The following Fedora 33 Security updates need testing:
Age URL
24
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c3d587d52c shim-15.4-1
18
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c56a213327
skopeo-1.2.3-1.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-1d0807008b
samba-4.13.8-0.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-be94728b95
exiv2-0.27.3-6.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-77191478ad
python-markdown2-2.4.0-1.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-96a5dabcfa
mingw-exiv2-0.27.3-5.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-6af32bfcd2
mingw-OpenEXR-2.4.1-4.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-89b7823e8c
libopenmpt-0.4.20-1.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-47f23870ec bind-9.11.31-1.fc33
bind-dyndb-ldap-11.3-7.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-7b698513d5
cups-2.3.3op2-5.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a309986711
sympa-6.2.62-1.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a499f89369 babel-2.8.1-2.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-ecf4fed550
php-phpmailer6-6.4.1-1.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-8015a8cdc4 dom4j-2.0.3-1.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-35d2bb4627
chromium-90.0.4430.93-1.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-da76643229
hivex-1.3.20-1.fc33
The following Fedora 33 Critical Path updates have yet to be approved:
Age URL
42
https://bodhi.fedoraproject.org/updates/FEDORA-2021-2961f34ccb
PackageKit-1.2.3-1.fc33
19
https://bodhi.fedoraproject.org/updates/FEDORA-2021-0fcde60f54
xdg-desktop-portal-1.8.1-2.fc33
12
https://bodhi.fedoraproject.org/updates/FEDORA-2021-45b9b30892
evolution-data-server-3.38.4-2.fc33
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-604697bc65
gnome-online-accounts-3.38.2-1.fc33
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-f1f18d78a6
nfs-utils-2.5.3-2.fc33
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-56ab6d4bcc
osinfo-db-20210426-1.fc33
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-6761b1adac
shadow-utils-4.8.1-6.fc33
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-988350dcad
poppler-0.90.0-7.fc33
7
https://bodhi.fedoraproject.org/updates/FEDORA-2021-353ac32f40
xdg-utils-1.1.3-9.fc33
7
https://bodhi.fedoraproject.org/updates/FEDORA-2021-610deea5b8
pipewire-0.3.26-2.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-d6696fafa9
qt5-qtwayland-5.15.2-6.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-be94728b95
exiv2-0.27.3-6.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-9af76fe9fa pungi-4.2.9-1.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-ea13091639
gnome-software-3.38.2-2.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-050d4e8def
selinux-policy-3.14.6-37.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-44402e3dcf
libglvnd-1.3.3-1.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-44e5c07612 git-2.31.1-3.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-da76643229
hivex-1.3.20-1.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-d3e7cf39f4
firefox-88.0-7.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-0387e0bd44
ethtool-5.12-1.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-070d07ecbd
libxcrypt-4.4.20-2.fc33
The following builds have been pushed to Fedora 33 updates-testing
R-4.0.5-1.fc33
ansible-2.9.21-1.fc33
ansible-collection-google-cloud-1.0.1-4.fc33
arm-image-installer-3.4-1.fc33
avogadro2-libs-1.93.1-1.fc33
centos-packager-0.7.0-6.fc33
chatterino2-2.3.1-1.fc33
clazy-1.9-1.fc33
community-mysql-8.0.24-1.fc33
ddnet-15.4-1.fc33
djvulibre-3.5.27-27.fc33
entr-4.9-1.fc33
exim-4.94.2-1.fc33
fuzzel-1.5.4-1.fc33
grilo-plugins-0.3.13-2.fc33
gxkb-0.9.2-1.fc33
hexchat-2.14.3-13.fc33
hwdata-0.347-1.fc33
kernel-5.11.18-200.fc33
libmodulemd-2.12.1-1.fc33
lua-5.4.3-1.fc33
mysql-selinux-1.0.4-2.fc33
openttd-1.11.2-1.fc33
php-7.4.19-1.fc33
php-cs-fixer-2.19.0-1.fc33
php-laminas-cache-2.11.1-1.fc33
php-nikic-php-parser4-4.10.5-1.fc33
python-nashpy-0.0.23-2.fc33
python-tkrzw-0.1.6-1.fc33
qpid-proton-0.34.0-1.fc33
redis-6.0.13-1.fc33
rkward-0.7.2-3.fc33
rpy-3.4.2-4.fc33
secvarctl-0.2-1.fc33
slurm-20.11.6-1.fc33
swift-lang-5.4-1.fc33
thunderbird-78.10.1-1.fc33
xen-4.14.2-1.fc33
Details about builds:
================================================================================
R-4.0.5-1.fc33 (FEDORA-2021-986b696a63)
A language for data analysis and graphics
--------------------------------------------------------------------------------
Update Information:
Update R to 4.0.5. rpy & rkward rebuilt to match where needed.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 3 2021 Tom Callaway <spot(a)fedoraproject.org> - 4.0.5-1
- update to 4.0.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1945341 - R-4.0.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1945341
