) - Issue 4492 - Changelog cache can upload updates from a wrong starting point (CSN) (#4493) - Issue 4373 - BUG - calloc of size 0 in MT build (#4496) - Issue 4483 - heap-use-after-free in slapi_be_getsuffix - Issue 4224 - cleanup specfile after libsds removal - Issue 4421 - Unable to build with Rust enabled in closed environment - Issue 4229 - RFE - Improve rust linking and build performance (#4474) - Issue 4464 - RFE - clang with ds+asan+rust - Issue 4224 - openldap can become confused with entryuuid - Issue 4313 - improve tests and improve readme re refdel - Issue 4313 - fix potential syncrepl data corruption - Issue 4315 - performance search rate: nagle triggers high rate of setsocketopt (#4437) - Issue 4243 - Fix test (4th): SyncRepl plugin provides a wrong (#4475) - Issue 4446 - RFE - openldap password hashers - Issue 4403 - RFE - OpenLDAP pw hash migration tests (#4408) - Issue 4410 -RFE - ndn cache with arc in rust - Issue 4460 - BUG - add machine name to subject alt names in SSCA (#4472) - Issue 4243 - Fix test: SyncRepl plugin provides a wrong cookie (#4466) (#4466) --------------------------------------------------------------------------------
================================================================================ GoldenCheetah-3.6-0.2.20200808git7c90abf.fc33 (FEDORA-2021-639978bc7b) Cycling Performance Software -------------------------------------------------------------------------------- Update Information:
Rebuilt due Qt5 dependencies fix (BZ#1919838) -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Martin Gansser martinkg@fedoraproject.org - 3.6-0.2.20200908git7c90abf - Rebuilt due Qt5 dependencies fix (BZ#1919838) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1919838 - Outdated dependency requires rebuild https://bugzilla.redhat.com/show_bug.cgi?id=1919838 --------------------------------------------------------------------------------
================================================================================ OpenIPMI-2.0.31-1.fc33 (FEDORA-2021-b3a172c3df) IPMI (Intelligent Platform Management Interface) library and tools -------------------------------------------------------------------------------- Update Information:
New upstream release 2.0.31 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Josef Ridky jridky@redhat.com - 2.0.31-1 - New upstream release 2.0.31 (#1905768) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1905768 - OpenIPMI-2.0.31 is available https://bugzilla.redhat.com/show_bug.cgi?id=1905768 --------------------------------------------------------------------------------
================================================================================ apt-2.1.18-1.fc33 (FEDORA-2021-b95183530f) Command-line package manager for Debian packages -------------------------------------------------------------------------------- Update Information:
Update to 2.1.18 (#1906457) -------------------------------------------------------------------------------- ChangeLog:
* Wed Jan 13 2021 Fedora Release Monitoring release-monitoring@fedoraproject.org - 2.1.18-1 - Update to 2.1.18 (#1906457) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1906457 - apt-2.1.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1906457 --------------------------------------------------------------------------------
================================================================================ arm-image-installer-3.1-1.fc33 (FEDORA-2021-dd39eb7b0a) Writes binary image files to any specified block device -------------------------------------------------------------------------------- Update Information:
Update to the latest, includes various fixes. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Paul Whalen pwhalen@fedoraproject.org - 3.1-1 - Update to 3.1 --------------------------------------------------------------------------------
================================================================================ beakerlib-1.23-1.fc33 (FEDORA-2021-f37879cb84) A shell-level integration testing library -------------------------------------------------------------------------------- Update Information:
- TestResults state indicator - profiling code - rebased yash to 1.1 - fixed rlAssertLesser - fixed failed library load name logging -------------------------------------------------------------------------------- ChangeLog:
* Tue Jan 26 2021 Dalibor Pospisil dapospis@redhat.com - 1.23-1 - TestResults state indicator - profiling code - rebased yash to 1.1 - fixed rlAssertLesser - fixed failed library load name logging --------------------------------------------------------------------------------
================================================================================ bind-dyndb-ldap-11.3-6.fc33 (FEDORA-2021-ad495a044c) LDAP back-end plug-in for BIND -------------------------------------------------------------------------------- Update Information:
Rebuilt freeipa part missing in original update of [bind](https://bodhi.fedoraproject.org/updates/FEDORA-2021-efbf9890da). -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Petr Men����k pemensik@redhat.com - 11.3-6 - Rebuilt for bind 9.11.27 --------------------------------------------------------------------------------
================================================================================ container-selinux-2.156.0-1.fc33 (FEDORA-2021-721322ed3f) SELinux policies for container runtimes -------------------------------------------------------------------------------- Update Information:
Autobuilt v2.156.0 ---- Autobuilt v2.155.0 ---- Autobuilt v2.154.0 ---- Autobuilt v2.153.0 ---- Autobuilt v2.152.0 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 RH Container Bot rhcontainerbot@fedoraproject.org - 2:2.156.0-1 - autobuilt v2.156.0 * Wed Jan 6 2021 Dan Walsh dwalsh@fedoraproject.org - 2:2.155.0-2 - Fix build * Tue Jan 5 2021 RH Container Bot rhcontainerbot@fedoraproject.org - 2:2.155.0-1 - autobuilt v2.155.0 * Mon Jan 4 2021 RH Container Bot rhcontainerbot@fedoraproject.org - 2:2.154.0-1 - autobuilt v2.154.0 * Mon Jan 4 2021 Dan Walsh dwalsh@fedoraproject.org - 2:2.154.1-1 - Fix build * Wed Dec 30 2020 RH Container Bot rhcontainerbot@fedoraproject.org - 2:2.154.0-1 - autobuilt v2.154.0 * Sat Dec 26 2020 RH Container Bot rhcontainerbot@fedoraproject.org - 2:2.153.0-1 - autobuilt v2.153.0 * Tue Dec 22 2020 RH Container Bot rhcontainerbot@fedoraproject.org - 2:2.152.0-1 - autobuilt v2.152.0 --------------------------------------------------------------------------------
================================================================================ cups-filters-1.28.7-2.fc33 (FEDORA-2021-b4a926cc2d) OpenPrinting CUPS filters and backends -------------------------------------------------------------------------------- Update Information:
1.28.7 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Zdenek Dohnal zdohnal@redhat.com - 1.28.7-2 - unpush fix for 1904405 - M281fdw now often chokes on URF * Mon Jan 11 2021 Zdenek Dohnal zdohnal@redhat.com - 1.28.7-1 - 1.28.7, urftopdf nor pdftoopvp aren't compiled anymore - 1904405 - HP M281fdw: ������ characters printed as squares with "driverless" driver --------------------------------------------------------------------------------
================================================================================ evince-3.38.1-1.fc33 (FEDORA-2021-ca6c3f5c43) Document viewer -------------------------------------------------------------------------------- Update Information:
evince 3.38.1 release: * Make Esc cancel any annotation in progress * Remove ability to launch actions * Unescape tooltip URI in Recent Documents view * Fix X11 regression * Text search if match not in page keep looking for others -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Kalev Lember klember@redhat.com - 3.38.1-1 - Update to 3.38.1 --------------------------------------------------------------------------------
================================================================================ fbzx-4.2.0-1.fc33 (FEDORA-2021-d3fa01fa46) A ZX Spectrum emulator for FrameBuffer -------------------------------------------------------------------------------- Update Information:
* Fixed RETI -------------------------------------------------------------------------------- ChangeLog:
* Sun Jan 24 2021 Andrea Musuruane musuruan@gmail.com - 4.2.0-1 - Updated to new upstream release -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1914709 - fbzx-4.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1914709 --------------------------------------------------------------------------------
================================================================================ feh-3.6.3-1.fc33 (FEDORA-2021-46142c6f5c) Fast command line image viewer using Imlib2 -------------------------------------------------------------------------------- Update Information:
New: - %a format specifier (slideshow state) - flip and rotate options added to the menu - improved image detection time (use FEH_SKIP_MAGIC=1 if this is a problem) https://phab.enlightenment.org/T8739 and https://github.com/derf/feh/issues/505 have more Fixed: - Crash when combining --reload and --multiwindow - various memory leaks - save_filelist not respecting --output-dir - --start-at now handles file:// paths properly - issues when opening files with spaces or unicode in the path when opening from a file manager -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Ben Boeckel fedora@me.benboeckel.net - 3.6.3-1 - update to 3.6.3 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1873690 - feh-3.6.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1873690 --------------------------------------------------------------------------------
================================================================================ gnote-3.38.1-1.fc33 (FEDORA-2021-7cad5991cb) Note-taking application -------------------------------------------------------------------------------- Update Information:
gnote 3.38.1 release: * Do not use deprecated Gtk::Menu::popup * Fix find previous match * Fix changing sorting not always works -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Kalev Lember klember@redhat.com - 3.38.1-1 - Update to 3.38.1 --------------------------------------------------------------------------------
================================================================================ golang-github-facebookincubator-go2chef-0-0.1.20210125git576f5d4.fc33 (FEDORA-2021-e6ae246a32) Tool to bootstrap a system from zero so that it's able to run Chef -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1912668 - Review Request: golang-github-facebookincubator-go2chef - Tool to bootstrap a system from zero so that it's able to run Chef https://bugzilla.redhat.com/show_bug.cgi?id=1912668 --------------------------------------------------------------------------------
================================================================================ ibus-typing-booster-2.10.3-1.fc33 (FEDORA-2021-366a5f8058) A completion input method -------------------------------------------------------------------------------- Update Information:
Update to 2.10.3; zh_CN translations 100% -------------------------------------------------------------------------------- ChangeLog:
* Sun Jan 24 2021 Mike FABIAN mfabian@redhat.com - 2.10.3-1 - Update to 2.10.3 - Update emoji annotations from CLDR - Translation update from Weblate for ja, zh_CN (zh_CN is 100% complete now) --------------------------------------------------------------------------------
================================================================================ icewm-2.1.1-1.fc33 (FEDORA-2021-5d1a173cf3) Window manager designed for speed, usability, and consistency -------------------------------------------------------------------------------- Update Information:
Update to 2.1.1 ---- Update to 2.1.0 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Artem Polishchuk ego.cordatus@gmail.com - 2.1.1-1 - build(update): 2.1.1 * Sat Jan 23 2021 Artem Polishchuk ego.cordatus@gmail.com - 2.1.0-1 - build(update): 2.1.0 --------------------------------------------------------------------------------
================================================================================ jasper-2.0.24-1.fc33 (FEDORA-2021-2b151590d9) Implementation of the JPEG-2000 standard, Part 1 -------------------------------------------------------------------------------- Update Information:
New upstream version 2.0.24 with all reported CVE fixes available. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Josef Ridky jridky@redhat.com - 2.0.24-1 - New upstream release 2.0.24 (#1905690) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1434464 - CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399 CVE-2017-1000050 CVE-2017-13745 CVE-2017-13746 CVE-2017-13747 CVE-2017-13748 CVE-2017-13749 CVE-2017-13750 CVE-2017-13751 CVE-2017-13752 CVE-2017-14132 ... jasper: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1434464 [ 2 ] Bug #1905202 - CVE-2020-27828 jasper: heap-based buffer overflow in cp_create() in jpc_enc.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1905202 [ 3 ] Bug #1905690 - jasper-2.0.24 is available https://bugzilla.redhat.com/show_bug.cgi?id=1905690 --------------------------------------------------------------------------------
