The following Fedora 31 Security updates need testing:
Age URL
74
https://bodhi.fedoraproject.org/updates/FEDORA-2020-fcd5fd47bd
qutebrowser-1.11.1-1.fc31
27
https://bodhi.fedoraproject.org/updates/FEDORA-2020-218ab035b1
knot-resolver-5.1.2-1.fc31
7
https://bodhi.fedoraproject.org/updates/FEDORA-2020-d808fdd597
python3-3.7.8-2.fc31
6
https://bodhi.fedoraproject.org/updates/FEDORA-2020-cac5ae9b6e ark-20.04.3-3.fc31
3
https://bodhi.fedoraproject.org/updates/FEDORA-2020-efb908b6a8
python36-3.6.11-3.fc31
3
https://bodhi.fedoraproject.org/updates/FEDORA-2020-dbf6c6f22f
virtualbox-guest-additions-6.1.12-1.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-8aa8793d25
hylafax+-7.0.3-1.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-2a9b45c1f5
libmetalink-0.1.3-13.fc31
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-7cd08d85ce
lilypond-2.19.84-3.fc31
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-449743fcc1
firefox-79.0-5.fc31
The following Fedora 31 Critical Path updates have yet to be approved:
Age URL
68
https://bodhi.fedoraproject.org/updates/FEDORA-2020-03e14f6120
dracut-050-61.git20200529.fc31
53
https://bodhi.fedoraproject.org/updates/FEDORA-2020-5ccd452c8e
gnutls-3.6.14-2.fc31
13
https://bodhi.fedoraproject.org/updates/FEDORA-2020-59496b455c
geoclue2-2.5.6-2.fc31
9
https://bodhi.fedoraproject.org/updates/FEDORA-2020-bf1678a097
perl-Encode-3.07-457.fc31
7
https://bodhi.fedoraproject.org/updates/FEDORA-2020-d808fdd597
python3-3.7.8-2.fc31
3
https://bodhi.fedoraproject.org/updates/FEDORA-2020-e02579efe6
groff-1.22.3-21.fc31 man-db-2.8.4-6.fc31 man-pages-5.02-3.fc31
3
https://bodhi.fedoraproject.org/updates/FEDORA-2020-46cd32a4ac
vim-8.2.1359-1.fc31
3
https://bodhi.fedoraproject.org/updates/FEDORA-2020-7968c92c2f koji-1.22.0-1.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-a07ca7ca52 ethtool-5.8-1.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-4f09768685
osinfo-db-20200804-1.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-4eed1125fb
libtirpc-1.2.6-1.rc4.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-1bea117661
nfs-utils-2.5.1-1.rc3.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-faafe0da41 hplip-3.20.6-6.fc31
net-snmp-5.8-25.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-aed047012b
kernel-5.7.12-100.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-2a9b45c1f5
libmetalink-0.1.3-13.fc31
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-7c0e218bcc
hwdata-0.338-1.fc31
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-449743fcc1
firefox-79.0-5.fc31
The following builds have been pushed to Fedora 31 updates-testing
cacti-1.2.14-1.fc31
cacti-spine-1.2.14-1.fc31
cros-guest-tools-1.0-0.39.20200806git19eab9e.fc31
distribution-gpg-keys-1.41-1.fc31
fail2ban-0.11.1-9.fc31.2
golang-github-sanity-io-litter-1.3.0-1.fc31
lector-0.5.1-2.fc31
mock-core-configs-32.7-1.fc31
mozilla-ublock-origin-1.28.4-2.fc31
net-tools-2.0-0.56.20160912git.fc31
pesign-113-12.fc31
python-djvulibre-0.8.5-3.fc31
python35-3.5.9-7.fc31
Details about builds:
================================================================================
cacti-1.2.14-1.fc31 (FEDORA-2020-41d6e13254)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
- Update to 1.2.14 Release notes:
https://www.cacti.net/release_notes.php?version=1.2.14
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 6 2020 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.14-1
- Update to 1.2.14
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.13-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
cacti-spine-1.2.14-1.fc31 (FEDORA-2020-41d6e13254)
Threaded poller for Cacti written in C
--------------------------------------------------------------------------------
Update Information:
- Update to 1.2.14 Release notes:
https://www.cacti.net/release_notes.php?version=1.2.14
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 6 2020 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.14-1
- Update to 1.2.14
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.13-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
cros-guest-tools-1.0-0.39.20200806git19eab9e.fc31 (FEDORA-2020-fb9c849f45)
Chromium OS integration meta package
--------------------------------------------------------------------------------
Update Information:
Update to latest master commit
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 6 2020 Jason Montleon jmontleo(a)redhat.com - 1.0-0.39.20200806git19eab9e
- Fix changelog error
* Thu Aug 6 2020 Jason Montleon jmontleo(a)redhat.com - 1.0-0.38.20200806git19eab9e
- Update to master 19eab9e
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
1.0-0.37.20200716git74ea274
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
distribution-gpg-keys-1.41-1.fc31 (FEDORA-2020-1ec390d120)
GPG keys of various Linux distributions
--------------------------------------------------------------------------------
Update Information:
distribution-gpg-keys: - add Fedora 34 key - update copr keys - add Qubes
signing keys mock-core-configs: - add branched Fedora 33 configs - eol
Fedora 30 - tolerate a 1-minute baseurl outages in OpenSUSE configs - fix
site-defaults.cfg reference to docs - change all openSUSE configs to use the
download redirector (baseurl)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 6 2020 Miroslav Such�� <msuchy(a)redhat.com> 1.41-1
- add Fedora 34 key
- update copr keys
- add Qubes signing keys
--------------------------------------------------------------------------------
================================================================================
fail2ban-0.11.1-9.fc31.2 (FEDORA-2020-ccdbd5d23d)
Daemon to ban hosts that cause multiple authentication errors
--------------------------------------------------------------------------------
Update Information:
Change requires from python2-inotify to python3-inotify.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 28 2020 Richard Shaw <hobbes1069(a)gmail.com> - 0.11.1-9.2
- Fix python2 requires for EPEL 7.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1864484 - F33FailsToInstall: fail2ban-all
https://bugzilla.redhat.com/show_bug.cgi?id=1864484