--------------------------------------------------------------------------------
================================================================================
ansible-2.9.21-1.fc33 (FEDORA-2021-1439a0b04a)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
Update to ansible 2.9.21 with various small fixes to ansible-test.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 3 2021 Kevin Fenzi <kevin(a)scrye.com> - 2.9.21-1
- Update to 2.9.21. Fixes rhbz#1956584
--------------------------------------------------------------------------------
================================================================================
ansible-collection-google-cloud-1.0.1-4.fc33 (FEDORA-2021-b9c5d17eb3)
Google Cloud Platform collection
--------------------------------------------------------------------------------
Update Information:
Initial version for f33.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
arm-image-installer-3.4-1.fc33 (FEDORA-2021-0c4b13d369)
Writes binary image files to any specified block device
--------------------------------------------------------------------------------
Update Information:
- Update to 3.4 - Add spi-flashing-disk script
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 19 2021 Paul Whalen <pwhalen(a)fedoraproject.org> - 3.4-1
- Update to 3.4
- Add spi-flashing-disk script
--------------------------------------------------------------------------------
================================================================================
avogadro2-libs-1.93.1-1.fc33 (FEDORA-2021-0779998519)
Avogadro2 libraries
--------------------------------------------------------------------------------
Update Information:
- Release 1.93.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 3 2021 Antonio Trande <sagitter(a)fedoraproject.org> - 1.93.1-1
- Release 1.93.1
- Remove obsolete patches
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.93.0-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
centos-packager-0.7.0-6.fc33 (FEDORA-2021-6249d1cdaa)
Tools and files necessary for building CentOS packages
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1953690 - Review Request: centos-packager - Tools and files necessary for
building CentOS packages
https://bugzilla.redhat.com/show_bug.cgi?id=1953690
--------------------------------------------------------------------------------
================================================================================
chatterino2-2.3.1-1.fc33 (FEDORA-2021-8e8a929677)
Chat client for twitch.tv
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.1
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 2.3.1-1
- build(update): 2.3.1
--------------------------------------------------------------------------------
================================================================================
clazy-1.9-1.fc33 (FEDORA-2021-6ffb582c68)
Qt oriented code checker based on clang framework
--------------------------------------------------------------------------------
Update Information:
Update to 1.9.
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 1 2021 FeRD (Frank Dana) <ferdnyc(a)gmail.com> - 1.9-1
- New upstream release 1.9
- Build against LLVM-12 for clang-12 in Fedora 34+
- Drop upstreamed patches
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.7-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Fri Jan 22 2021 Tom Stellard <tstellar(a)redhat.com> - 1.7-2
- Rebuild for clang-11.1.0
--------------------------------------------------------------------------------
================================================================================
community-mysql-8.0.24-1.fc33 (FEDORA-2021-b8b7829a83)
MySQL client programs and shared libraries
--------------------------------------------------------------------------------
Update Information:
**MySQL 8.0.24** Release notes:
https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-24.html
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 18 2021 Lars Tangvald <lars.tangvald(a)oracle.com> - 8.0.24-1
- Update to MySQL 8.0.24
* Wed Mar 31 2021 Jonathan Wakely <jwakely(a)redhat.com> - 8.0.23-3
- Rebuilt for removed libstdc++ symbols (#1937698)
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 8.0.23-2
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1951466 - community-mysql-8.0.24 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1951466
[ 2 ] Bug #1951794 - CVE-2021-2146 CVE-2021-2164 CVE-2021-2166 CVE-2021-2169
CVE-2021-2170 CVE-2021-2171 CVE-2021-2172 CVE-2021-2174 CVE-2021-2178 CVE-2021-2179
CVE-2021-2180 CVE-2021-2193 CVE-2021-2194 CVE-2021-2196 ... community-mysql: various flaws
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1951794
--------------------------------------------------------------------------------
================================================================================