================================================================================ kernel-5.10.10-200.fc33 (FEDORA-2021-3bcc7198c8) The Linux kernel -------------------------------------------------------------------------------- Update Information:
The 5.10.10 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Sun Jan 24 2021 Justin M. Forbes jforbes@fedoraproject.org - 5.10.10-200 - Linux v5.10.10 - Fixes CVE-2021-3178 (rhbz 1918179 1918181) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1918179 - CVE-2021-3178 kernel: path traversal in fs/nfsd/nfs3xdr.c may lead to Information Disclosure or RCE https://bugzilla.redhat.com/show_bug.cgi?id=1918179 --------------------------------------------------------------------------------
================================================================================ libebml-1.4.1-1.fc33 (FEDORA-2021-e84e1aaa2c) Extensible Binary Meta Language library -------------------------------------------------------------------------------- Update Information:
Fixes heap use-after-free when parsing malformed file (upstream issue [2989](https://gitlab.com/mbunkus/mkvtoolnix/-/issues/2989)). -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Dominik Mierzejewski rpm@greysector.net - 1.4.1-1 - update to 1.4.1 (#1912485) - fixes heap use-after-free when parsing malformed file (https://gitlab.com/mbunkus/mkvtoolnix/-/issues/2989) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1912485 - libebml-1.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1912485 --------------------------------------------------------------------------------
================================================================================ lua-rpm-macros-1-3.fc33 (FEDORA-2021-1070a05bdb) The common Lua RPM macros -------------------------------------------------------------------------------- Update Information:
- Modify several conditionals to support RHEL 9+ and drop ancient Fedora 17 - Add explicit conflict with older lua-devel - Require rpm, not redhat-rpm-config -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 1 2020 Miro Hron��ok mhroncok@redhat.com - 1-3 - Modify several conditionals to support RHEL 9+ and drop ancient Fedora 17 - Add explicit conflict with older lua-devel - Require rpm, not redhat-rpm-config --------------------------------------------------------------------------------
================================================================================ mediawriter-4.2.0-1.fc33 (FEDORA-2021-eb2cae2303) Fedora Media Writer -------------------------------------------------------------------------------- Update Information:
Fedora MediaWriter 4.2.0 release. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Jan Grulich jgrulich@redhat.com - 4.2.0-1 - 4.2.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1897013 - mediawriter-4.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1897013 --------------------------------------------------------------------------------
================================================================================ openmpi-4.0.5-1.fc33 (FEDORA-2021-52c167e3da) Open Message Passing Interface -------------------------------------------------------------------------------- Update Information:
Update to 4.0.5 --------------------- - Fix a problem with MPI RMA compare and swap operations. Thanks to Wojciech Chlapek for reporting. - Disable binding of MPI processes to system resources by Open MPI if an application is launched using SLURM's srun command. - Disable building of the Fortran mpi_f08 module when configuring Open MPI with default 8 byte Fortran integer size. Thanks to @ahcien for reporting. - Fix a problem with mpirun when the --map-by option is used. Thanks to Wenbin Lyu for reporting. - Fix some issues with MPI one-sided operations uncovered using Global Arrays regression test-suite. Thanks to @bjpalmer for reporting. - Fix a problem with make check when using the PGI compiler. Thanks to Carl Ponder for reporting. - Fix a problem with MPI_FILE_READ_AT_ALL that could lead to application hangs under certain circumstances. Thanks to Scot Breitenfeld for reporting. - Fix a problem building C++ applications with newer versions of GCC. Thanks to Constantine Khrulev for reporting. -------------------------------------------------------------------------------- ChangeLog:
* Wed Sep 2 2020 Orion Poplawski orion@nwra.com - 4.0.5-1 - Update to 4.0.5 --------------------------------------------------------------------------------
