The following Fedora 32 Security updates need testing:
Age URL
19
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4c8458e373
containernetworking-plugins-0.9.1-1.fc32
16
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b61fc0e1b7
linux-firmware-20210208-117.fc32
15
https://bodhi.fedoraproject.org/updates/FEDORA-2021-16d1596c42
buildah-1.19.4-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2021-e03b328043
webkit2gtk3-2.30.5-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-7c1bb32d13
python39-3.9.2-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-0595625865
bind-9.11.28-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b904045ad5
nagios-4.4.6-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-88d9d29680
python3-3.8.8-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2021-9a0903469c
ansible-2.9.18-1.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-8d45d297c6
kernel-5.10.18-100.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-5e9894a0c5
screen-4.8.0-5.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b98baa06c1
chromium-88.0.4324.182-1.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-954ebabcf7 isync-1.4.1-1.fc32
The following Fedora 32 Critical Path updates have yet to be approved:
Age URL
237
https://bodhi.fedoraproject.org/updates/FEDORA-2020-ebbe0f7b25 cpio-2.13-6.fc32
77
https://bodhi.fedoraproject.org/updates/FEDORA-2020-345d2fd2aa
iproute-5.9.0-1.fc32
52
https://bodhi.fedoraproject.org/updates/FEDORA-2021-50c22ae8fd
lua-socket-3.0-0.27.rc1.fc32
41
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b5281bf395
gnome-shell-3.36.8-1.fc32 mutter-3.36.8-1.fc32
22
https://bodhi.fedoraproject.org/updates/FEDORA-2021-f0efcc3af3
pciutils-3.7.0-3.fc32
16
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b61fc0e1b7
linux-firmware-20210208-117.fc32
12
https://bodhi.fedoraproject.org/updates/FEDORA-2021-fe00210717
libpcap-1.10.0-1.fc32 tcpdump-4.99.0-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2021-e03b328043
webkit2gtk3-2.30.5-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2021-2df31e679c
elfutils-0.183-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2021-61ef58a988
osinfo-db-20210215-1.fc32
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-046318b62d
libusbx-1.0.24-2.fc32
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-03649421b2 pungi-4.2.8-1.fc32
7
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4605cffca5
xdg-desktop-portal-1.8.1-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-5a7113ce31 koji-1.24.0-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-9dbd7b358a audit-3.0.1-2.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a20872d158
libxcrypt-4.4.18-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-88d9d29680
python3-3.8.8-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a15939f099 pcre2-10.36-4.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-fe13a855ed
dbus-broker-27-2.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-8d45d297c6
kernel-5.10.18-100.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-0add7af1ca
gtk3-3.24.26-1.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-84fe85a7ae
thunderbird-78.8.0-1.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-449618a8a8 fwupd-1.5.7-1.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-ebd097aa46
nfs-utils-2.5.3-0.fc32
The following builds have been pushed to Fedora 32 updates-testing
dblatex-0.3.12-2.fc32
emacs-dockerfile-mode-1.4-1.fc32
erlang-22.3.4.16-1.fc32
grammalecte-2.1.1-1.fc32
growlight-1.2.31-2.fc32
hplip-3.21.2-1.fc32
libsndfile-1.0.31-3.fc32
mailnag-2.2.0-1.fc32
mame-0.229-1.fc32
mupdf-1.18.0-5.fc32
nordugrid-arc-6.10.2-1.fc32
nss-3.62.0-1.fc32
openscad-2019.05-13.fc32
python-PyMuPDF-1.18.8-2.fc32
python-typeshed-0.1-0.20191011git2.fc32
python35-3.5.10-5.fc32
rpminspect-1.3.1-1.fc32
rpminspect-data-fedora-1.3-1.fc32
s3fs-fuse-1.89-1.fc32
tmt-1.3.1-1.fc32
vdr-osdteletext-1.0.0-1.fc32
zathura-pdf-mupdf-0.3.6-6.fc32
Details about builds:
================================================================================
dblatex-0.3.12-2.fc32 (FEDORA-2021-b4faa1684d)
DocBook to LaTeX/ConTeXt Publishing
--------------------------------------------------------------------------------
Update Information:
replace inkscape by rsvg (#bz 1833047)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 18 2021 Michael J Gruber <mjg(a)fedoraproject.org> - 0.3.12-2
- replace inkscape by rsvg (#bz 1833047)
* Thu Feb 18 2021 Michael J Gruber <mjg(a)fedoraproject.org> - 0.3.12-1
- rebase to 0.3.12
- follow yet another package/tree renaming
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.11-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.11-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue Jun 23 2020 Michael J Gruber <mjg(a)fedoraproject.org> - 0.3.11-6
- BR setuptools explicitly
* Fri May 22 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 0.3.11-5
- Rebuilt for Python 3.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1833047 - dblatex cannot convert png to pdf using inkscape 1.x
