The following Fedora EPEL 7 Security updates need testing: Age URL 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-5418332424 chromium-120.0.6099.109-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-33f7b7a10c unrealircd-6.1.4-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
php-Smarty-3.1.48-2.el7 zchunk-1.4.0-1.el7
Details about builds:
================================================================================ php-Smarty-3.1.48-2.el7 (FEDORA-EPEL-2023-2ff4055b33) Smarty - the compiling PHP template engine -------------------------------------------------------------------------------- Update Information:
Fixed Cross site scripting vulnerability in Javascript escaping. This addresses CVE-2023-28447 -------------------------------------------------------------------------------- ChangeLog:
* Fri Jul 21 2023 Fedora Release Engineering releng@fedoraproject.org - 3.1.48-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Mon Apr 3 2023 Shawn Iwinski shawn@iwin.ski - 3.1.48-1 - Update to 3.1.48 - CVE-2023-28447 (RHBZ #2183911, 2183912, 2183913, 2183914) * Fri Jan 20 2023 Fedora Release Engineering releng@fedoraproject.org - 3.1.47-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ zchunk-1.4.0-1.el7 (FEDORA-EPEL-2023-dc53e7a420) Compressed file format that allows easy deltas -------------------------------------------------------------------------------- Update Information:
* Add native OpenSSL 3 compatibility * Add new function for getting zchunk context from chunk * Fix bug when assembling from multiple sources -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 19 2023 Jonathan Dieter jdieter@gmail.com - 1.4.0-1 - Add native OpenSSL 3 compatibility - Add new function for getting zchunk context from chunk - Fix bug when assembling from multiple sources --------------------------------------------------------------------------------