February 2024 - epel-devel - Fedora Mailing-Lists

Incompatible Upgrade of singularity-ce in EPEL 7 / 8 / 9

by David Trudgian

After approval in the last EPEL meeting [1], I have submitted an incompatible upgrade of singularity-ce to testing for EPEL 7, 8 & 9. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-cbd86d2020 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-f299fbc570 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-05e20edbbf These updates upgrade singularity-ce from v3.11.5 to v4.1.1. The following incompatibilities should be noted by users: 1) Some functionality previously provided by the `singularity remote` command is split into new `singularity registry` and `singularity keyserver` commands. 2) The `singularity remote add` command now sets a newly added remote as the default (unless suppressed). Previously the user had to set the default remote manually. 3) The deprecated and unmaintained `—vm` flag to start singularity inside a Virtual Machine has been removed. 4) Bind mounts are now performed in the order in which they are specified. Previously, image based bind mounts were performed before others. 5) Current working directory on the host is now created in the container, restoring a behaviour from Singularity <3.6.0 unless suppressed. 6) If the current directory paths on the container and host contains symlinks to different locations, the current working directory is not mounted. Changes 1,2,3 are expected to have minimal impact, and 4,5,6 are likely to be considered bug fixes by many users. No changes are required to existing configuration files for this update. A complete description of changes and additions between v3.11 and v4.1.1 is available in the upstream documentation at https://sylabs.io/docs/ In the absence of any issues, the updates will be pushed to stable after a one week testing period has passed, with a follow-up notification here. Cheers, David Trudgian [1] https://pagure.io/epel/issue/265#comment-894790

3 weeks, 3 days

2
2
0 / 0

Incompatible update of llhttp in EPEL9

by Ben Beasley

I have just submitted for testing https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-4b1b8b8b25, which updates llhttp from 8.1.1 to 9.1.3 in EPEL9. This is an ABI-incompatible update, and the SONAME version changes. There are also some minor API changes. The only package in EPEL9 that uses llhttp is python-aiohttp, and the update also compatibly updates it from 3.8.5 to its latest release, 3.9.1. Together, these updates fix a number of security issues, including CVE-2023-47627, CVE-2023-49081, and CVE-2023-49082. A COPR impact check in https://copr.fedorainfracloud.org/coprs/music/aiohttp-epel9/ indicates there should be no impact on any dependent packages in EPEL9. If you have software not packaged in EPEL9 that depends directly on llhttp, you will need to rebuild it due to the ABI changes. It is possible that source code changes may be required if (like python-aiohttp) you use almost the entire API of llhttp, or if you have very thorough tests that reveal small changes in llhttp’s behavior. Straightforward uses of llhttp are likely to recompile without modification. If you have software not packaged in EPEL9 that depends directly on python-aiohttp, you should not need to do anything, but you might choose to review the changelogs for releases 3.8.6, 3.9.0, and 3.9.1 here for full details on the changes included in this update: https://github.com/aio-libs/aiohttp/blob/v3.9.1/CHANGES.rst#391-2023-11-26 I have no plans to attempt a build of llhttp or any update of python-aiohttp in EPEL8. This is an incompatible update under the EPEL Incompatible Upgrades Policy, https://docs.fedoraproject.org/en-US/epel/epel-policy-incompatible-upgrades/. It was approved by the EPEL Steering Committee: https://pagure.io/epel/issue/262.

