The following Fedora EPEL 8 Security updates need testing: Age URL 22 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-c2936180ed ansible-2.9.12-1.el8 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-96c4037065 ark-19.12.2-3.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
chromium-85.0.4183.83-1.el8 knot-2.9.6-1.el8 lua-rpm-macros-1-2.el8 lv2-1.18.0-1.el8 mock-2.5-2.el8 mock-core-configs-33-1.el8 nss-mdns-0.14.1-9.el8 oval-graph-1.2.0-1.el8 python-connect-box-0.2.8-1.el8 python-iptools-0.7.0-2.el8 ufdbGuard-1.34.6-3.el8
Details about builds:
================================================================================ chromium-85.0.4183.83-1.el8 (FEDORA-EPEL-2020-2390c71f9c) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information:
Update to Chromium 85.0.4183.83. Bugs fixed, security holes patched, and features added. Hold on to your butts. List of CVEs resolved with this update: CVE-2020-6532 CVE-2020-6537 CVE-2020-6538 CVE-2020-6539 CVE-2020-6540 CVE-2020-6541 CVE-2020-6542 CVE-2020-6543 CVE-2020-6544 CVE-2020-6545 CVE-2020-6546 CVE-2020-6547 CVE-2020-6548 CVE-2020-6549 CVE-2020-6550 CVE-2020-6551 CVE-2020-6552 CVE-2020-6553 CVE-2020-6554 CVE-2020-6555 CVE-2020-6556 CVE-2020-6559 CVE-2020-6560 CVE-2020-6561 CVE-2020-6562 CVE-2020-6563 CVE-2020-6564 CVE-2020-6565 CVE-2020-6566 CVE-2020-6567 CVE-2020-6568 CVE-2020-6569 CVE-2020-6570 CVE-2020-6571 -------------------------------------------------------------------------------- ChangeLog:
* Wed Aug 26 2020 Tom Callaway spot@fedoraproject.org - 85.0.4183.83-1 - update to 85.0.4183.83 * Thu Aug 20 2020 Tom Callaway spot@fedoraproject.org - 84.0.4147.135-1 - update to 84.0.4147.135 - conditionalize build_clear_key_cdm - disable build_clear_key_cdm on F33+ aarch64 until binutils bug is fixed - properly install libclearkeycdm.so everywhere else (whoops) * Mon Aug 17 2020 Tom Callaway spot@fedoraproject.org - 84.0.4147.125-2 - force fix_textrels fix in ffmpeg for i686 (even without lld) * Mon Aug 10 2020 Tom Callaway spot@fedoraproject.org - 84.0.4147.125-1 - update to 84.0.4147.125 * Sat Aug 1 2020 Fedora Release Engineering releng@fedoraproject.org - 84.0.4147.105-2 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Fri Jul 31 2020 Tom Callaway spot@fedoraproject.org - 84.0.4147.105-1 - update to 84.0.4147.105 * Mon Jul 27 2020 Fedora Release Engineering releng@fedoraproject.org - 84.0.4147.89-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1861464 - CVE-2020-6537 chromium-browser: Type Confusion in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1861464 [ 2 ] Bug #1861465 - CVE-2020-6538 chromium-browser: Inappropriate implementation in WebView https://bugzilla.redhat.com/show_bug.cgi?id=1861465 [ 3 ] Bug #1861466 - CVE-2020-6532 chromium-browser: Use after free in SCTP https://bugzilla.redhat.com/show_bug.cgi?id=1861466 [ 4 ] Bug #1861467 - CVE-2020-6539 chromium-browser: Use after free in CSS https://bugzilla.redhat.com/show_bug.cgi?id=1861467 [ 5 ] Bug #1861468 - CVE-2020-6540 chromium-browser: Heap buffer overflow in Skia https://bugzilla.redhat.com/show_bug.cgi?id=1861468 [ 6 ] Bug #1861469 - CVE-2020-6541 chromium-browser: Use after free in WebUSB https://bugzilla.redhat.com/show_bug.cgi?id=1861469 [ 7 ] Bug #1867939 - CVE-2020-6542 chromium-browser: Use after free in ANGLE https://bugzilla.redhat.com/show_bug.cgi?id=1867939 [ 8 ] Bug #1867940 - CVE-2020-6543 chromium-browser: Use after free in task scheduling https://bugzilla.redhat.com/show_bug.cgi?id=1867940 [ 9 ] Bug #1867941 - CVE-2020-6544 chromium-browser: Use after free in media https://bugzilla.redhat.com/show_bug.cgi?id=1867941 [ 10 ] Bug #1867942 - CVE-2020-6545 chromium-browser: Use after free in audio https://bugzilla.redhat.com/show_bug.cgi?id=1867942 [ 11 ] Bug #1867943 - CVE-2020-6546 chromium-browser: Inappropriate implementation in installer https://bugzilla.redhat.com/show_bug.cgi?id=1867943 [ 12 ] Bug #1867944 - CVE-2020-6547 chromium-browser: Incorrect security UI in media https://bugzilla.redhat.com/show_bug.cgi?id=1867944 [ 13 ] Bug #1867945 - CVE-2020-6548 chromium-browser: Heap buffer overflow in Skia https://bugzilla.redhat.com/show_bug.cgi?id=1867945 [ 14 ] Bug #1867946 - CVE-2020-6549 chromium-browser: Use after free in media https://bugzilla.redhat.com/show_bug.cgi?id=1867946 [ 15 ] Bug #1867947 - CVE-2020-6550 chromium-browser: Use after free in IndexedDB https://bugzilla.redhat.com/show_bug.cgi?id=1867947 [ 16 ] Bug #1867948 - CVE-2020-6551 chromium-browser: Use after free in WebXR https://bugzilla.redhat.com/show_bug.cgi?id=1867948 [ 17 ] Bug #1867949 - CVE-2020-6552 chromium-browser: Use after free in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1867949 [ 18 ] Bug #1867950 - CVE-2020-6553 chromium-browser: Use after free in offline mode https://bugzilla.redhat.com/show_bug.cgi?id=1867950 [ 19 ] Bug #1867951 - CVE-2020-6554 chromium-browser: Use after free in extensions https://bugzilla.redhat.com/show_bug.cgi?id=1867951 [ 20 ] Bug #1867952 - CVE-2020-6555 chromium-browser: Out of bounds read in WebGL https://bugzilla.redhat.com/show_bug.cgi?id=1867952 [ 21 ] Bug #1870002 - CVE-2020-6556 chromium-browser: Heap buffer overflow in SwiftShader https://bugzilla.redhat.com/show_bug.cgi?id=1870002 [ 22 ] Bug #1872945 - CVE-2020-6559 chromium-browser: Use after free in presentation API https://bugzilla.redhat.com/show_bug.cgi?id=1872945 [ 23 ] Bug #1872946 - CVE-2020-6560 chromium-browser: Insufficient policy enforcement in autofill https://bugzilla.redhat.com/show_bug.cgi?id=1872946 [ 24 ] Bug #1872947 - CVE-2020-6561 chromium-browser: Inappropriate implementation in Content Security Policy https://bugzilla.redhat.com/show_bug.cgi?id=1872947 [ 25 ] Bug #1872948 - CVE-2020-6562 chromium-browser: Insufficient policy enforcement in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1872948 [ 26 ] Bug #1872949 - CVE-2020-6563 chromium-browser: Insufficient policy enforcement in intent handling https://bugzilla.redhat.com/show_bug.cgi?id=1872949 [ 27 ] Bug #1872950 - CVE-2020-6564 chromium-browser: Incorrect security UI in permissions https://bugzilla.redhat.com/show_bug.cgi?id=1872950 [ 28 ] Bug #1872951 - CVE-2020-6565 chromium-browser: Incorrect security UI in Omnibox https://bugzilla.redhat.com/show_bug.cgi?id=1872951 [ 29 ] Bug #1872952 - CVE-2020-6566 chromium-browser: Insufficient policy enforcement in media https://bugzilla.redhat.com/show_bug.cgi?id=1872952 [ 30 ] Bug #1872953 - CVE-2020-6567 chromium-browser: Insufficient validation of untrusted input in command line handling https://bugzilla.redhat.com/show_bug.cgi?id=1872953 [ 31 ] Bug #1872955 - CVE-2020-6568 chromium-browser: Insufficient policy enforcement in intent handling https://bugzilla.redhat.com/show_bug.cgi?id=1872955 [ 32 ] Bug #1872956 - CVE-2020-6569 chromium-browser: Integer overflow in WebUSB https://bugzilla.redhat.com/show_bug.cgi?id=1872956 [ 33 ] Bug #1872957 - CVE-2020-6570 chromium-browser: Side-channel information leakage in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1872957 --------------------------------------------------------------------------------
================================================================================ knot-2.9.6-1.el8 (FEDORA-EPEL-2020-2829999cc4) High-performance authoritative DNS server -------------------------------------------------------------------------------- Update Information:
New upstream version 2.9.6 -------------------------------------------------------------------------------- ChangeLog:
* Wed Sep 2 2020 Jakub Ru��i��ka jakub.ruzicka@nic.cz 2.9.6-1 - Update to 2.9.6 --------------------------------------------------------------------------------