ddnet-15.4-1.fc33 (FEDORA-2021-4e7309a660)
DDraceNetwork, a cooperative racing mod of Teeworlds
--------------------------------------------------------------------------------
Update Information:
Update to version 15.4.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 ElXreno <elxreno(a)gmail.com> - 15.4-1
- Update to version 15.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1928112 - ddnet-15.3.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1928112
--------------------------------------------------------------------------------
================================================================================
djvulibre-3.5.27-27.fc33 (FEDORA-2021-d4c1c98a58)
DjVu viewers, encoders, and utilities
--------------------------------------------------------------------------------
Update Information:
This update fixes several issues in djvulibre. These are mostly related to
opening of corrupted files.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 3 2021 Marek Kasik <mkasik(a)redhat.com> - 3.5.27-27
- Avoid unsigned short overflow in GBitmap when allocating row buffer
- Resolves: #1943424
* Mon May 3 2021 Marek Kasik <mkasik(a)redhat.com> - 3.5.27-26
- Avoid stack overflow in DjVuPort by remembering which file we are opening
- Resolves: #1943411, #1943685
* Mon May 3 2021 Marek Kasik <mkasik(a)redhat.com> - 3.5.27-25
- Check input pool for NULL
- Resolves: #1943410
* Mon May 3 2021 Marek Kasik <mkasik(a)redhat.com> - 3.5.27-24
- Avoid integer overflow when allocating bitmap
- Resolves: #1943409
* Mon May 3 2021 Marek Kasik <mkasik(a)redhat.com> - 3.5.27-23
- Check image size for 0
- Resolves: #1943408
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1943685 - CVE-2021-3500 djvulibre: Stack overflow in function
DJVU::DjVuDocument::get_djvu_file() via crafted djvu file
https://bugzilla.redhat.com/show_bug.cgi?id=1943685
--------------------------------------------------------------------------------
================================================================================
entr-4.9-1.fc33 (FEDORA-2021-f98216fed6)
Run arbitrary commands when files change
--------------------------------------------------------------------------------
Update Information:
- EV_TRACE also prints file/notify descriptor limit - Set 2^16 watches if
inotify limits cannot be read - Raise an error and suggest '-n' if terminal
attributes cannot be read
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Lubom��r Sedl���� <lsedlar(a)redhat.com> - 4.9-1
- New upstream release 4.9
--------------------------------------------------------------------------------
================================================================================
exim-4.94.2-1.fc33 (FEDORA-2021-931cbcb3e6)
The exim mail transfer agent
--------------------------------------------------------------------------------
Update Information:
This is new version of exim.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.94.2-1
- New version
Resolves: rhbz#1956859
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1956859 - exim-4.94.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1956859
--------------------------------------------------------------------------------
================================================================================
fuzzel-1.5.4-1.fc33 (FEDORA-2021-9912e5de3a)
Application launcher for wlroots based Wayland compositors
--------------------------------------------------------------------------------
Update Information:
Update to 1.5.4
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 1.5.4-1
- build(update): 1.5.4
--------------------------------------------------------------------------------
================================================================================
grilo-plugins-0.3.13-2.fc33 (FEDORA-2021-ca38d68abd)
Plugins for the Grilo framework
--------------------------------------------------------------------------------
Update Information:
Update to 5.4.3. Fix bugs in hexchat and grilo lua plugins that were exposed by
the new Lua version.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Bastien Nocera <bnocera(a)redhat.com> - 0.3.13-2
+ grilo-plugins-0.3.13-1
- Fix crash with newer lua (#1956076)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1944153 - lua-5.4.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1944153
[ 2 ] Bug #1955045 - Please backport lua patch from rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1955045
--------------------------------------------------------------------------------
================================================================================
gxkb-0.9.2-1.fc33 (FEDORA-2021-3a2b2977b9)
X11 keyboard indicator and switcher
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.2
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.9.2-1
- build(update): 0.9.2