3 weeks, 3 days

1
2
0 / 0

Fedora EPEL 9 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 9 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-bd2367203c gifsicle-1.95-1.el9 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-c6bf47a782 chromium-122.0.6261.69-1.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-ad53379349 suricata-6.0.16-1.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-1cefeeb8f5 cpp-jwt-1.4-7.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing 3proxy-0.9.4-3.el9 ansible-collection-awx-awx-23.9.0-1.el9 purple-mm-sms-0.1.7-10.el9 python-mmtf-1.1.3-4.el9 resalloc-5.3-1.el9 resalloc-aws-1.8-1.el9 scitokens-cpp-1.1.1-1.el9 testcloud-0.9.11-1.el9 zabbix-6.0.27-1.el9 Details about builds: ================================================================================ 3proxy-0.9.4-3.el9 (FEDORA-EPEL-2024-f76357d202) Tiny but very powerful proxy -------------------------------------------------------------------------------- Update Information: Use %autorelease and %autochangelog -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ ansible-collection-awx-awx-23.9.0-1.el9 (FEDORA-EPEL-2024-b142a52e19) Ansible modules and plugins for working with AWX -------------------------------------------------------------------------------- Update Information: Update to 23.9.0 Update to 23.8.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Andrew Heath <anheath(a)anheath-thinkpadt14sgen2i.rmtusnc.csb> - 23.9.0-1 - Update to 23.9.0 * Wed Feb 21 2024 Andrew Heath <anheath(a)anheath-thinkpadt14sgen2i.rmtusnc.csb> - 23.8.1-1 - Update to 2.8.1 -------------------------------------------------------------------------------- ================================================================================ purple-mm-sms-0.1.7-10.el9 (FEDORA-EPEL-2024-d11f8684ff) A libpurple plugin for sending and receiving SMS via ModemManager -------------------------------------------------------------------------------- Update Information: Use %autorelease and %autochangelog -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ python-mmtf-1.1.3-4.el9 (FEDORA-EPEL-2024-d9a08fa1a1) A decoding library for the macromolecular transmission format (MMTF) -------------------------------------------------------------------------------- Update Information: Use %autorelease and %autochangelog Update to version 1.1.3 -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Dec 27 2023 Dominik Mierzejewski <dominik(a)greysector.net> 1.1.3-1 - update to 1.1.3 - use SPDX identifier in License field * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-21 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Tue Jun 13 2023 Python Maint <python-maint(a)redhat.com> - 1.1.2-20 - Rebuilt for Python 3.12 * Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-19 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-18 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.1.2-17 - Rebuilt for Python 3.11 -------------------------------------------------------------------------------- ================================================================================ resalloc-5.3-1.el9 (FEDORA-EPEL-2024-856998384a) Resource allocator for expensive resources - client tooling -------------------------------------------------------------------------------- Update Information: New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.3 https://github.com/praiskup/resalloc/releases/tag/v5.2 https://github.com/praiskup/resalloc-aws/releases/tag/resalloc-aws-1.8-1 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Pavel Raiskup <praiskup(a)redhat.com> - 5.3-1 - New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.3 * Wed Feb 28 2024 Pavel Raiskup <praiskup(a)redhat.com> - 5.2-1 - New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.2 * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ resalloc-aws-1.8-1.el9 (FEDORA-EPEL-2024-856998384a) Resource allocator scripts for AWS -------------------------------------------------------------------------------- Update Information: New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.3 https://github.com/praiskup/resalloc/releases/tag/v5.2 https://github.com/praiskup/resalloc-aws/releases/tag/resalloc-aws-1.8-1 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Pavel Raiskup <praiskup(a)redhat.com> 1.8-1 - The wait-for-ssh script moved to resalloc-helpers -------------------------------------------------------------------------------- ================================================================================ scitokens-cpp-1.1.1-1.el9 (FEDORA-EPEL-2024-c14045dff3) C++ Implementation of the SciTokens Library -------------------------------------------------------------------------------- Update Information: Improve error handling around the sqlite3 library Fix test failures and compiler warnings -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Derek Weitzel <dweitzel(a)unl.edu> - 1.1.1-1 - Improve error handling around the sqlite3 library - Fix test failures and compiler warnings * Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ testcloud-0.9.11-1.el9 (FEDORA-EPEL-2024-7a26f9607b) Tool for running cloud images locally -------------------------------------------------------------------------------- Update Information: virtiofs integration add serial param (lnie) add nic_number param (lnie) cli: Add StrictHostKeyChecking=no and UserKnownHostsFile=/dev/null to the suggested cmdline tpm: Support version 1.2 too in the api cli: Convert to domain_api/v2, drop v1 codepaths -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Frantisek Zatloukal <fzatlouk(a)redhat.com> - 0.9.11-1 - virtiofs integration - add serial param (lnie) - add nic_number param (lnie) - cli: Add StrictHostKeyChecking=no and UserKnownHostsFile=/dev/null to the suggested cmdline - tpm: Support version 1.2 too in the api - cli: Convert to domain_api/v2, drop v1 codepaths * Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.10-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ zabbix-6.0.27-1.el9 (FEDORA-EPEL-2024-e69c828304) Open-source monitoring solution for your IT infrastructure -------------------------------------------------------------------------------- Update Information: Update to 6.0.27 Release notes: https://www.zabbix.com/de/rn/rn6.0.27 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Morten Stevens <mstevens(a)fedoraproject.org> - 1:6.0.27-1 - Update to 6.0.27 * Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1:6.0.25-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild --------------------------------------------------------------------------------