https://bugzilla.redhat.com/show_bug.cgi?id=1833047
[ 2 ] Bug #1833095 - dblatex: TypeError: can't concat str to bytes
https://bugzilla.redhat.com/show_bug.cgi?id=1833095
--------------------------------------------------------------------------------
================================================================================
emacs-dockerfile-mode-1.4-1.fc32 (FEDORA-2021-e9f99e861e)
An emacs mode for handling Dockerfiles
--------------------------------------------------------------------------------
Update Information:
The old pattern would match the following filenames: - `*Dockerfile` -
`*Dockerfile.*` This is because the pattern does not start with a slash
indicating the beginning of the basename. Personally this led to a few false
positives, like for example "siren-dockerfile.el" that sets up and configures
dockerfile-mode in my Emacs configuration. This change restricts the patterns
to: - `Dockerfile` - `Dockerfile.*` - `*.dockerfile` I believe this is still
wide enough to capture all common naming conventions for Dockerfiles.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 25 2021 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 1.4-1
- Update to 1.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1930584 - emacs-dockerfile-mode-1.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1930584
--------------------------------------------------------------------------------
================================================================================
erlang-22.3.4.16-1.fc32 (FEDORA-2021-8ea2ac768f)
General-purpose programming language and runtime environment
--------------------------------------------------------------------------------
Update Information:
Erlang ver. 22.3.4.16
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 25 2021 Peter Lemenkov <lemenkov(a)gmail.com> - 22.3.4.16-1
- Ver. 22.3.4.16
--------------------------------------------------------------------------------
================================================================================
grammalecte-2.1.1-1.fc32 (FEDORA-2021-2bdc5186f9)
French grammar checker
--------------------------------------------------------------------------------
Update Information:
- New rules. - Clean many false positives. - [Graphspell] spelling suggestion
engine improvements
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 25 2021 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 2.1.1-1
- Update to 2.1.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1931486 - grammalecte-2.1.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1931486
--------------------------------------------------------------------------------
================================================================================
growlight-1.2.31-2.fc32 (FEDORA-2021-88cb43d31d)
Disk manipulation and system setup tool
--------------------------------------------------------------------------------
Update Information:
New upstream 1.2.31.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 16 2021 Nick Black <dankamongmen(a)gmail.com> - 1.2.31-1
- New upstream release, fixes terminalless case for growlight-readline
* Mon Feb 15 2021 Nick Black <dankamongmen(a)gmail.com> - 1.2.30-1
- New upstream release
* Sun Feb 14 2021 Nick Black <dankamongmen(a)gmail.com> - 1.2.28-1
- New upstream release
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.27-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
hplip-3.21.2-1.fc32 (FEDORA-2021-6f83ab3a4f)
HP Linux Imaging and Printing Project
--------------------------------------------------------------------------------
Update Information:
1929977 - hplip-3.21.2 is available get out of hp-setup if the device is a
standalone scanner remove the old search algorithm
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 19 2021 Zdenek Dohnal <zdohnal(a)redhat.com> - 3.21.2-1
- 1929977 - hplip-3.21.2 is available
* Fri Feb 19 2021 Zdenek Dohnal <zdohnal(a)redhat.com> - 3.20.11-6
- get out of hp-setup if the device is a standalone scanner
* Thu Feb 18 2021 Zdenek Dohnal <zdohnal(a)redhat.com> - 3.20.11-6
- remove the old search algorithm
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1929977 - hplip-3.21.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1929977
--------------------------------------------------------------------------------
================================================================================
libsndfile-1.0.31-3.fc32 (FEDORA-2021-dcf7002718)
Library for reading and writing sound files
--------------------------------------------------------------------------------
Update Information:
Add back missing support for flac, ogg and vorbis
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 22 2021 Michal Hlavinka <mhlavink(a)redhat.com> - 1.0.31-3
- add opus-devel BR to satisfy configure requirements check (#1931251)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1931251 - libsndfile-1.0.31-1.fc32.x86_64 has shipped without support for
flac, ogg or vorbis.