--------------------------------------------------------------------------------
================================================================================
hexchat-2.14.3-13.fc33 (FEDORA-2021-ca38d68abd)
A popular and easy to use graphical IRC (chat) client
--------------------------------------------------------------------------------
Update Information:
Update to 5.4.3. Fix bugs in hexchat and grilo lua plugins that were exposed by
the new Lua version.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 15 2021 Tom Callaway <spot(a)fedoraproject.org> - 2.14.3-13
- fix lua plugin segfault with lua 5.4.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1944153 - lua-5.4.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1944153
[ 2 ] Bug #1955045 - Please backport lua patch from rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1955045
--------------------------------------------------------------------------------
================================================================================
hwdata-0.347-1.fc33 (FEDORA-2021-2a2982adb3)
Hardware identification and configuration data
--------------------------------------------------------------------------------
Update Information:
Update pci and vendor ids
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 3 2021 Vitezslav Crhonek <vcrhonek(a)redhat.com> - 0.347-1
- Update pci and vendor ids
--------------------------------------------------------------------------------
================================================================================
kernel-5.11.18-200.fc33 (FEDORA-2021-4c5bfbfea9)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 5.11.18 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 3 2021 Justin M. Forbes <jforbes(a)fedoraproject.org> [5.11.18-200]
- nitro_enclaves: Fix stale file descriptors on failed usercopy (Mathias Krause)
* Mon May 3 2021 Justin M. Forbes <jforbes(a)fedoraproject.org> [5.11.18-0]
- Enable mtdram for fedora (rhbz 1955916) (Justin M. Forbes)
- hardlink is in /usr/bin/ (rhbz 1889043) (Justin M. Forbes)
- sfc: ef10: fix TX queue lookup in TX event handling (Edward Cree)
- sfc: farch: fix TX queue lookup in TX event handling (Edward Cree)
- sfc: farch: fix TX queue lookup in TX flush done handling (Edward Cree)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1953022 - kernel: nitro_enclaves stale file descriptors on failed usercopy
https://bugzilla.redhat.com/show_bug.cgi?id=1953022
--------------------------------------------------------------------------------
================================================================================
libmodulemd-2.12.1-1.fc33 (FEDORA-2021-04e178963a)
Module metadata manipulation library
--------------------------------------------------------------------------------
Update Information:
This release relaxes context value up to 13 characters including an underscore
character in modulemd v2 format. This reenables scratch-builds in MBS. It also
improves the tests.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 3 2021 Petr Pisar <ppisar(a)redhat.com> - 2.12.1-1
- 2.12.1 bump
--------------------------------------------------------------------------------
================================================================================
lua-5.4.3-1.fc33 (FEDORA-2021-ca38d68abd)
Powerful light-weight programming language
--------------------------------------------------------------------------------
Update Information:
Update to 5.4.3. Fix bugs in hexchat and grilo lua plugins that were exposed by
the new Lua version.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 31 2021 Tom Callaway <spot(a)fedoraproject.org> - 5.4.3-1
- update to 5.4.3
- apply fix for bug3
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.4.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1944153 - lua-5.4.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1944153
[ 2 ] Bug #1955045 - Please backport lua patch from rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1955045
--------------------------------------------------------------------------------
================================================================================
mysql-selinux-1.0.4-2.fc33 (FEDORA-2021-9f5a6c26ca)
SELinux policy modules for MySQL and MariaDB packages
--------------------------------------------------------------------------------
Update Information:
Remove setuid/setgid capabilities from mysqld_t type Fix rpm verification
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Lukas Javorsky <ljavorsk(a)redhat.com> - 1.0.4-2
- Fix rpm verification it's a ghost file so it should ignore the error
* Fri Mar 19 2021 Lukas Javorsky <ljavorsk(a)redhat.com> - 1.0.4-1
- Rebase to 1.0.4
- Unintentional removal of semicolon
* Fri Mar 19 2021 Lukas Javorsky <ljavorsk(a)redhat.com> - 1.0.3-1
- Rebase to 1.0.3
- Remove setuid/setgid capabilities from mysqld_t type.
