The following Fedora EPEL 9 Security updates need testing:
Age URL
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-d573bf038f
plantuml-1.2023.11-2.el9
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-09cc239fe3
chromium-117.0.5938.92-2.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
blender-3.3.11-1.el9
mock-5.2-1.el9
perl-HTTP-CookieJar-0.014-4.el9
perl-Mozilla-PublicSuffix-1.0.6-3.el9
rust-ctor-0.2.5-1.el9
rust-indexmap-2.0.1-1.el9
rust-thiserror-1.0.49-1.el9
rust-thiserror-impl-1.0.49-1.el9
tor-0.4.8.7-1.el9
xrdp-0.9.23.1-1.el9
Details about builds:
================================================================================
blender-3.3.11-1.el9 (FEDORA-EPEL-2023-23b392acb1)
3D modeling, animation, rendering and post-production
--------------------------------------------------------------------------------
Update Information:
Update for 3.6.4 for Fedora 38 and lower and 3.3.11 for EPEL9
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 27 2023 Luya Tshimbalanga <luya(a)fedoraproject.org> - 1:3.3.11-1
- Updafte to 3.3.11
--------------------------------------------------------------------------------
================================================================================
mock-5.2-1.el9 (FEDORA-EPEL-2023-e7ebd56bcd)
Builds packages inside chroots
--------------------------------------------------------------------------------
Update Information:
https://rpm-software-management.github.io/mock/Release-Notes-5.2
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 27 2023 Pavel Raiskup <praiskup(a)redhat.com> 5.2-1
- Fix '~' user source expansion for --copyout
- Compatibility fix with EL 8
- Log out the command-line arguments
- Make sure that 'state' is always finished
- README.md: cleaning up
- Post-release administrivia
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2239035 - mock fails to copyout files with ~ in their names
https://bugzilla.redhat.com/show_bug.cgi?id=2239035
--------------------------------------------------------------------------------
================================================================================
perl-HTTP-CookieJar-0.014-4.el9 (FEDORA-EPEL-2023-d37fd7d349)
Minimalist HTTP user agent cookie jar
--------------------------------------------------------------------------------
Update Information:
This is the first EPEL-9 build of perl-Mozilla-PublicSuffix and its dependent
package perl-HTTP-CookieJar.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 27 2023 Paul Howarth <paul(a)city-fan.org> - 0.014-4
- Use author-independent source URL
- Classify build requirements by usage
- Add runtime recommendation for Mozilla::PublicSuffix as per upstream
- Simplify find command using -delete
- Fix permissions verbosely
- Make %files list more explicit
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.014-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.014-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Mon Jul 25 2022 Yanko Kaneti <yaneti(a)declera.com> 0.014-1
- Update to 0.014
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.012-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue May 31 2022 Jitka Plesnikova <jplesnik(a)redhat.com> - 0.012-4
- Perl 5.36 rebuild
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.012-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2232304 - RFE: epel9 branch of perl-Mozilla-PublicSuffix
https://bugzilla.redhat.com/show_bug.cgi?id=2232304
--------------------------------------------------------------------------------
================================================================================
perl-Mozilla-PublicSuffix-1.0.6-3.el9 (FEDORA-EPEL-2023-d37fd7d349)
Get a domain name's public suffix via the Mozilla Public Suffix List
--------------------------------------------------------------------------------
Update Information:
This is the first EPEL-9 build of perl-Mozilla-PublicSuffix and its dependent
package perl-HTTP-CookieJar.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.6-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue May 31 2022 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.0.6-2
- Perl 5.36 rebuild
* Thu May 5 2022 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.0.6-1
- 1.0.6 bump
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.3-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.3-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Fri May 21 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.0.3-2
- Perl 5.34 rebuild
* Thu Mar 4 2021 Yanko Kaneti <yaneti(a)declera.com> - 1.0.3-1
- New version bump
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Mon Jan 18 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.0.2-1
- 1.0.2 bump
- Specify all dependencies
* Thu Nov 12 2020 Yanko Kaneti <yaneti(a)declera.com> - 1.0.1-1
- New version and upstream maintainer.