2 months

1
0
0 / 0

Fedora EPEL 8 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 8 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-109c5d3d12 gifsicle-1.95-1.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-5d281b1780 suricata-6.0.16-1.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-16cf23e0e6 cpp-jwt-1.4-7.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing 3proxy-0.9.4-4.el8 ansible-collection-awx-awx-23.9.0-1.el8 purple-mm-sms-0.1.7-10.el8 python-mmtf-1.1.3-5.el8 resalloc-5.3-1.el8 resalloc-aws-1.8-1.el8 scitokens-cpp-1.1.1-1.el8 Details about builds: ================================================================================ 3proxy-0.9.4-4.el8 (FEDORA-EPEL-2024-0c5e8f9858) Tiny but very powerful proxy -------------------------------------------------------------------------------- Update Information: Use %autorelease and %autochangelog -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ ansible-collection-awx-awx-23.9.0-1.el8 (FEDORA-EPEL-2024-691633446b) Ansible modules and plugins for working with AWX -------------------------------------------------------------------------------- Update Information: Update to 23.9.0 Update to 23.8.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Andrew Heath <anheath(a)anheath-thinkpadt14sgen2i.rmtusnc.csb> - 23.9.0-1 - Update to 23.9.0 * Wed Feb 21 2024 Andrew Heath <anheath(a)anheath-thinkpadt14sgen2i.rmtusnc.csb> - 23.8.1-1 - Update to 2.8.1 -------------------------------------------------------------------------------- ================================================================================ purple-mm-sms-0.1.7-10.el8 (FEDORA-EPEL-2024-fad26d7b55) A libpurple plugin for sending and receiving SMS via ModemManager -------------------------------------------------------------------------------- Update Information: Use %autorelease and %autochangelog -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.7-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jan 29 2021 Torrey Sorensen <torbuntu(a)fedoraproject.org> - 0.1.7-2 - Update for initial push * Sun Aug 16 2020 Nikhil Jha <hi(a)nikhiljha.com> - 0.1.7-1 - Update to 0.1.7 * Thu Mar 5 2020 Nikhil Jha <hi(a)nikhiljha.com> - 0.1.3-1 - Initial packaging -------------------------------------------------------------------------------- ================================================================================ python-mmtf-1.1.3-5.el8 (FEDORA-EPEL-2024-58ef8de7b8) A decoding library for the macromolecular transmission format (MMTF) -------------------------------------------------------------------------------- Update Information: Use %autorelease and %autochangelog Update to version 1.1.3 -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Dec 27 2023 Dominik Mierzejewski <dominik(a)greysector.net> 1.1.3-1 - update to 1.1.3 - use SPDX identifier in License field * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-21 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Tue Jun 13 2023 Python Maint <python-maint(a)redhat.com> - 1.1.2-20 - Rebuilt for Python 3.12 * Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-19 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-18 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.1.2-17 - Rebuilt for Python 3.11 * Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Wed Dec 15 2021 Charalampos Stratakis <cstratak(a)redhat.com> - 1.1.2-15 - Use pytest instead of the deprecated nose test runner * Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 1.1.2-13 - Rebuilt for Python 3.10 * Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 1.1.2-10 - Rebuilt for Python 3.9 * Thu Jan 30 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Thu Oct 3 2019 Miro Hron��ok <mhroncok(a)redhat.com> - 1.1.2-8 - Rebuilt for Python 3.8.0rc1 (#1748018) * Mon Aug 19 2019 Miro Hron��ok <mhroncok(a)redhat.com> - 1.1.2-7 - Rebuilt for Python 3.8 * Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Sat Feb 2 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ resalloc-5.3-1.el8 (FEDORA-EPEL-2024-dee7ac9fb4) Resource allocator for expensive resources - client tooling -------------------------------------------------------------------------------- Update Information: New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.3 https://github.com/praiskup/resalloc/releases/tag/v5.2 https://github.com/praiskup/resalloc-aws/releases/tag/resalloc-aws-1.8-1 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Pavel Raiskup <praiskup(a)redhat.com> - 5.3-1 - New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.3 * Wed Feb 28 2024 Pavel Raiskup <praiskup(a)redhat.com> - 5.2-1 - New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.2 * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ resalloc-aws-1.8-1.el8 (FEDORA-EPEL-2024-dee7ac9fb4) Resource allocator scripts for AWS -------------------------------------------------------------------------------- Update Information: New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.3 https://github.com/praiskup/resalloc/releases/tag/v5.2 https://github.com/praiskup/resalloc-aws/releases/tag/resalloc-aws-1.8-1 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Pavel Raiskup <praiskup(a)redhat.com> 1.8-1 - The wait-for-ssh script moved to resalloc-helpers -------------------------------------------------------------------------------- ================================================================================ scitokens-cpp-1.1.1-1.el8 (FEDORA-EPEL-2024-38bf534d31) C++ Implementation of the SciTokens Library -------------------------------------------------------------------------------- Update Information: Improve error handling around the sqlite3 library Fix test failures and compiler warnings -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Derek Weitzel <dweitzel(a)unl.edu> - 1.1.1-1 - Improve error handling around the sqlite3 library - Fix test failures and compiler warnings * Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild --------------------------------------------------------------------------------