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
openttd-1.11.2-1.fc33 (FEDORA-2021-3060a11d0c)
Transport system simulation game
--------------------------------------------------------------------------------
Update Information:
1.11.2 (2021-05-03)
------------------------------------------------------------------------ Change:
[Win32] Limit hardware accelerated video driver to OpenGL 3.2 or higher (#9077)
Change: More improvements to the GUI at different scales (#9075, #9102, #9107,
#9133, #9174, #9183) Fix: Query windows could be partially drawn (#9184) Fix
#9113: Crash when removing an airport that exists in an aircraft's orders
(#9182) Fix #9117: [Fluidsynth] Hang when changing song (#9181) Fix: String
validation could leave invalid UTF-8 encoded strings (#9096) Fix: [Network]
Out-of-bounds memory access with modified servers sending too short password
salts (#9176) Fix: Crash when extra viewport with zero height has sign in view
(#9175) Fix #9147: Crash when taking screenshots (#9169) Fix #6598: [Network]
Prevent crashes when (re)joining network game by falling back to main menu first
(#9163) Fix #9152: Screenshot success popup window was treated as an error
(#9159) Fix: Fast-forward stuttering when vsync is enabled (#9140) Fix:
[Network, Win32] Network errors were handled badly (#9116) Fix: [Network]
Savegame transfer could stall in rare cases (#9106) Fix #9097: [NewGRF] Cargo
initial payment variable was being truncated (#9098) Fix: [NewGRF] Industry
variable 66 and object variable 46 erroneously truncated the distance (#9088)
Fix: [NewGRF] Industry variables 65 and 66 ignored the parameter, and always
used the north tile (#9088) Fix: Do not include regression test AI in bundle
(#9068, #9164) Fix #9062: [Win32] Version in executable was not set to current
release version (#9066, #9154)
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Felix Kaechele <felix(a)kaechele.ca> - 1.11.2-1
- update to 1.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1956614 - openttd-1.11.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1956614
--------------------------------------------------------------------------------
================================================================================
php-7.4.19-1.fc33 (FEDORA-2021-6f34b7c382)
PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:
**PHP version 7.4.19** (06 May 2021) **PDO_pgsql:** * Reverted bug fix for
php#80892 (PDO::PARAM_INT is treated the same as PDO::PARAM_STR). (Matteo)
---- **PHP version 7.4.18** (29 Apr 2021) **Core:** * Fixed bug php#80781
(Error handler that throws ErrorException infinite loop). (Nikita) * Fixed bug
php#75776 (Flushing streams with compression filter is broken). (cmb) **Dba:**
* Fixed bug php#80817 (dba_popen() may cause segfault during RSHUTDOWN). (cmb)
**DOM:** * Fixed bug php#66783 (UAF when appending DOMDocument to element).
(cmb) **FPM:** * Fixed bug php#80024 (Duplication of info about inherited
socket after pool removing). (Jakub Zelenka) **FTP:** * Fixed bug php#80880
(SSL_read on shutdown, ftp/proc_open). (cmb, Jakub Zelenka) **Imap:** * Fixed
bug php#80710 (imap_mail_compose() header injection). (cmb, Stas) **Intl:** *
Fixed bug php#80763 (msgfmt_format() does not accept DateTime references). (cmb)
**LibXML:** * Fixed bug php#51903 (simplexml_load_file() doesn't use HTTP
headers). (cmb) * Fixed bug php#73533 (Invalid memory access in
php_libxml_xmlCheckUTF8). (cmb) **MySQLnd:** * Fixed bug php#80713 (SegFault
when disabling ATTR_EMULATE_PREPARES and MySQL 8.0). (Nikita) * Fixed bug
php#80837 (Calling stmt_store_result after fetch doesn't throw an error). (Kamil
Tekiela) **Opcache:** * Fixed bug php#80805 (create simple class and get error
in opcache.so). (Nikita) * Fixed bug php#80950 (Variables become null in if
statements). (Nikita) **Pcntl:** * Fixed bug php#79812 (Potential integer
overflow in pcntl_exec()). (cmb) **PCRE:** * Fixed bug php#80866 (preg_split
ignores limit flag when pattern with \K has 0-width fullstring match). (Kamil
Tekiela) **PDO_ODBC:** * Fixed bug php#80783 (PDO ODBC truncates BLOB records
at every 256th byte). (cmb) **PDO_pgsql:** * Fixed bug php#80892
(PDO::PARAM_INT is treated the same as PDO::PARAM_STR). (Matteo) **phpdbg:** *
Fixed bug php#80757 (Exit code is 0 when could not open file). (Felipe)