================================================================================ pari-2.13.1-1.fc33 (FEDORA-2021-011244fd64) Number Theory-oriented Computer Algebra System -------------------------------------------------------------------------------- Update Information:
See http://pari.math.u-bordeaux.fr/pub/pari/unix/pari-2.13.1.changelog for changes in version 2.13.1. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Jerry James loganjerry@gmail.com - 2.13.1-1 - Version 2.13.1 * Tue Jan 19 2021 Adam Jackson ajax@redhat.com - 2.13.0-2 - Drop BuildRequires: xmkmf, which was only used when building the X11 (not fltk) GUI. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1716583 - pari-2.13.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1716583 [ 2 ] Bug #1920143 - pari-2.13.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1920143 --------------------------------------------------------------------------------
================================================================================ pdfbox-2.0.21-3.fc33 (FEDORA-2021-c2a2c2c9e5) Apache PDFBox library for working with PDF documents -------------------------------------------------------------------------------- Update Information:
Add bouncycastle 1.67 support (from daviddavid) -------------------------------------------------------------------------------- ChangeLog:
* Thu Sep 10 2020 Fabio Valentini decathorpe@gmail.com - 2.0.21-2 - Drop log4j12 dependency, it seems to not be necessary any longer. --------------------------------------------------------------------------------
================================================================================ perl-5.32.1-466.fc33 (FEDORA-2021-326f7b8e4b) Practical Extraction and Report Language -------------------------------------------------------------------------------- Update Information:
Update to Perl 5.32.1 https://metacpan.org/pod/release/SHAY/perl-5.32.1/pod/perldelta.pod -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Jitka Plesnikova jplesnik@redhat.com - 4:5.32.1-466 - 5.32.1 bump (see https://metacpan.org/pod/release/SHAY/perl-5.32.1/pod/perldelta.pod or release notes) --------------------------------------------------------------------------------
================================================================================ perl-CPAN-Perl-Releases-5.20210123-1.fc33 (FEDORA-2021-45680b498d) Mapping Perl releases on CPAN to the location of the tarballs -------------------------------------------------------------------------------- Update Information:
Updated for v5.32.1 ---- Updated for v5.33.6 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Jitka Plesnikova jplesnik@redhat.com - 5.20210123-1 - 5.20210123 bump * Thu Jan 21 2021 Jitka Plesnikova jplesnik@redhat.com - 5.20210120-1 - 5.20210120 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1918643 - perl-CPAN-Perl-Releases-5.20210120 is available https://bugzilla.redhat.com/show_bug.cgi?id=1918643 --------------------------------------------------------------------------------
================================================================================ perl-Module-CoreList-5.20210123-1.fc33 (FEDORA-2021-fa236894f3) What modules are shipped with versions of perl -------------------------------------------------------------------------------- Update Information:
Updated for v5.32.1 ---- Updated for v5.33.6 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Jitka Plesnikova jplesnik@redhat.com - 1:5.20210123-1 - 5.20210123 bump * Thu Jan 21 2021 Jitka Plesnikova jplesnik@redhat.com - 1:5.20210120-1 - 5.20210120 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1918641 - perl-Module-CoreList-5.20210120 is available https://bugzilla.redhat.com/show_bug.cgi?id=1918641 --------------------------------------------------------------------------------
================================================================================ perl-autodie-2.34-1.fc33 (FEDORA-2021-b9d52a8b18) Replace functions with ones that succeed or die -------------------------------------------------------------------------------- Update Information:
Remove rt.cpan.org reference ---- Add missing use Scalar::Utils for using bless. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Jitka Plesnikova jplesnik@redhat.com - 2.34-1 - 2.34 bump * Fri Jan 22 2021 Jitka Plesnikova jplesnik@redhat.com - 2.33-1 - 2.33 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1919099 - perl-autodie-2.33 is available https://bugzilla.redhat.com/show_bug.cgi?id=1919099 [ 2 ] Bug #1919377 - perl-autodie-2.34 is available https://bugzilla.redhat.com/show_bug.cgi?id=1919377 --------------------------------------------------------------------------------