2 months

1
0
0 / 0

Fedora EPEL 7 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 7 Security updates need testing: Age URL 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-5ef433f7ed chromium-122.0.6261.69-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing resalloc-5.3-1.el7 scitokens-cpp-1.1.1-1.el7 Details about builds: ================================================================================ resalloc-5.3-1.el7 (FEDORA-EPEL-2024-ac2a36384a) Resource allocator for expensive resources - client tooling -------------------------------------------------------------------------------- Update Information: New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.3 https://github.com/praiskup/resalloc/releases/tag/v5.2 https://github.com/praiskup/resalloc-aws/releases/tag/resalloc-aws-1.8-1 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Pavel Raiskup <praiskup(a)redhat.com> - 5.3-1 - New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.3 * Wed Feb 28 2024 Pavel Raiskup <praiskup(a)redhat.com> - 5.2-1 - New upstream release https://github.com/praiskup/resalloc/releases/tag/v5.2 * Fri Jan 26 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ scitokens-cpp-1.1.1-1.el7 (FEDORA-EPEL-2024-f7e3e336c0) C++ Implementation of the SciTokens Library -------------------------------------------------------------------------------- Update Information: Improve error handling around the sqlite3 library Fix test failures and compiler warnings -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 28 2024 Derek Weitzel <dweitzel(a)unl.edu> - 1.1.1-1 - Improve error handling around the sqlite3 library - Fix test failures and compiler warnings --------------------------------------------------------------------------------

2 months

1
0
0 / 0

Fedora EPEL 8 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 8 Security updates need testing: Age URL 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-109c5d3d12 gifsicle-1.95-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing cpp-jwt-1.4-7.el8 dr_libs-0-0.24.20240227gitda35f9d.el8 suricata-6.0.16-1.el8 Details about builds: ================================================================================ cpp-jwt-1.4-7.el8 (FEDORA-EPEL-2024-16cf23e0e6) JSON Web Token library for C++ -------------------------------------------------------------------------------- Update Information: Fix side channel vulnerability -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Jonathan Wright <jonathan(a)almalinux.org> - 1.4-7 - Fix side channel vulnerability rhbz#2263329 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2263329 - Side-channel in cpp-jwt https://bugzilla.redhat.com/show_bug.cgi?id=2263329 -------------------------------------------------------------------------------- ================================================================================ dr_libs-0-0.24.20240227gitda35f9d.el8 (FEDORA-EPEL-2024-402d963e0b) Single-file audio decoding libraries for C/C++ -------------------------------------------------------------------------------- Update Information: dr_flac v0.12.42 - 2023-11-02 Fix build for ARMv6-M. Fix a compilation warning with GCC. dr_mp3 v0.6.39 - 2024-02-27 Fix a Wdouble-promotion warning. v0.6.38 - 2023-11-02 Fix build for ARMv6-M. dr_wav v0.13.16 - 2024-02-27 Fix a Wdouble-promotion warning. v0.13.15 - 2024-01-23 Relax some unnecessary validation that prevented some files from loading. v0.13.14 - 2023-12-02 Fix a warning about an unused variable. v0.13.13 - 2023-11-02 Fix a warning when compiling with Clang. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0-0.24 - Update to 0^20240226gitda35f9d (dr_wav 0.13.15, dr_mp3 0.6.39, dr_flac 0.12.42) -------------------------------------------------------------------------------- ================================================================================ suricata-6.0.16-1.el8 (FEDORA-EPEL-2024-5d281b1780) Intrusion Detection System -------------------------------------------------------------------------------- Update Information: This update fixes: CVE-2024-23835, CVE-2024-23836, CVE-2024-23837, CVE-2024-23839, CVE-2024-24568. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 26 2024 Steve Grubb <sgrubb(a)redhat.com> 6.0.16-1 - New security and bugfix release -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266171 - CVE-2024-24568 suricata: potential bypass of rules inspecting HTTP2 headers [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2266171 [ 2 ] Bug #2266172 - CVE-2024-24568 suricata: potential bypass of rules inspecting HTTP2 headers [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2266172 --------------------------------------------------------------------------------

