The following Fedora EPEL 9 Security updates need testing:
Age URL
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-93ac846983
xrdp-0.9.23.1-1.el9
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-9791f0b66c
composer-2.6.4-1.el9
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-1b27cb1ee9
rust-aes-gcm-0.10.3-1.el9
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-9ca41f1622
libcaca-0.99-0.69.beta20.el9
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2eda308e31
libspf2-1.2.11-11.20210922git4915c308.el9
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-bb93ecb59d
exim-4.96.1-1.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
ansible-collection-awx-awx-23.2.0-1.el9
icewm-3.4.3-1.el9
lemonldap-ng-2.17.1-2.el9
oneVPL-2023.3.1-1.el9
openbgpd-8.2-1.el9
Details about builds:
================================================================================
ansible-collection-awx-awx-23.2.0-1.el9 (FEDORA-EPEL-2023-a3c3b4a1a9)
Ansible modules and plugins for working with AWX
--------------------------------------------------------------------------------
Update Information:
Update to 23.2.0
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 3 2023 Andrew H <aheath1992(a)gmail.com> - 23.2.0-1
- Update to 23.2.0.
* Fri Sep 15 2023 Andrew H <aheath1992(a)gmail.com> - 23.1.0-1
- Update to 23.1.0.
--------------------------------------------------------------------------------
================================================================================
icewm-3.4.3-1.el9 (FEDORA-EPEL-2023-56d1945279)
Window manager designed for speed, usability, and consistency
--------------------------------------------------------------------------------
Update Information:
chore: Update to 3.4.3 (rh#2241848)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 3 2023 Artem Polishchuk <ego.cordatus(a)gmail.com> - 3.4.3-1
- chore: Update to 3.4.3 (rh#2241848)
--------------------------------------------------------------------------------
================================================================================
lemonldap-ng-2.17.1-2.el9 (FEDORA-EPEL-2023-75c26eee43)
Web Single Sign On (SSO) and Access Management
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 2 2023 Xavier Bachelot <xavier(a)bachelot.org> - 2.17.1-2
- Add a dep on SSOaaS version
- Simplify fix shebang and perms
- Drop INSTALL from %doc
* Mon Sep 25 2023 Clement Oudot <clem.oudot(a)gmail.com> - 2.17.1-1
- Update to 2.17.1
* Wed Aug 30 2023 Clement Oudot <clem.oudot(a)gmail.com> - 2.17.0-1
- Update to 2.17.0
* Mon May 15 2023 Xavier Bachelot <xavier(a)bachelot.org> - 2.16.2-2
- Improve Summary:
- Drop updates-alternatives from %post
- Split long line
- Drop useless comments
- Add provides for bundled javascript libraries and adapt License tag accordingly
- Add provides for bundled font and adapt License tag accordingly
- Make use of %lm_sharedir instead of plain path
- Add BR: for uglify-js
- Move examples to %_docdir
- Fix perms on %lm_vardir/captcha and %_rundir/llng-fastcgi-server
- Drop redundant dirs creation and perms change
- Conditionalize test that needs network access
* Fri May 12 2023 Clement Oudot <clem.oudot(a)gmail.com> - 2.16.2-1
- Update to 2.16.2
* Tue Mar 28 2023 Clement Oudot <clem.oudot(a)gmail.com> - 2.16.1-1
- Update to 2.16.1
* Wed Feb 1 2023 Clement Oudot <clem.oudot(a)gmail.com> - 2.0.16-1
- Update to 2.0.16
* Thu Sep 15 2022 Clement Oudot <clem.oudot(a)gmail.com> - 2.0.15.1-1
- Update to 2.0.15.1
* Fri Sep 9 2022 Clement Oudot <clem.oudot(a)gmail.com> - 2.0.15-1
- Update to 2.0.15
* Thu Feb 24 2022 Xavier Bachelot <xavier(a)bachelot.org> - 2.0.14-2
- Prepare for EL9 support
* Sat Feb 19 2022 Clement Oudot <clem.oudot(a)gmail.com> - 2.0.14-1
- Update to 2.0.14
--------------------------------------------------------------------------------
================================================================================
oneVPL-2023.3.1-1.el9 (FEDORA-EPEL-2023-ae01c7c775)
oneAPI Video Processing Library
--------------------------------------------------------------------------------
Update Information:
Update oneVPL and oneVPL-intel-gpu to latest releases. Fixes CVE-2023-22338 and
CVE-2023-22840. No ABI changes.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 3 2023 Simone Caronni <negativo17(a)gmail.com> - 2023.3.1-1
- Update to 2023.3.1.
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> -
2023.1.3-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Wed Mar 22 2023 Nicolas Chauvet <kwizart(a)gmail.com> - 2023.1.3-2
- Rebuilt for libva
* Mon Mar 13 2023 Adam Williamson <awilliam(a)redhat.com> - 2023.1.3-1
- Update to 2023.1.3
- Drop Python bindings (removed upstream)
- Fix install path for config files (#2177912)
* Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> -
2022.2.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2171625 - oneVPL-intel-gpu: FTBFS in Fedora rawhide/f38
https://bugzilla.redhat.com/show_bug.cgi?id=2171625
[ 2 ] Bug #2185325 - oneVPL-2023.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2185325
[ 3 ] Bug #2231401 - CVE-2023-22840 oneVPL-intel-gpu: Multiple vulnerabilities
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2231401
[ 4 ] Bug #2235293 - oneVPL-intel-gpu-23.3.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2235293
--------------------------------------------------------------------------------
================================================================================
openbgpd-8.2-1.el9 (FEDORA-EPEL-2023-ad979f1872)
OpenBGPD Routing Daemon
--------------------------------------------------------------------------------
Update Information:
# OpenBGPD 8.2 * Update ASPA support to follow draft-ietf-sidrops-aspa-
verification-16 and draft-ietf-sidrops-aspa-profile-16 by making the ASPA lookup
tables AFI-agnostic. * Fix a fatal error in the Linux netlink parser which was
triggered because of a mismatched netlink message size. * Rework `UPDATE`
message generation to use the new ibuf API instead of the hand-rolled solution
before. * Improve error message in `bgpctl` for features not supported by the
portable version of OpenBGPD. * Adjusted example `GRACEFUL_SHUTDOWN` filter
rule in the example config to only match on ebgp sessions.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 3 2023 Robert Scheck <robert(a)fedoraproject.org> 8.2-1
- Upgrade to 8.2 (#2241730)
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 8.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2241730 - openbgpd-8.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2241730
--------------------------------------------------------------------------------