**Session:** * Fixed bug php#80774 (session_name() problem with backslash).
(cmb) * Fixed bug php#80889 (Cannot set save handler when save_handler is
invalid). (cmb) **SOAP:** * Fixed bug php#69668 (SOAP special XML characters
in namespace URIs not encoded). (cmb) **Standard:** * Fixed bug php#78719
(http wrapper silently ignores long Location headers). (cmb) * Fixed bug
php#80771 (phpinfo(INFO_CREDITS) displays nothing in CLI). (cmb) * Fixed bug
php#80838 (HTTP wrapper waits for HTTP 1 response after HTTP 101). (manuelm) *
Fixed bug php#80915 (Taking a reference to $_SERVER hides its values from
phpinfo()). (Rowan Tommins)
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Remi Collet <remi(a)remirepo.net> - 7.4.19-1
- Update to 7.4.19 -
http://www.php.net/releases/7_4_19.php
* Tue Apr 27 2021 Remi Collet <remi(a)remirepo.net> - 7.4.18-1
- Update to 7.4.18 -
http://www.php.net/releases/7_4_18.php
--------------------------------------------------------------------------------
================================================================================
php-cs-fixer-2.19.0-1.fc33 (FEDORA-2021-93e3d619c7)
A tool to automatically fix PHP code style
--------------------------------------------------------------------------------
Update Information:
**Changelog for v2.19.0** * feature #4238 TrailingCommaInMultilineFixer -
introduction (kubawerlos) * feature #4592 PhpdocToPropertyTypeFixer -
introduction (julienfalque) * feature #5390 feature #4024 added a `list-files`
command (clxmstaab, keradus) * feature #5635 Add list-sets command (keradus) *
feature #5674 UX: Display deprecations to end-user (keradus) * minor #5601
Always stop when "PHP_CS_FIXER_FUTURE_MODE" is used (kubawerlos) * minor #5607
DX: new config filename (keradus) * minor #5613 DX: UtilsTest - add missing
teardown (keradus) * minor #5631 DX: config deduplication (keradus) * minor
#5633 fix typos (staabm) * minor #5642 Deprecate parameter of Token::toJson()
(keradus) * minor #5672 DX: do not test deprecated fixer (kubawerlos)
--------------------- **Changelog for v2.18.7** * bug #5593
SingleLineThrowFixer - fix handling anonymous classes (kubawerlos) * bug #5654
SingleLineThrowFixer - fix for match expression (kubawerlos) * bug #5660
TypeAlternationTransformer - fix for "array" type in type alternation
(kubawerlos) * bug #5665 NullableTypeDeclarationForDefaultNullValueFixer - fix
for nullable with attribute (kubawerlos) * bug #5670 PhpUnitNamespacedFixer - do
not try to fix constant (kubawerlos) * bug #5671 PhpdocToParamTypeFixer - do not
change function call (kubawerlos) * bug #5673 GroupImportFixer - Fix failing
case (julienfalque) * minor #4591 Refactor conversion of PHPDoc to type
declarations (julienfalque, keradus) * minor #5611 DX: use method
expectDeprecation from Symfony Bridge instead of annotation (kubawerlos) * minor
#5658 DX: use constants in tests for Fixer configuration (keradus) * minor #5661
DX: remove PHPStan exceptions for "tests" from phpstan.neon (kubawerlos) *
minor
#5662 Change wording from "merge" to "intersect" (jschaedl) * minor
#5663 DX: do
not abuse "inheritdoc" tag (kubawerlos) * minor #5664 DX: code grooming
(keradus)
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Remi Collet <remi(a)remirepo.net> - 2.19.0-1
- update to 2.19.0
--------------------------------------------------------------------------------
================================================================================
php-laminas-cache-2.11.1-1.fc33 (FEDORA-2021-52791da794)
Laminas Framework Cache component
--------------------------------------------------------------------------------
Update Information:
**Version 2.11.1** Fixes * Fixes a PSR-6 deletion regression which was
introduced in 2.10.2. The CacheItemPoolDecorator now verifies that all keys are
absent from the storage. This is now in sync with the SimpleCacheDecorator.