https://bugzilla.redhat.com/show_bug.cgi?id=1931251
--------------------------------------------------------------------------------
================================================================================
mailnag-2.2.0-1.fc32 (FEDORA-2021-f341d161e0)
Mail notification daemon
--------------------------------------------------------------------------------
Update Information:
Update to 2.2. Quote from
https://github.com/pulb/mailnag/releases/tag/v2.2.0
* Massive robustness improvements. Especially long running IMAP IDLE connections
do survive peer resets and system hibernation now * New default connectivity
test based on glib NetworkMonitor (likely to improve VPN issues as well) *
Configuration UI hints for Gmail
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 15 2021 Thorsten Leemhuis <fedora(a)leemhuis.info> - 2.2.0-1
- update to version 2.2.0
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Thu Dec 31 2020 Thorsten Leemhuis <fedora(a)leemhuis.info> - 2.1.0-1
- update to version 2.1.0
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.0.0-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 2.0.0-5
- Rebuilt for Python 3.9
--------------------------------------------------------------------------------
================================================================================
mame-0.229-1.fc32 (FEDORA-2021-4d095a9cd2)
Multiple Arcade Machine Emulator
--------------------------------------------------------------------------------
Update Information:
An update to the latest upstream release: *
https://www.mamedev.org/?p=496
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 24 2021 Julian Sikorski <belegdol(a)fedoraproject.org> - 0.229-1
- Update to 0.229
--------------------------------------------------------------------------------
================================================================================
mupdf-1.18.0-5.fc32 (FEDORA-2021-d8e6f014e5)
A lightweight PDF viewer and toolkit
--------------------------------------------------------------------------------
Update Information:
CVE-2021-3407
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 23 2021 Michael J Gruber <mjg(a)fedoraproject.org> - 1.18.0-5
- CVE-2021-3407 (bz #1931964, bz#1931965)
* Tue Jan 26 2021 Michael J Gruber <mjg(a)fedoraproject.org> - 1.18.0-4
- (original date: Thu Oct 29 2020)
- remove obsolete patch
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.18.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1931964 - CVE-2021-3407 mupdf: Double free of object during linearization
https://bugzilla.redhat.com/show_bug.cgi?id=1931964
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-6.10.2-1.fc32 (FEDORA-2021-305bf3fe3f)
Advanced Resource Connector Middleware
--------------------------------------------------------------------------------
Update Information:
ARC 6.10.2
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 24 2021 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.10.2-1
- Update to version 6.10.2
--------------------------------------------------------------------------------
================================================================================
nss-3.62.0-1.fc32 (FEDORA-2021-fcc0494a63)
Network Security Services
--------------------------------------------------------------------------------
Update Information:
Update NSS to 3.62 for the next release of Firefox
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 23 2021 Bob Relyea <rrelyea(a)redhat.com> - 3.62.0-1
- Update to NSS 3.62.0
--------------------------------------------------------------------------------
================================================================================
openscad-2019.05-13.fc32 (FEDORA-2021-793da7882b)
The Programmers Solid 3D CAD Modeller
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2020-28599.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 25 2021 Miro Hron��ok <mhroncok(a)redhat.com> - 2019.05-13
- Security fix for CVE-2020-28599
- Fixes: rhbz#1932557
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
2019.05-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Wed Jun 3 2020 Jonathan Wakely <jwakely(a)redhat.com> - 2019.05-11
- Rebuilt and patched for Boost 1.73.0 (#1841257)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1932554 - CVE-2020-28599 openscad: Stack-based buffer overflow in
import_stl.cc:import_stl
https://bugzilla.redhat.com/show_bug.cgi?id=1932554
--------------------------------------------------------------------------------
================================================================================
python-PyMuPDF-1.18.8-2.fc32 (FEDORA-2021-d8e6f014e5)
Python binding for MuPDF - a lightweight PDF and XPS viewer
--------------------------------------------------------------------------------
Update Information:
CVE-2021-3407
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 24 2021 Michael J Gruber <mjg(a)fedoraproject.org> - 1.18.8-2
- rebuild for mupdf CVE-2021-3407
* Sat Feb 6 2021 Scott Talbert <swt(a)techie.net> - 1.18.8-1
- Update to new upstream release 1.18.8 (#1924379)
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.18.6-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Sat Jan 9 2021 Scott Talbert <swt(a)techie.net> - 1.18.6-1
- Update to new upstream release 1.18.6 (#1913766)
* Sun Dec 20 2020 Scott Talbert <swt(a)techie.net> - 1.18.5-1
- Update to new upstream release 1.18.5 (#1908813)
* Sat Nov 21 2020 Scott Talbert <swt(a)techie.net> - 1.18.4-1
- Update to new upstream release 1.18.4 (#1900148)
* Tue Nov 10 2020 Scott Talbert <swt(a)techie.net> - 1.18.3-1
- Update to new upstream release 1.18.3 (#1896141)
* Sun Nov 8 2020 Scott Talbert <swt(a)techie.net> - 1.18.2-1
- Update to new upstream release 1.18.2 (#1892160)
* Mon Oct 26 2020 Scott Talbert <swt(a)techie.net> - 1.18.1-1
- Update to new upstream release 1.18.1 (#1889179)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1931964 - CVE-2021-3407 mupdf: Double free of object during linearization
https://bugzilla.redhat.com/show_bug.cgi?id=1931964
--------------------------------------------------------------------------------
================================================================================
python-typeshed-0.1-0.20191011git2.fc32 (FEDORA-2021-551a1dcc1f)
Static type information for python modules
--------------------------------------------------------------------------------
Update Information:
Revert to last known good.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 25 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 1:0.1-0.20191011git2
- Release bump.