2 months, 1 week

1
0
0 / 0

Fedora EPEL 9 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 9 Security updates need testing: Age URL 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-bd2367203c gifsicle-1.95-1.el9 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-c6bf47a782 chromium-122.0.6261.69-1.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing cobbler-3.3.4-1.el9 cpp-jwt-1.4-7.el9 dbus-test-runner-19.04.0-2.el9 dr_libs-0^20240226gitda35f9d-1.el9 libayatana-appindicator-0.5.93-3.el9 libayatana-ido-0.10.1-4.el9 libayatana-indicator-0.9.4-2.el9 perl-Excel-Writer-XLSX-1.12-1.el9 python-circuitbreaker-2.0.0-2.el9 python-mailman-web-0.0.6-1.el9 python-whoosh-2.7.4-29.el9 suricata-6.0.16-1.el9 Details about builds: ================================================================================ cobbler-3.3.4-1.el9 (FEDORA-EPEL-2024-f61c894754) Boot server configurator -------------------------------------------------------------------------------- Update Information: Update to 3.3.4 Add local SELinux policy and allow cobbler to check service statuses, run mkfs.fat, and check for reposync and yumdownloader (bz#2251220) Change owndership of web.ss to root (bz#22476533) -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 26 2024 Orion Poplawski <orion(a)nwra.com> - 3.3.4-1 - Update to 3.3.4 - Add local SELinux policy and allow cobbler to check service statuses, run mkfs.fat, and check for reposync and yumdownloader (bz#225122) - Change owndership of web.ss to root (bz#2247652) * Wed Jan 24 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.3.3-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.3.3-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.3.3-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Mon Jul 17 2023 Orion Poplawski <orion(a)nwra.com> - 3.3.3-6 - Add patch to fix build with Sphinx 7 * Wed Jun 14 2023 Python Maint <python-maint(a)redhat.com> - 3.3.3-5 - Rebuilt for Python 3.12 * Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.3.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.3.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Thu Jun 23 2022 Python Maint <python-maint(a)redhat.com> - 3.3.3-2 - Rebuilt for Python 3.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2247653 - cobbler denied by SELinux https://bugzilla.redhat.com/show_bug.cgi?id=2247653 [ 2 ] Bug #2251220 - checks: reposync & yumdownloader are present https://bugzilla.redhat.com/show_bug.cgi?id=2251220 -------------------------------------------------------------------------------- ================================================================================ cpp-jwt-1.4-7.el9 (FEDORA-EPEL-2024-1cefeeb8f5) JSON Web Token library for C++ -------------------------------------------------------------------------------- Update Information: Fix side channel vulnerability -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Jonathan Wright <jonathan(a)almalinux.org> - 1.4-7 - Fix side channel vulnerability rhbz#2263329 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2263329 - Side-channel in cpp-jwt https://bugzilla.redhat.com/show_bug.cgi?id=2263329 -------------------------------------------------------------------------------- ================================================================================ dbus-test-runner-19.04.0-2.el9 (FEDORA-EPEL-2024-9e27048ebd) Utility to run executables under a new DBus session for testing -------------------------------------------------------------------------------- Update Information: Initial packahe -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Arthur Bols <arthur(a)bols.dev> - 19.04.0-2 - Remove libtool archives * Sun Feb 25 2024 Arthur Bols <arthur(a)bols.dev> - 19.04.0-1 - Initial import (fedora#2265817) -------------------------------------------------------------------------------- ================================================================================ dr_libs-0^20240226gitda35f9d-1.el9 (FEDORA-EPEL-2024-450051408e) Single-file audio decoding libraries for C/C++ -------------------------------------------------------------------------------- Update Information: dr_flac v0.12.42 - 2023-11-02 Fix build for ARMv6-M. Fix a compilation warning with GCC. dr_mp3 v0.6.39 - 2024-02-27 Fix a Wdouble-promotion warning. v0.6.38 - 2023-11-02 Fix build for ARMv6-M. dr_wav v0.13.16 - 2024-02-27 Fix a Wdouble-promotion warning. v0.13.15 - 2024-01-23 Relax some unnecessary validation that prevented some files from loading. v0.13.14 - 2023-12-02 Fix a warning about an unused variable. v0.13.13 - 2023-11-02 Fix a warning when compiling with Clang. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0^20240226gitda35f9d-1 - Update to 0^20240226gitda35f9d (dr_wav 0.13.15, dr_mp3 0.6.39, dr_flac 0.12.42) -------------------------------------------------------------------------------- ================================================================================ libayatana-appindicator-0.5.93-3.el9 (FEDORA-EPEL-2024-9e27048ebd) Ayatana Application Indicators -------------------------------------------------------------------------------- Update Information: Initial packahe -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Arthur Bols <arthur(a)bols.dev> - 0.5.93-3 - Fix conditional mono build * Tue Feb 27 2024 Arthur Bols <arthur(a)bols.dev> - 0.5.93-2 - Remove %shrink macro for tests * Sun Feb 25 2024 Arthur Bols <arthur(a)bols.dev> - 0.5.93-1 - Initial import (fedora#2253582) -------------------------------------------------------------------------------- ================================================================================ libayatana-ido-0.10.1-4.el9 (FEDORA-EPEL-2024-9e27048ebd) Ayatana Indicator Display Objects library -------------------------------------------------------------------------------- Update Information: Initial packahe -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Arthur Bols <arthur(a)bols.dev> - 0.10.1-4 - Remove %shrink macro for tests * Sun Feb 25 2024 Arthur Bols <arthur(a)bols.dev> - 0.10.1-3 - Fix license * Sun Feb 25 2024 Arthur Bols <arthur(a)bols.dev> - 0.10.1-2 - Add missing PACKAGE-LICENSING * Sat Feb 24 2024 Arthur Bols <arthur(a)bols.dev> - 0.10.1-1 - Initial import (fedora#2253579) -------------------------------------------------------------------------------- ================================================================================ libayatana-indicator-0.9.4-2.el9 (FEDORA-EPEL-2024-9e27048ebd) Ayatana Indicators Shared Library -------------------------------------------------------------------------------- Update Information: Initial packahe -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Arthur Bols <arthur(a)bols.dev> - 0.9.4-2 - Remove %shrink macro for tests * Sun Feb 25 2024 Arthur Bols <arthur(a)bols.dev> - 0.9.4-1 - Initial import (fedora#2253580) -------------------------------------------------------------------------------- ================================================================================ perl-Excel-Writer-XLSX-1.12-1.el9 (FEDORA-EPEL-2024-6890ee1449) Create a new file in the Excel 2007+ XLSX format -------------------------------------------------------------------------------- Update Information: This release adds a support for embedding images with embed_image(), Excel 365 IMAGE(), trendline equation formatting for Charts, leader lines to all chart types, chart option to display N/A as empty cells, invert_if_negative color option in Charts, hiding a worksheet with very_hidden() in a way that it can only be unhidden by VBA. This release also fixes identation and alignment property mismatch. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 27 2024 Petr Pisar <ppisar(a)redhat.com> - 1.12-1 - 1.12 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266150 - perl-Excel-Writer-XLSX-1.12 is available https://bugzilla.redhat.com/show_bug.cgi?id=2266150 -------------------------------------------------------------------------------- ================================================================================ python-circuitbreaker-2.0.0-2.el9 (FEDORA-EPEL-2024-0e23200068) Python "Circuit Breaker" implementation -------------------------------------------------------------------------------- Update Information: Update to 2.0.0 -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 24 2023 Major Hayden <major(a)redhat.com> - 2.0.0-2 - Add packit config * Mon Jul 24 2023 Major Hayden <major(a)redhat.com> - 2.0.0-1 - Update to 2.0.0 rhbz#2203856 * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Tue Jun 13 2023 Python Maint <python-maint(a)redhat.com> - 1.4.0-2 - Rebuilt for Python 3.12 -------------------------------------------------------------------------------- ================================================================================ python-mailman-web-0.0.6-1.el9 (FEDORA-EPEL-2024-af902a3d63) Mailman 3 Web interface -------------------------------------------------------------------------------- Update Information: Initial release of Python's mailman-web and whoosh for EPEL 9 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 26 2024 Michel Lind <salimma(a)fedoraproject.org> - 0.0.6-1 - Initial package (rhbz#2266103) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266103 - Review Request: python-mailman-web - Mailman 3 Web interface https://bugzilla.redhat.com/show_bug.cgi?id=2266103 [ 2 ] Bug #2266151 - Please branch and build python-whoosh in epel9 https://bugzilla.redhat.com/show_bug.cgi?id=2266151 -------------------------------------------------------------------------------- ================================================================================ python-whoosh-2.7.4-29.el9 (FEDORA-EPEL-2024-af902a3d63) Fast, pure-Python full text indexing, search, and spell checking library -------------------------------------------------------------------------------- Update Information: Initial release of Python's mailman-web and whoosh for EPEL 9 -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.7.4-29 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Wed Jun 14 2023 Python Maint <python-maint(a)redhat.com> - 2.7.4-28 - Rebuilt for Python 3.12 * Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.7.4-27 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.7.4-26 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 2.7.4-25 - Rebuilt for Python 3.11 * Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.7.4-24 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.7.4-23 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266103 - Review Request: python-mailman-web - Mailman 3 Web interface https://bugzilla.redhat.com/show_bug.cgi?id=2266103 [ 2 ] Bug #2266151 - Please branch and build python-whoosh in epel9 https://bugzilla.redhat.com/show_bug.cgi?id=2266151 -------------------------------------------------------------------------------- ================================================================================ suricata-6.0.16-1.el9 (FEDORA-EPEL-2024-ad53379349) Intrusion Detection System -------------------------------------------------------------------------------- Update Information: This update fixes: CVE-2024-23835, CVE-2024-23836, CVE-2024-23837, CVE-2024-23839, CVE-2024-24568. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 26 2024 Steve Grubb <sgrubb(a)redhat.com> 6.0.16-1 - New security and bugfix release -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266171 - CVE-2024-24568 suricata: potential bypass of rules inspecting HTTP2 headers [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2266171 [ 2 ] Bug #2266172 - CVE-2024-24568 suricata: potential bypass of rules inspecting HTTP2 headers [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2266172 --------------------------------------------------------------------------------