---- **Version 2.11.0** This release aims to support PHP 8.0 for laminas-
cache. In laminas-cache v2.10.0, adapters were split into their very own
components without receiving any changes. These changes were necessary to keep
laminas-cache maintainable long term as development can now be focused on these
adapters rather than the whole ecosystem. Most of these adapters will not
receive support for PHP 8.0, so they are likely blocking users from migrating to
PHP 8.0 if the projects won't start to prepare for laminas-cache v3.0.0 which
requires all projects to require those adapters they really use. With laminas-
cache v2.10+, composer comes to the rescue and enables users to start prepare
their project by explicitly use a require entry for those adapters which are in
use while "removing" adapters, they don't. To achieve this, the replace
section
of the projects composer.json has to list all adapters which are not used. An
example configuration can be found either in the installation section of the
laminas documentation or in the README.md of this package. Added * Added
support for PHP 8.0 Removed * Removed support for PHP prior 7.3 *
Removed support for laminas-servicemanager and laminas-eventmanager in their v2
versions Deprecated * PatternFactory has been marked as deprecated. Instead
of using static factories like this, receiving the PatternPluginManager is
recommended. ---- **Version 2.10.2** Fixed * The decorator for PSR-6
CacheItemPool assumed that a deletion was successful even if the underlying
storage failed to delete these items.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Remi Collet <remi(a)remirepo.net> - 2.11.1-1
- update to 2.11.1
- update laminas-cache-storage-adapter-apcu to 1.1.0
* Mon May 3 2021 Remi Collet <remi(a)remirepo.net> - 2.11.0-2
- update laminas-cache-storage-adapter-blackhole to 1.2.1
- update laminas-cache-storage-adapter-memcache to 1.1.0
* Mon May 3 2021 Remi Collet <remi(a)remirepo.net> - 2.11.0-1
- update to 2.11.0
- update laminas-cache-storage-adapter-redis to 1.1.0
- update laminas-cache-storage-adapter-session to 1.1.0
- raise dependency on PHP 7.3
- raise dependency on laminas-eventmanager 3.3
- raise dependency on laminas-servicemanager 3.6
- raise dependency on laminas-stdlib 3.3
- switch to phpunit9
* Thu Apr 29 2021 Remi Collet <remi(a)remirepo.net> - 2.10.2-1
- update to 2.10.2
- update laminas-cache-storage-adapter-filesystem to 1.1.1
- update laminas-cache-storage-adapter-memcached to 1.1.0
- update laminas-cache-storage-adapter-memory to 1.1.0
- update laminas-cache-storage-adapter-test to 1.1.1
--------------------------------------------------------------------------------
================================================================================
php-nikic-php-parser4-4.10.5-1.fc33 (FEDORA-2021-894aec306f)
A PHP parser written in PHP - version 4
--------------------------------------------------------------------------------
Update Information:
**Version 4.10.5** (2020-05-03) Added * [PHP 8.1] Added support for enums.
These are represented using the `Stmt\Enum_` and `Stmt\EnumCase` nodes. * [PHP
8.1] Added support for never type. This type will now be returned as an
`Identifier` rather than `Name`. * Added `ClassConst` builder. Changed *
Non-UTF-8 code units in strings will now be hex-encoded. Fixed * Fixed
precedence of arrow functions.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Remi Collet <remi(a)remirepo.net> - 4.10.5-1
- update to 4.10.5
--------------------------------------------------------------------------------
================================================================================
python-nashpy-0.0.23-2.fc33 (FEDORA-2021-891796c53b)
A library to compute equilibria of 2 player normal form games
--------------------------------------------------------------------------------
Update Information:
Update to the latest version of package.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.0.23-2
- Enhance tests with 'interrogate'
* Tue May 4 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.0.23-1
- Update to the latest version
- Using pyprojet-rpm (upstream switched to flit)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1956763 - python-nashpy-0.0.23 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1956763
--------------------------------------------------------------------------------
================================================================================
python-tkrzw-0.1.6-1.fc33 (FEDORA-2021-e1888163c1)
TKRZW Python bindings
--------------------------------------------------------------------------------
Update Information:
Version bump
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 TI_Eugene <ti.eugene(a)gmail.com> - 0.1.6-1
- Version bump
--------------------------------------------------------------------------------
================================================================================
qpid-proton-0.34.0-1.fc33 (FEDORA-2021-888ff2f6e5)
A high performance, lightweight messaging library
--------------------------------------------------------------------------------
Update Information:
Rebased to 0.34.0.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Irina Boverman <iboverma(a)redhat.com> - 0.34.0-1
- Rebased to 0.34.0
--------------------------------------------------------------------------------
================================================================================
redis-6.0.13-1.fc33 (FEDORA-2021-8b19c99d6a)
A persistent key-value database
--------------------------------------------------------------------------------
Update Information:
**Redis 6.0.13** Released Mon May 3 19:00:00 IST 2021 Upgrade urgency:
SECURITY, Contains fixes to security issues that affect authenticated client
connections. LOW otherwise. Integer overflow in STRALGO LCS command
(**CVE-2021-29477**): An integer overflow bug in Redis version 6.0 or newer
could be exploited using the STRALGO LCS command to corrupt the heap and
potentially result in remote code execution. The integer overflow bug exists in
all versions of Redis starting with 6.0. Integer overflow in COPY command for
large intsets (**CVE-2021-29478**): An integer overflow bug in Redis 6.2 could
be exploited to corrupt the heap and potentially result with remote code
execution. The vulnerability involves changing the default set-max-intset-
entries configuration value, creating a large set key that consists of integer
values and using the COPY command to duplicate it. The integer overflow bug
exists in all versions of Redis starting with 2.6, where it could result with a
corrupted RDB or DUMP payload, but not exploited through COPY (which did not
exist before 6.2). Bug fixes: * Cluster: Skip unnecessary check which may
prevent failure detection (#8585) * Fix not starting on alpine/libmusl without
IPv6 (#8655) Improvements: * Fix performance regression in BRPOP on Redis 6.0
(#8689) Modules: * Fix edge-case when a module client is unblocked (#8618)
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Remi Collet <remi(a)remirepo.net> - 6.0.13-1
- Upstream 6.0.13 release.