* Thu Feb 25 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 1:0.1-0.20191011git
- Epoch bump, revert to last known good.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1929522 - python3-mypy-0.782-2.fc33 has outdated typeshed vendored
https://bugzilla.redhat.com/show_bug.cgi?id=1929522
[ 2 ] Bug #1932920 - mypy complains that typeshed is broken
https://bugzilla.redhat.com/show_bug.cgi?id=1932920
--------------------------------------------------------------------------------
================================================================================
python35-3.5.10-5.fc32 (FEDORA-2021-9cc1bfea8c)
Version 3.5 of the Python programming language
--------------------------------------------------------------------------------
Update Information:
Fix FTBFS on ppc64le
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 19 2021 Petr Viktorin <pviktori(a)redhat.com> - 3.5.10-5
- Fix FTBFS on ppc64le and x86-64
Resolves:
https://bugzilla.redhat.com/show_bug.cgi?id=1923654
Resolves:
https://bugzilla.redhat.com/show_bug.cgi?id=1923658
* Mon Oct 5 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 3.5.10-2
- Use upstream architecture names on Fedora 34+
-
https://fedoraproject.org/wiki/Changes/Python_Upstream_Architecture_Names
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1923654 - python3.5: FTBFS in Fedora rawhide/f34: test_dbm_gnu fails on
ppc64le, %check segfaults on x86_64 since GCC 11
https://bugzilla.redhat.com/show_bug.cgi?id=1923654
--------------------------------------------------------------------------------
================================================================================
rpminspect-1.3.1-1.fc32 (FEDORA-2021-878332904f)
Build deviation compliance tool
--------------------------------------------------------------------------------
Update Information:
Remove duplicate elf_end() call in init_elf_data() (#303)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 25 2021 David Cantrell <dcantrell(a)redhat.com> - 1.3.1-1
- Remove duplicate elf_end() call in init_elf_data() (#303)
- Update translation template
* Thu Feb 25 2021 David Cantrell <dcantrell(a)redhat.com> - 1.3-2
- Small change to the way Koji builds are submitted
- Move the master branch to version 1.3
- Drop DEBUG_PRINT in process_table()
- Add doc/git.md to explain source control conventions
- Change Suggests to Recommends in the spec file
- Add kmidiff and politics to the inspections section of generic.yaml
- Update TODO list
- Use warn() for non-fatal errors in mkdirp()
- Require libabigail >= 1.8 in rpminspect.spec.in
- Enable multiple --headers-dir1 and --headers-dir2 args in abidiff
- Swap out some more fprintf()/fflush() reporting with warn()
- #include <err.h> in peers.c and rmtree.c
- On fedora-rawhide CI jobs, install gcc-c++ and gcc-plugin-devel
- Disable fedora-rawhide GitHub Action for now
- Correctly handle the -w option on rpminspect(1) (#256)
- Drop the relative path handling for the -w option
- Build and install rc from source on opensuse-leap
- Update doc/git.md on how to track upstream
- Add .github/ and osdeps/ directories to extra-ci.yml
- Build and install rc from source on opensuse-tumbleweed
- Adjust curl(1) command line used for rc in opensuse CI jobs
- Trying to figure out why the opensuse jobs produce curl errors
- Another slight change to post.sh for the opensuse-leap CI job
- s/PowerTools/powertools/g in the centos8 PKG_CMD definition
- The output of html2text on opensuse systems is different
- Rename HEADER_MAN to HEADER_MANPAGE (#264)
- Add inspection_header_to_desc() to librpminspect (#264)
- Add xunit output format support (#264)
- Support the new output function call syntax (#264)
- Move init_elf_data() to readelf.c, move data to struct rpminspect
- Update inspect_elf.c unit tests for librpminspect changes
- Remove check_ipv6() from inspect_elf.c
- Create the badfuncs inspection
- Update po/ translation files.