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-14
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2232304 - RFE: epel9 branch of perl-Mozilla-PublicSuffix
https://bugzilla.redhat.com/show_bug.cgi?id=2232304
--------------------------------------------------------------------------------
================================================================================
rust-ctor-0.2.5-1.el9 (FEDORA-EPEL-2023-0bbeed8b8b)
__attribute__((constructor)) for Rust
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.5.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 27 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.5-1
- Update to version 0.2.5; Fixes RHBZ#2240821
--------------------------------------------------------------------------------
================================================================================
rust-indexmap-2.0.1-1.el9 (FEDORA-EPEL-2023-0048d1a8d6)
Hash table with consistent order and fast iteration
--------------------------------------------------------------------------------
Update Information:
Update to version 2.0.1.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 27 2023 Fabio Valentini <decathorpe(a)gmail.com> - 2.0.1-1
- Update to version 2.0.1; Fixes RHBZ#2241021
--------------------------------------------------------------------------------
================================================================================
rust-thiserror-1.0.49-1.el9 (FEDORA-EPEL-2023-3179487f0a)
Derive(Error)
--------------------------------------------------------------------------------
Update Information:
Update the thiserror and thiserror-impl crates to version 1.0.49.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 27 2023 Fabio Valentini <decathorpe(a)gmail.com> - 1.0.49-1
- Update to version 1.0.49; Fixes RHBZ#2240866
--------------------------------------------------------------------------------
================================================================================
rust-thiserror-impl-1.0.49-1.el9 (FEDORA-EPEL-2023-3179487f0a)
Implementation detail of the thiserror crate
--------------------------------------------------------------------------------
Update Information:
Update the thiserror and thiserror-impl crates to version 1.0.49.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 27 2023 Fabio Valentini <decathorpe(a)gmail.com> - 1.0.49-1
- Update to version 1.0.49; Fixes RHBZ#2240867
--------------------------------------------------------------------------------
================================================================================
tor-0.4.8.7-1.el9 (FEDORA-EPEL-2023-292af44eda)
Anonymizing overlay network for TCP
--------------------------------------------------------------------------------
Update Information:
update to latest upstream release
https://forum.torproject.org/t/stable-
release-0-4-8-7/9398
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 27 2023 Marcel H��rry <mh+fedora(a)scrit.ch> - 0.4.8.7-1
- update to latest upstream release
https://forum.torproject.org/t/stable-release-0-4-8-7/9398
* Wed Aug 30 2023 Marcel H��rry <mh+fedora(a)scrit.ch> - 0.4.8.5-1
- update to latest upstream release
https://forum.torproject.org/t/stable-release-0-4-8-5/8996
* Fri Aug 25 2023 Marcel H��rry <mh+fedora(a)scrit.ch> - 0.4.8.4-1
- update to latest upstream release
https://forum.torproject.org/t/stable-release-0-4-8-4/8884
* Tue Aug 1 2023 Marcel H��rry <mh+fedora(a)scrit.ch> - 0.4.7.14-1
- update to latest upstream release
* Sat Jul 22 2023 Fedora Release Engineering <releng(a)fedoraproject.org> -
0.4.7.13-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Sat Mar 25 2023 Marcel H��rry <mh+fedora(a)scrit.ch> - 0.4.7.13-3
- Rebuilt to address issue bz#2180871
* Sat Jan 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> -
0.4.7.13-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2211726 - tor-0.4.9.0-alpha-dev is available
https://bugzilla.redhat.com/show_bug.cgi?id=2211726
--------------------------------------------------------------------------------
================================================================================
xrdp-0.9.23.1-1.el9 (FEDORA-EPEL-2023-93ac846983)
Open source remote desktop protocol (RDP) server
--------------------------------------------------------------------------------
Update Information:
Release notes for xrdp v0.9.23.1 (2023/09/27) This is a security fix release
for CVE-2023-42822. This update is recommended for all xrdp users. Security
fixes - CVE-2023-42822: Unchecked access to font glyph info
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 28 2023 Bojan Smojver <bojan(a)rexursive.com> - 1:0.9.23.1-1
- Update to 0.9.23.1
- CVE-2023-42822
--------------------------------------------------------------------------------