2 months, 1 week

1
0
0 / 0

[Fedocal] Reminder meeting : EPEL Steering Committee

by tdawson＠redhat.com

Dear all, You are kindly invited to the meeting: EPEL Steering Committee on 2024-02-28 from 18:00:00 to 19:00:00 UTC At fedora-meeting(a)chat.fedoraproject.org The meeting will be about: https://chat.fedoraproject.org/#/room/#meeting:fedoraproject.org This is the weekly EPEL Steering Committee Meeting. A general agenda is the following: #topic aloha #topic EPEL Issues https://pagure.io/epel/issues * https://pagure.io/epel/issues?tags=meeting&status=Open #topic Old Business (if needed) #topic General Issues / Open Floor Source: https://calendar.fedoraproject.org//meeting/10737/

2 months, 1 week

1
0
0 / 0

Fedora EPEL 8 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 8 Security updates need testing: Age URL 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-109c5d3d12 gifsicle-1.95-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing debootstrap-1.0.134-1.el8 mate-panel-1.26.4-2.el8 stockfish-16.1-1.el8 Details about builds: ================================================================================ debootstrap-1.0.134-1.el8 (FEDORA-EPEL-2024-f6c5c03994) Debian GNU/Linux bootstrapper -------------------------------------------------------------------------------- Update Information: Automatic update for debootstrap-1.0.134-1.el8. Changelog for debootstrap * Mon Feb 26 2024 S��rgio M. Basto <sergio(a)serjux.com> - 1.0.134-1 - New release 1.0.134 * Wed Jan 24 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.132-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.132-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Aug 28 2023 Fedora Release Monitoring <release- monitoring(a)fedoraproject.org> - 1.0.132-1 - Update to 1.0.132 (#2129922) -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 26 2024 S��rgio M. Basto <sergio(a)serjux.com> - 1.0.134-1 - New release 1.0.134 * Wed Jan 24 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.132-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.132-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Aug 28 2023 Fedora Release Monitoring <release-monitoring(a)fedoraproject.org> - 1.0.132-1 - Update to 1.0.132 (#2129922) -------------------------------------------------------------------------------- ================================================================================ mate-panel-1.26.4-2.el8 (FEDORA-EPEL-2024-05c37c04c0) MATE Desktop panel and applets -------------------------------------------------------------------------------- Update Information: fix panel ditem-editor dialog -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 26 2024 Wolfgang Ulbrich <fedora(a)raveit.de> - 1.26.4-2 - fix rhbz (#2266127) - fix panel ditem-editor dialog -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266127 - mate-panel custom application launcher broken in latest update (Required gtk+ version 3.24) https://bugzilla.redhat.com/show_bug.cgi?id=2266127 -------------------------------------------------------------------------------- ================================================================================ stockfish-16.1-1.el8 (FEDORA-EPEL-2024-2d038bd4ff) Powerful open source chess engine -------------------------------------------------------------------------------- Update Information: Update to 16.1 (close RHBZ#2265873) https://github.com/official-stockfish/Stockfish/releases/tag/sf_16.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 25 2024 Benjamin A. Beasley <code(a)musicinmybrain.net> - 16.1-1 - Update to 16.1 (close RHBZ#2265873) * Sat Jan 27 2024 Fedora Release Engineering <releng(a)fedoraproject.org> - 16-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sat Jul 22 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 16-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2265873 - stockfish-16.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2265873 --------------------------------------------------------------------------------

2 months, 1 week

1
0
0 / 0

Fedora EPEL 7 updates-testing report

by updates＠fedoraproject.org

The following Fedora EPEL 7 Security updates need testing: Age URL 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-c2135dc540 3proxy-0.9.4-2.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing chromium-122.0.6261.69-1.el7 Details about builds: ================================================================================ chromium-122.0.6261.69-1.el7 (FEDORA-EPEL-2024-5ef433f7ed) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information: Update to 122.0.6261.69 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 23 2024 Than Ngo <than(a)redhat.com> - 122.0.6261.69-1 - update to 122.0.6261.69 - fix build error on el8 - bz#2265039, built with -fwrapv for improved memory safety - bz#2265043, built with -ftrivial-auto-var-init=zero for improved security and preditability * Wed Feb 21 2024 Than Ngo <than(a)redhat.com> - 122.0.6261.57-1 - update to 122.0.6261.57 * High CVE-2024-1669: Out of bounds memory access in Blink * High CVE-2024-1670: Use after free in Mojo * Medium CVE-2024-1671: Inappropriate implementation in Site Isolation * Medium CVE-2024-1672: Inappropriate implementation in Content Security Policy * Medium CVE-2024-1673: Use after free in Accessibility * Medium CVE-2024-1674: Inappropriate implementation in Navigation * Medium CVE-2024-1675: Insufficient policy enforcement in Download * Low CVE-2024-1676: Inappropriate implementation in Navigation. * Sun Feb 18 2024 Than Ngo <than(a)redhat.com> - 122.0.6261.39-1 - update to 122.0.6261.39 * Wed Feb 14 2024 Than Ngo <than(a)redhat.com> - 121.0.6167.184-1 - update to 121.0.6167.184 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2265256 - CVE-2024-1669 CVE-2024-1670 CVE-2024-1671 CVE-2024-1672 CVE-2024-1673 CVE-2024-1674 CVE-2024-1675 CVE-2024-1676 chromium: various flaws [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2265256 --------------------------------------------------------------------------------

2 months, 1 week

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

epel-devel February 2024