================================================================================ php-doctrine-datafixtures-1.5.0-1.fc33 (FEDORA-2021-be84c4ba8e) Data Fixtures for all Doctrine Object Managers -------------------------------------------------------------------------------- Update Information:
**Version 1.5.0** * 347: Allow Custom ORMPurger thanks to @kissifrot -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Remi Collet remi@remirepo.net - 1.5.0-1 - update to 1.5.0 --------------------------------------------------------------------------------
================================================================================ php-laminas-servicemanager-3.6.3-1.fc33 (FEDORA-2021-be787c50d2) Laminas Framework ServiceManager component -------------------------------------------------------------------------------- Update Information:
**Version 3.6.3** - 2021-01-25 Bug - [78: Regression in 3.6.x regarding aliased services in combination with non-shared services](https://github.com/laminas/laminas-servicemanager/pull/78) thanks to @boesing ---- **Version 3.6.2** - 2021-01-17 * 74: Fix invokables merging precedence in 3.6.x thanks to @driehle ---- **Version 3.6.1** - 2021-01-10 Bug - [71: Regression fix regarding initializers](https://github.com/laminas/laminas-servicemanager/pull/71) thanks to @boesing and @Grundik ----- **Version 3.6.0** - 2021-01-10 Added - [#51](https://github.com/laminas/laminas-servicemanager/pull/51) Adds PHP 8.0 support - [#64](https://github.com/laminas/laminas-servicemanager/pull/64) Backports changes from upcoming 4.0 release and re-adds PHP 7.3 support. Changed - [#40](https://github.com/laminas/laminas-servicemanager/pull/40) modifies the behavior of the `FactoryCreator` to alphabetize import statements. - [zendframework/zend-servicemanager#221](https://github.com/zendframework/zend- servicemanager/pull/221) provides enormous performance improvements for each of the various mutator methods (`setAlias()`, `setFactory()`, etc.), `has()` lookups, and initial container configuration. Removed - [#50](https://github.com/laminas/laminas-servicemanager/pull/50) Removes PHP support prior 7.4.0 - [zendframework/zend- servicemanager#197](https://github.com/zendframework/zend- servicemanager/pull/197) drops support for PHP versions prior to 7.1. - [zendframework/zend-servicemanager#193](https://github.com/zendframework/zend- servicemanager/pull/193) drops support for HHVM. Fixed - [zendframework/zend-servicemanager#230](https://github.com/zendframework/zend- servicemanager/pull/230) fixes a problem in detecting cyclic aliases, ensuring they are detected correctly. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Remi Collet remi@remirepo.net - 3.6.3-1 - update to 3.6.3 * Mon Jan 18 2021 Remi Collet remi@remirepo.net - 3.6.2-1 - update to 3.6.2 * Mon Jan 11 2021 Remi Collet remi@remirepo.net - 3.6.1-1 - update to 3.6.1 - raise dependency on PHP 7.3 - switch to phpunit 9 --------------------------------------------------------------------------------
================================================================================ php-laminas-validator-2.14.4-1.fc33 (FEDORA-2021-6ad28b8528) Laminas Framework Validator component -------------------------------------------------------------------------------- Update Information:
**Version 2.14.4** - 2021-01-24 Bug - [91: Fix immutability issue when validating a `DateTimeImmutable` instance with the `DateStep` validator](https://github.com/laminas/laminas-validator/pull/91) thanks to @netiul ----- **Version 2.14.3** - 2021-01-24 Bug - [89: Fix Type Error when validating a `DateTimeImmutable` instance to the `DateStep` validator](https://github.com/laminas/laminas-validator/pull/89) thanks to @netiul ---- **Version 2.14.2** - 2021-01-22 Bug - [87: Removed hardcoded `version` field from `composer.json`](https://github.com/laminas/laminas- validator/pull/87) thanks to @Ocramius ----- **Version 2.14.1** - 2021-01-13 Fixed - [#83](https://github.com/laminas/laminas-validator/pull/83) Fixes regression regarding boolean `strict` option in `InArray` validator -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Remi Collet remi@remirepo.net - 2.14.4-1 - update to 2.14.4 * Fri Jan 22 2021 Remi Collet remi@remirepo.net - 2.14.2-1 - update to 2.14.2 --------------------------------------------------------------------------------
================================================================================ python-natsort-7.1.1-1.fc33 (FEDORA-2021-1b711aaa07) Python library that sorts lists using the "natural order" sort -------------------------------------------------------------------------------- Update Information:
Update to the latest stable release fixing a small documentation typo. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Jos�� Matos jamatos@fedoraproject.org - 7.1.1-1 - update to 7.1.1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1920146 - python-natsort-7.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1920146 --------------------------------------------------------------------------------
================================================================================ python-snaptime-0.2.4-1.fc33 (FEDORA-2021-177de515d0) Transforming timestamps simply -------------------------------------------------------------------------------- Update Information:
New package -------------------------------------------------------------------------------- ChangeLog:
--------------------------------------------------------------------------------
================================================================================ qt5-qtwebengine-5.15.2-7.fc33 (FEDORA-2021-c91c2cae35) Qt5 - QtWebEngine components -------------------------------------------------------------------------------- Update Information:
This update changes QtWebEngine to use the system ICU library again. On 32-bit platforms, it also fixes a sandbox issue with the time64 syscalls that was causing occasional crashes. (64-bit platforms are not affected by that issue because they do not have separate time64 syscalls, since their time syscalls always use 64-bit time_t.) -------------------------------------------------------------------------------- ChangeLog:
* Sat Jan 23 2021 Kevin Kofler Kevin@tigcc.ticalc.org - 5.15.2-7 - Fix sandbox issue on 32-bit architectures with glibc >= 2.31 (from Debian) * Sat Jan 23 2021 Kevin Kofler Kevin@tigcc.ticalc.org - 5.15.2-6 - Reenable system ICU on F33+, ICU 67 supported since 5.15.1 according to Debian * Wed Jan 20 2021 Kevin Kofler Kevin@tigcc.ticalc.org - 5.15.2-5 - Fix sandbox issue breaking text rendering with glibc 2.33 (#1904652) * Wed Dec 30 2020 Mattia Verga mattia.verga@protonmail.com - 5.15.2-4 - Rebuild for gcc bugfix upgrade * Fri Dec 4 2020 Jeff Law law@redhat.com - 5.15.2-3 - Fix another missing #include for gcc-11 * Tue Nov 24 2020 Jan Grulich jgrulich@redhat.com - 5.15.2-2 - Rebuild for qtbase with -no-reduce-relocations option --------------------------------------------------------------------------------
================================================================================ quilter-3.1.5-1.fc33 (FEDORA-2021-998fe5dc18) Focus on your writing -------------------------------------------------------------------------------- Update Information:
Update to latest version ---- Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Artem Polishchuk ego.cordatus@gmail.com - 3.1.5-1 - build(update): 3.1.5 * Sat Jan 23 2021 Artem Polishchuk ego.cordatus@gmail.com - 3.1.1-1 - build(update): 3.1.1 * Sat Jan 23 2021 Artem Polishchuk ego.cordatus@gmail.com - 3.1.0-1 - build(update): 3.1.0 * Fri Jan 22 2021 Artem Polishchuk ego.cordatus@gmail.com - 3.0.3-1 - build(update): 3.0.3 * Thu Jan 21 2021 Artem Polishchuk ego.cordatus@gmail.com - 3.0.2-1 - build(update): 3.0.2 --------------------------------------------------------------------------------
================================================================================ rpmdevtools-9.3-3.fc33 (FEDORA-2021-cb926a505c) RPM Development Tools -------------------------------------------------------------------------------- Update Information:
spectool: Download text as text -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Miro Hron��ok mhroncok@redhat.com - 9.3-3 - spectool: Download text as text * Fri Jan 22 2021 Michal Domonkos mdomonko@redhat.com - 9.3-2 - Replace requests-download dependency with requests -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1918326 - rpmdevtools-9.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1918326 --------------------------------------------------------------------------------