--------------------------------------------------------------------------------
================================================================================
rkward-0.7.2-3.fc33 (FEDORA-2021-986b696a63)
Graphical frontend for R language
--------------------------------------------------------------------------------
Update Information:
Update R to 4.0.5. rpy & rkward rebuilt to match where needed.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Tom Callaway <spot(a)fedoraproject.org> - 0.7.2-3
- rebuild for R 4.0.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1945341 - R-4.0.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1945341
--------------------------------------------------------------------------------
================================================================================
rpy-3.4.2-4.fc33 (FEDORA-2021-986b696a63)
Python interface to the R language
--------------------------------------------------------------------------------
Update Information:
Update R to 4.0.5. rpy & rkward rebuilt to match where needed.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Tom Callaway <spot(a)fedoraproject.org> - 3.4.2-4
- rebuild for R 4.0.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1945341 - R-4.0.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1945341
--------------------------------------------------------------------------------
================================================================================
secvarctl-0.2-1.fc33 (FEDORA-2021-0f18d3a9a0)
A command line tool for managing Secure Boot Variables on POWER
--------------------------------------------------------------------------------
Update Information:
Update secvarctl package to v0.2.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 29 2021 Nick Child <nnac123(a)linux.vnet.ibm.com> - 0.2-1
- Update to v0.2
- Allow compiling with Openssl
--------------------------------------------------------------------------------
================================================================================
slurm-20.11.6-1.fc33 (FEDORA-2021-dd69879c2a)
Simple Linux Utility for Resource Management
--------------------------------------------------------------------------------
Update Information:
Update to 20.11.6
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Philip Kovacs <pkfed(a)fedoraproject.org> - 20.11.6-1
- Release of 20.11.6
* Mon Apr 12 2021 Philip Kovacs <pkfed(a)fedoraproject.org> - 20.11.5-2
- Add subpackage slurm-slurmrestd (Slurm REST API daemon)
* Fri Mar 26 2021 Philip Kovacs <pkfed(a)fedoraproject.org> - 20.11.5-1
- Release of 20.11.5
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 20.11.3-3
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 20.11.3-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
swift-lang-5.4-1.fc33 (FEDORA-2021-aaae665ef8)
Apple's Swift programming language
--------------------------------------------------------------------------------
Update Information:
Updated to swift-5.4-RELEASE
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 27 2021 Ron Olson <tachoknight(a)gmail.com> 5.4-1
- Updated to swift-5.4-RELEASE
* Tue Apr 6 2021 Ron Olson <tachoknight(a)gmail.com> 5.4-1
- Updated to swift-5.4-DEVELOPMENT-SNAPSHOT-2021-03-25-a
* Tue Mar 30 2021 Jonathan Wakely <jwakely(a)redhat.com> - 5.3.3-2
- Rebuilt for removed libstdc++ symbol (#1937698)
--------------------------------------------------------------------------------
================================================================================
thunderbird-78.10.1-1.fc33 (FEDORA-2021-8f13872334)
Mozilla Thunderbird mail/newsgroup client
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream version.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Jan Horak <jhorak(a)redhat.com> - 78.10.1-1
- Update to 78.10.1 build1
* Tue Mar 30 2021 Jonathan Wakely <jwakely(a)redhat.com> - 78.8.1-2
- Rebuilt for removed libstdc++ symbol (#1937698)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1951957 - Thunderbird 78.10.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1951957
--------------------------------------------------------------------------------
================================================================================
xen-4.14.2-1.fc33 (FEDORA-2021-18a60878c9)
Xen is a virtual machine monitor
--------------------------------------------------------------------------------
Update Information:
update to 4.14.2 remove or adjust patch content now included or superceded
upstream re-copy grub modules if they have changed
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 4 2021 Michael Young <m.a.young(a)durham.ac.uk> - 4.14.2-1
- update to 4.14.2
remove or adjust patch content now included or superceded upstream
- re-copy grub modules if they have changed
--------------------------------------------------------------------------------