--------------------------------------------------------------------------------
================================================================================
golang-github-sanity-io-litter-1.3.0-1.fc31 (FEDORA-2020-a39326886e)
Pretty printer for Go data structures for debugging and testing
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 6 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.3.0-1
- Update to latest version (#1866580)
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1866580 - golang-github-sanity-io-litter-1.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1866580
--------------------------------------------------------------------------------
================================================================================
lector-0.5.1-2.fc31 (FEDORA-2020-3a0ea21e63)
Ebook reader and collection manager
--------------------------------------------------------------------------------
Update Information:
New package.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
mock-core-configs-32.7-1.fc31 (FEDORA-2020-1ec390d120)
Mock core config files basic chroots
--------------------------------------------------------------------------------
Update Information:
distribution-gpg-keys: - add Fedora 34 key - update copr keys - add Qubes
signing keys mock-core-configs: - add branched Fedora 33 configs - eol
Fedora 30 - tolerate a 1-minute baseurl outages in OpenSUSE configs - fix
site-defaults.cfg reference to docs - change all openSUSE configs to use the
download redirector (baseurl)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 6 2020 Pavel Raiskup <praiskup(a)redhat.com> 32.7-1
- add branched Fedora 33 configs
- eol Fedora 30
- tolerate a 1-minute baseurl outages in OpenSUSE configs
- fix site-defaults.cfg reference to docs
- change all openSUSE configs to use the download redirector (baseurl)
--------------------------------------------------------------------------------
================================================================================
mozilla-ublock-origin-1.28.4-2.fc31 (FEDORA-2020-27baee529e)
An efficient blocker for Firefox
--------------------------------------------------------------------------------
Update Information:
* Add
cdn.jsdelivr.net mirror for urlhaus blocklist * Remove repo.or.cz from
list of CDNs for urlhaus blocklist * Fix spurious rejection of some AdGuard
redirect filters * Fix the reporting of invalid static extended filters in the
logger * Fix improper rejecting filters with `$all,~document` options
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 6 2020 Dominik Mierzejewski <rpm(a)greysector.net> - 1.28.4-2
- fix invalid JSON after Patch0 (caught by Raymond Hill)
* Wed Aug 5 2020 Dominik Mierzejewski <rpm(a)greysector.net> - 1.28.4-1
- update to 1.28.4 (#1857445)
- avoid building on big-endian, wabt doesn't work there
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1857445 - mozilla-ublock-origin-1.28.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1857445
--------------------------------------------------------------------------------
================================================================================
net-tools-2.0-0.56.20160912git.fc31 (FEDORA-2020-47e34ca22a)
Basic networking tools
--------------------------------------------------------------------------------
Update Information:
Resolves: #1835155 - netstat says "packetes" instead of "packets"
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 6 2020 Michal Ruprich <michalruprich(a)gmail.com> - 2.0-0.56.20160912git
- Resolves: #1835155 - netstat says "packetes" instead of "packets"
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1835155 - netstat says "packetes" instead of "packets"
https://bugzilla.redhat.com/show_bug.cgi?id=1835155
--------------------------------------------------------------------------------
================================================================================
pesign-113-12.fc31 (FEDORA-2020-52456a4f99)
Signing utility for UEFI binaries
--------------------------------------------------------------------------------
Update Information:
This should make kernel, fwupd, and grub2 (maybe) all buildable with the correct
signing. ---- We need these for dual-signing support amongst other things.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 3 2020 Peter Jones <pjones(a)redhat.com> - 113-12
- Try to make kernel and fwupd both work at the same time.
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 113-11
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Thu Jul 16 2020 Peter Jones <pjones(a)redhat.com> - 113-10
- Synchronize with master
--------------------------------------------------------------------------------
================================================================================
python-djvulibre-0.8.5-3.fc31 (FEDORA-2020-e370ed498b)
Python support for the DjVu image format
--------------------------------------------------------------------------------
Update Information:
Unretire package.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
python35-3.5.9-7.fc31 (FEDORA-2020-c539babb0a)
Version 3.5 of the Python programming language
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2019-20907, CVE-2020-14422.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 4 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 3.5.9-7
- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.5.9-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue May 5 2020 Tomas Hrnciar <thrnciar(a)redhat.com> - 3.5.9-4
- Fix a build/test failure with glibc 2.31.9000+ (#1819759)
* Wed Feb 12 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 3.5.9-3
- Update the ensurepip module to work with setuptools >= 45
* Thu Jan 30 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.5.9-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1854926 - CVE-2020-14422 python: DoS via inefficiency in IPv{4,6}Interface
classes
https://bugzilla.redhat.com/show_bug.cgi?id=1854926
[ 2 ] Bug #1856481 - CVE-2019-20907 python: infinite loop in the tarfile module via
crafted TAR archive
https://bugzilla.redhat.com/show_bug.cgi?id=1856481
--------------------------------------------------------------------------------