- Add badfuncs test cases
- Forgot to commit test_badfuncs.py.
- Fix flake8 and black errors with test_badfuncs.py
- Skip debug packages in filesize, display changes correctly
- Fix spurious execstack failure
- Fix YAML config file reading for BLOCK_INSPECTIONS
- Expand dump_config() to cover all config file settings
- Minor spelling fixes in strfuncs.c and making code explicit
- Simplify list_to_string() so it handles 1-elements lists right
- Add abspath() to canonicalize path strings
- In the doc inspection, only show diff(1) output for text files (#254)
- Add strxmlescape() to strfuncs.c in librpminspect (#264)
- Output the system-out xunit portion as CDATA (#264)
- Slightly change how strxmlescape() works
- Add the runpath inspection to librpminspect
- Rename test/data/lto.c to test/data/mathlib.c
- Handle the empty string case in abspath()
- Expand dump_cfg() to show runpath settings
- Fix block handling problems in the YAML config reader
- Note single builds cannot be rebases in is_rebase()
- Hook up the driver for the runpath inspection
- Install patchelf for tests on fedora and centos
- Update TODO and README.md files
- Pass -D to rpminspect in the test suite
- Add integration tests for the runpath inspection
- Python flake8 and black fixes in test_runpath.py
- Fixes for GitHub Actions on Debian and Ubuntu
- Disable Rust support in pip modules, more extra-ci fixes
- Update pip and setuptools on debian and ubuntu CI jobs
- Make sure pip is updated on debian, centos7, and centos8
- Fixes for extra-ci on arch, centos7, centos8, and debian
- Adjust docker image names for opensuse and arch
- Add Gentoo Linux to the Extra CI set
- extra-ci.yml typo fix for the gentoo job
- Use gentoo/stage3 as the container for the gentoo CI job
- Disable opensuse-tumbleweed and archlinux CI jobs
- Make sure util/determine-os.sh picks up Gentoo Linux
- In the runpath inspection, fail if DT_RPATH and DT_RUNPATH exist
- Use pip install for PIP_CMD on gentoo
- Set PIP_CMD to pip install -user for gentoo
- Handle a NULL from list_to_string() in abspath()
- Do not match path prefixes in the runpath inspection
- Python black fixes for test_runpath.py
- Stop doing an emerge --sync on the gentoo CI job
- Replace emerge --sync with a manual portage sync
- Use emerge-webrsync to update portage on gentoo
- Add uthash and move the file matching code to it.
- Typo fix in README.md
- Fix some memory leaks found by valgrind
- Create mkannounce.sh to help make release announcements easier
- shellcheck fixes for mkannounce.sh
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org>
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rpminspect-data-fedora-1.3-1.fc32 (FEDORA-2021-0559d52963)
Build deviation compliance tool data files
--------------------------------------------------------------------------------
Update Information:
Small change to the way Koji builds are submitted
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 8 2021 David Cantrell <dcantrell(a)redhat.com> - 1.3-1
- Small change to the way Koji builds are submitted
- Ignore build/ in .gitignore
- Update fedora.yaml from generic.yaml, disable 'patches' inspection
- Eliminate duplicate entries in licenses/fedora.json
- Simplify test() definition in meson.build
--------------------------------------------------------------------------------
================================================================================
s3fs-fuse-1.89-1.fc32 (FEDORA-2021-35a38affe2)
FUSE-based file system backed by Amazon S3
--------------------------------------------------------------------------------
Update Information:
Update to 1.89 from
https://github.com/s3fs-fuse/s3fs-fuse (#1932107) Full
changelog:
https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.89
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 24 2021 Julio Gonz��lez Gil <packages(a)juliogonzalez.es> - 1.89-1
- Update to 1.89 from
https://github.com/s3fs-fuse/s3fs-fuse (#1932107)
Full changelog:
https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.89
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.88-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1932107 - s3fs-fuse-1.89 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1932107
--------------------------------------------------------------------------------
================================================================================
tmt-1.3.1-1.fc32 (FEDORA-2021-dcf9a790bf)
Test Management Tool
--------------------------------------------------------------------------------
Update Information:
Default branches, filtering, status, link... ---- Default branches, improved
filtering, tmt status...