================================================================================ rpmlint-1.11-13.fc33 (FEDORA-2021-44d0bba655) Tool for checking common errors in RPM packages -------------------------------------------------------------------------------- Update Information:
Filter out empty `py.typed` files in Python site-packages. You can test this at least on following packages: ``` python3-attrs python3-cairo python3-dns python3-html2text python3-marshmallow python3-packaging python3-py python3-pyrsistent python3-pytest python3-tornado python3-xcffib python3-zeroconf twine ``` -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Miro Hron��ok mhroncok@redhat.com - 1.11-13 - Filter out empty py.typed files in Python site-packages --------------------------------------------------------------------------------
================================================================================ spectral-0-14.20201224gitfba0df0.fc33 (FEDORA-2021-d10ac8a694) Glossy cross-platform Matrix client -------------------------------------------------------------------------------- Update Information:
Updated to fba0df0 Git snapshot. Should fix installation issues, related to the latest Qt update. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Vitaly Zaitsev vitaly@easycoding.org - 0-14.20201224gitfba0df0 - Updated to fba0df0 Git snapshot. * Mon Nov 23 2020 Vitaly Zaitsev vitaly@easycoding.org - 0-13.20200729gitd600947 - Rebuilt due to Qt 5.15.2 update. --------------------------------------------------------------------------------
================================================================================ sqlite-3.34.1-1.fc33 (FEDORA-2021-ce785b5fe0) Library that implements an embeddable SQL database engine -------------------------------------------------------------------------------- Update Information:
rebase to version 3.34.1 -------------------------------------------------------------------------------- ChangeLog:
* Thu Jan 21 2021 Ondrej Dubaj odubaj@redhat.com - 3.34.1-1 - Updated to version 3.34.1 (https://sqlite.org/releaselog/3_34_1.html) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1918359 - sqlite-3.34.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1918359 --------------------------------------------------------------------------------
================================================================================ tcmu-runner-1.5.2-7.fc33 (FEDORA-2021-4a91649cf3) A daemon that supports LIO userspace backends -------------------------------------------------------------------------------- Update Information:
Fixes CVE-2020-28374 See tcmu-runner commit 2b16e96e6b63d0419d857f53e4cc67f0adb383fd tcmu-runner can't determine whether the device(s) referred to in XCOPY Copy Source/Copy Destination (CSCD) descriptors should be accessible to the initiator via transport settings, ACLs, etc. Consequently, fail XCOPY requests with CSCD descriptors which refer to any device other than where the XCOPY request is processed. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Maurizio Lombardi mlombard@redhat.com - 1.5.2-7 - Fixes CVE-2020-28374 --------------------------------------------------------------------------------
================================================================================ thunderbird-78.6.1-1.fc33 (FEDORA-2021-43e458d707) Mozilla Thunderbird mail/newsgroup client -------------------------------------------------------------------------------- Update Information:
Update to latest upstream version. -------------------------------------------------------------------------------- ChangeLog:
* Thu Jan 14 2021 Jan Horak jhorak@redhat.com - 78.6.1-1 - Update to 78.6.1 build1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1914997 - thunderbird-78.6.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1914997 --------------------------------------------------------------------------------
================================================================================ vte291-0.62.2-1.fc33 (FEDORA-2021-8656548c9b) Terminal emulator library -------------------------------------------------------------------------------- Update Information:
vte 0.62.2 release. For details, see https://mail.gnome.org/archives/ftp- release-list/2021-January/msg00087.html -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Kalev Lember klember@redhat.com - 0.62.2-1 - Update to 0.62.2 --------------------------------------------------------------------------------