================================================================================ lua-rpm-macros-1-2.el8 (FEDORA-EPEL-2020-97b6a71d6d) The common Lua RPM macros -------------------------------------------------------------------------------- Update Information:
Refactored Lua RPM macros out of lua-devel -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1873676 - Review Request: lua-rpm-macros - The common Lua RPM macros https://bugzilla.redhat.com/show_bug.cgi?id=1873676 --------------------------------------------------------------------------------
================================================================================ lv2-1.18.0-1.el8 (FEDORA-EPEL-2020-003d4d6b2b) Audio Plugin Standard -------------------------------------------------------------------------------- Update Information:
Update to 1.18.0 -------------------------------------------------------------------------------- ChangeLog:
* Wed Aug 26 2020 Guido Aulisi guido.aulisi@gmail.com - 1.18.0-1 - Update to 1.18.0 - Add missing BR * Tue Jul 28 2020 Fedora Release Engineering releng@fedoraproject.org - 1.16.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Wed Jan 29 2020 Fedora Release Engineering releng@fedoraproject.org - 1.16.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ mock-2.5-2.el8 (FEDORA-EPEL-2020-07a27d3e56) Builds packages inside chroots -------------------------------------------------------------------------------- Update Information:
Per release notes: https://github.com/rpm-software- management/mock/wiki/Release-Notes-2.5 mock - because of the mock-filesystem change, we need to enforce upgrade of the old mock-core-configs package - set the DNF user_agent in dnf.conf (msuchy@redhat.com) - introduce mock-filesystem subpackage (msuchy@redhat.com) - add showrc plugin to record the output of rpm --showrc (riehecky@fnal.gov) - document which packages we need in buildroot (msuchy@redhat.com) - macros without leading '%' like config_opts['macros']['macroname'] work fine again (issue#605) mock-core- cofnigs - provide the Fedora ELN mock conifuration - some adjustments were done for the new mock-filesystem package -------------------------------------------------------------------------------- ChangeLog:
* Thu Sep 3 2020 Pavel Raiskup praiskup@redhat.com 2.5-2 - because of the mock-filesystem change, we need to enforce upgrade of the old mock-core-configs package * Thu Sep 3 2020 Pavel Raiskup praiskup@redhat.com 2.5-1 - set the DNF user_agent in dnf.conf (msuchy@redhat.com) - introduce mock-filesystem subpackage (msuchy@redhat.com) - add showrc plugin to record the output of rpm --showrc (riehecky@fnal.gov) - document which packages we need in buildroot (msuchy@redhat.com) - macros without leading '%' like config_opts['macros']['macroname'] work fine again (issue#605) --------------------------------------------------------------------------------
================================================================================ mock-core-configs-33-1.el8 (FEDORA-EPEL-2020-07a27d3e56) Mock core config files basic chroots -------------------------------------------------------------------------------- Update Information:
Per release notes: https://github.com/rpm-software- management/mock/wiki/Release-Notes-2.5 mock - because of the mock-filesystem change, we need to enforce upgrade of the old mock-core-configs package - set the DNF user_agent in dnf.conf (msuchy@redhat.com) - introduce mock-filesystem subpackage (msuchy@redhat.com) - add showrc plugin to record the output of rpm --showrc (riehecky@fnal.gov) - document which packages we need in buildroot (msuchy@redhat.com) - macros without leading '%' like config_opts['macros']['macroname'] work fine again (issue#605) mock-core- cofnigs - provide the Fedora ELN mock conifuration - some adjustments were done for the new mock-filesystem package -------------------------------------------------------------------------------- ChangeLog:
* Thu Sep 3 2020 Pavel Raiskup praiskup@redhat.com 33-1 - bump version to 33, as we already ship F33 configs - because of the mock-filesystem change, depend on mock 2.5 * Thu Sep 3 2020 Pavel Raiskup praiskup@redhat.com 32.8-1 - set the DNF user_agent in dnf.conf (msuchy@redhat.com) - add Fedora ELN configs - introduce mock-filesystem subpackage (msuchy@redhat.com) --------------------------------------------------------------------------------
================================================================================ nss-mdns-0.14.1-9.el8 (FEDORA-EPEL-2020-1965d16d87) glibc plugin for .local name resolution -------------------------------------------------------------------------------- Update Information:
Place 'mdns4_minimal' in /etc/nsswitch.conf after 'files' in /etc/nsswitch.conf. This improves compatibility with systemd-resolved. -------------------------------------------------------------------------------- ChangeLog:
* Wed Sep 2 2020 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 0.14.1-9 - Place 'mdns4_minimal' in /etc/nsswitch.conf after 'files' in /etc/nsswitch.conf, so that it ends up before 'resolve' (#1867830) * Tue Jul 28 2020 Fedora Release Engineering releng@fedoraproject.org - 0.14.1-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1867830 - can't connect using mDNS addressing when systemd-resolved is running https://bugzilla.redhat.com/show_bug.cgi?id=1867830 --------------------------------------------------------------------------------
================================================================================ oval-graph-1.2.0-1.el8 (FEDORA-EPEL-2020-1e17344ba6) Tool for visualization of SCAP rule evaluation results -------------------------------------------------------------------------------- Update Information:
new upstream release: 1.2.0 -------------------------------------------------------------------------------- ChangeLog:
* Thu Sep 3 2020 rebase-helper rebase-helper@localhost.local - 1.2.0-1 - new upstream release: 1.2.0 --------------------------------------------------------------------------------
================================================================================ python-connect-box-0.2.8-1.el8 (FEDORA-EPEL-2020-665cd615d3) Python client for interacting with Compal CH7465LG devices -------------------------------------------------------------------------------- Update Information:
Update to latest upstream release 0.2.8 (rhbz#1874641) ---- Initial package for Fedora -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1874641 - Review Request: python-connect-box - Python client for interacting with Compal CH7465LG devices https://bugzilla.redhat.com/show_bug.cgi?id=1874641 --------------------------------------------------------------------------------
================================================================================ python-iptools-0.7.0-2.el8 (FEDORA-EPEL-2020-c5429edc34) A few useful functions and objects for manipulating IP addresses in python -------------------------------------------------------------------------------- Update Information:
Build for EPEL8 -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1868617 - [EPEL8][RFE] python-iptools EPEL8 https://bugzilla.redhat.com/show_bug.cgi?id=1868617 --------------------------------------------------------------------------------
================================================================================ ufdbGuard-1.34.6-3.el8 (FEDORA-EPEL-2020-a638241178) A URL filter for squid -------------------------------------------------------------------------------- Update Information:
Fix logrotate config. -------------------------------------------------------------------------------- ChangeLog:
* Wed Sep 2 2020 Gwyn Ciesla gwync@protonmail.com - 1.34.6-3 - Correct logrotate configure. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1874819 - Ufdbguard duplicates logs after rotation https://bugzilla.redhat.com/show_bug.cgi?id=1874819 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org