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 25 2021 Petr ��pl��chal <psplicha(a)redhat.com> - 1.3.1-1
- Add test for prepare freeze
- Make file descriptors non-blocking
- Update the specification and stories to use link
- Implement the new core attribute 'link'
* Tue Feb 23 2021 Petr ��pl��chal <psplicha(a)redhat.com> - 1.3.0-1
- Set timeout on select calls in utils._run()
- Show the current tmt version in the debug log
- Revert support for the 'el' distro shortcut
- Strip whitespace before relevancy comment
- Ensure rsync is installed on the guest if needed
- Use the default branch in the discover fmf plugin
- Suport the 'el' shortcut for the distro context
- Implement the 'tmt --version' option [fix #445]
- Adjust test create test, fix missing dots
- Support creating tests in the current directory
- Rename container images, update install docs
- Fixup Dockerfiles to build in quay.io.
- Support building mini and full tmt container image
- Add a Dockerfile for container with tmt
- Fix dependency error messages
- Use a better trigger name for source code changes
- Add a new 'Check Report' section to examples
- Add the --force explanation in the documentation
- Extend the test coverage to check for active runs
- Add basic test coverage for tmt status
- Restore context after processing each run
- Correctly handle an undefined step status
- Load default plan when no root is present
- Implement tmt status command
- Define command-line interface for status command
- Print library in error message during ref conflict
- Adjust the default branch handling for libraries
- Handle default branch in Library
- Adjust test duration, clean up old test metadata
- Improve timeout handling (fix an infinite loop)
- Adjust default timeout in the testcloud provision
- Remove obsolete unit test coverage for steps
- Adjust the filtering support, fix docs building
- Allow filtering using custom L1 metadata
- Allow filtering with lowercase bool names
- Handle exceptions when applying filters and conditions
- Share code for filters & conditions, test coverage
- Apply filters after applying defaults and conversions
- Fix IPv4 parsing when booting minute machine
- Remove all hacks for the old cruncher executor
- Remove the whole rhts-lint line during test import
- Remove the old convert test from unit tests
- Adjust contact handling to work with manual tests
- Fix contacts without name during tmt test import
- Finalize the specification of the 'link' attribute
- Add specification of the new core attribute 'link'
- Enough of dreaming, let's go to the forest! :)
- Update the overview of core classes, minor cleanup
- Add missing required packages for pip install
- Implement tmt run --follow option for checking log
- Extra check for required packages when using yum
- Clean up obsolete names in examples and templates
- Update the test checking for relevancy conversion
- Adjust storing test case id for new nitrate cases
- Append nitrate id when exporting instead of rewrite
- Skip prereserve check if custom flavor requested
- Use special compare operators only if minor given
- Adjust support for selecting modified tests
- Allow selecting only tests that have changed in git
- Remove the duplicate build job from packit config
- Verify the old beakerlib functions using Makefile
- Enable debug output using the TMT_DEBUG variable
--------------------------------------------------------------------------------
================================================================================
vdr-osdteletext-1.0.0-1.fc32 (FEDORA-2021-ddf28b35c4)
OSD teletext plugin for VDR
--------------------------------------------------------------------------------
Update Information:
Update to 1.0.0-1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 25 2021 Martin Gansser <martinkg(a)fedoraproject.org> - 1.0.0-1
- Update to 1.0.0
--------------------------------------------------------------------------------
================================================================================
zathura-pdf-mupdf-0.3.6-6.fc32 (FEDORA-2021-d8e6f014e5)
PDF support for zathura via mupdf
--------------------------------------------------------------------------------
Update Information:
CVE-2021-3407
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 24 2021 Michael J Gruber <mjg(a)fedoraproject.org> - 0.3.6-6
- rebuild for mupdf CVE-2021-3407
* Thu Jan 28 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.6-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1931964 - CVE-2021-3407 mupdf: Double free of object during linearization
https://bugzilla.redhat.com/show_bug.cgi?id=1931964
--------------------------------------------------------------------------------