--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-ab11fc16cc
2019-08-30 15:55:00.636528
--------------------------------------------------------------------------------
Name : php-pear-CAS
Product : Fedora 29
Version : 1.3.8
Release : 1.fc29
URL : https://wiki.jasig.org/display/CASC/phpCAS
Summary : Central Authentication Service client library in php
Description :
This package is a PEAR library for using a Central Authentication Service.
Autoloader '%{pear_phpdir}/CAS/Autoload.php';
--------------------------------------------------------------------------------
Update Information:
**Changes in version 1.3.8** **Bug Fixes:** * Fix pear package [#297] (Phil
Fenstermacher) **Improvement:** * Adding support for PROXY CALLBACK using
POST parameters instead of GET [#312]
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 22 2019 Remi Collet <remi(a)remirepo.net> - 1.3.8-1
- update to 1.3.8
* Tue Apr 23 2019 Remi Collet <remi(a)remirepo.net> - 1.3.7-1
- update to 1.3.7
* Fri Oct 26 2018 Remi Collet <remi(a)remirepo.net> - 1.3.6-1
- update to 1.3.6
- new github and packagist owner
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-ab11fc16cc' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-95daa80ca5
2019-08-30 15:55:00.636463
--------------------------------------------------------------------------------
Name : lumina-desktop
Product : Fedora 29
Version : 1.5.0
Release : 1.fc29
URL : http://lumina-desktop.org
Summary : A lightweight, portable desktop environment
Description :
The Lumina Desktop Environment is a lightweight system interface
that is designed for use on any Unix-like operating system.
--------------------------------------------------------------------------------
Update Information:
Version bump
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 21 2019 TI_Eugene <ti.eugene(a)gmail.com> - 1.5.0-1
- Version bump
* Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.0-6.p1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.0-5.p1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1680539 - lumina-desktop-1.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1680539
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-95daa80ca5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-59e81453f3
2019-08-30 14:20:29.663229
--------------------------------------------------------------------------------
Name : libreoffice
Product : Fedora 30
Version : 6.2.6.2
Release : 2.fc30
URL : http://www.libreoffice.org/
Summary : Free Software Productivity Suite
Description :
LibreOffice is an Open Source, community-developed, office productivity suite.
It includes the key desktop applications, such as a word processor,
spreadsheet, presentation manager, formula editor and drawing program, with a
user interface and feature set similar to other office suites. Sophisticated
and flexible, LibreOffice also works transparently with a variety of file
formats, including Microsoft Office File Formats.
--------------------------------------------------------------------------------
Update Information:
- rhbz#1744876 Attempt to create Firebird database results in
isc_create_database error
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 25 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.6.2-2
- Resolves: rhbz#1744876 firebird not an automatically dependency
* Sat Aug 10 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.6.2-1
- latest stable version
* Tue Jul 16 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.5.2-1
- latest stable version
* Fri Jun 14 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.4.2-4
- Resolves: tdf#125808 empty labels in pivot table
- Resolves: rhbz#1720483 make all app rpms depend on pdfimport
* Wed Jun 12 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.4.2-3
- Resolves: rhbz#1717343 crash during mailmerge
* Tue Jun 11 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.4.2-2
- Resolves: rhbz#1719378 wrong signature for GtkGestureLongPress::pressed
* Thu May 30 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.4.2-1
- latest stable version
* Sun May 26 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.3.2-5
- Resolves: rhbz#1713827 protect against null ViewShell
- Resolves: rhbz#1713908 stop disabling firebird-sdbc
* Thu May 23 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.3.2-4
- Resolves: rhbz#1712823 crash in extended tooltips over pattern editor
- Resolves: rhbz#1711143 calc not rounding time calculation correctly
* Tue May 21 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.3.2-3
- rebuild for e-d-s
* Thu May 2 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.3.2-2
- add Esperanto
* Tue Apr 30 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.3.2-1
- latest stable release
* Fri Apr 26 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.2.2-6
- Related: rhbz#1703375 disable bsh and rhino for rhel
* Thu Apr 25 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.2.2.2-5
- Resolves: rhbz#1702810 Prepare for upcoming libebook
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-59e81453f3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-3844281be1
2019-08-30 14:20:29.663206
--------------------------------------------------------------------------------
Name : dovecot
Product : Fedora 30
Version : 2.3.7.2
Release : 1.fc30
URL : http://www.dovecot.org/
Summary : Secure imap and pop3 server
Description :
Dovecot is an IMAP server for Linux/UNIX-like systems, written with security
primarily in mind. It also contains a small POP3 server. It supports mail
in either of maildir or mbox formats.
The SQL drivers and authentication plug-ins are in their subpackages.
--------------------------------------------------------------------------------
Update Information:
* CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when
scanning data in quoted strings, leading to out of bounds heap memory writes
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 29 2019 Michal Hlavinka <mhlavink(a)redhat.com> - 1:2.3.7.2-1
- dovecot updated to 2.3.7.2, pigeonhole 0.5.7.2
- fixes CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
when scanning data in quoted strings, leading to out of bounds heap
memory writes
* Mon Aug 19 2019 Michal Hlavinka <mhlavink(a)redhat.com> - 1:1-2.3.7.1
- dovecot updated to 2.3.7.1, pigeonhole updated to 0.5.7.1
* Wed Jul 24 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1:2.3.6-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Fri May 31 2019 Michal Hlavinka <mhlavink(a)redhat.com> - 1:2.3.6-3
- disable gcc 9 stack reuse temporarily
* Mon May 13 2019 Michal Hlavinka <mhlavink(a)redhat.com> - 1:2.3.6-2
- use /run instead of /var/run (#1706372)
* Thu May 2 2019 Michal Hlavinka <mhlavink(a)redhat.com> - 1:2.3.6-1
- dovecot updated to 2.3.6, pigeonhole updated to 0.5.6
* Thu Apr 18 2019 Michal Hlavinka <mhlavink(a)redhat.com> - 1:2.3.5.2-1
- dovecot updated to 2.3.5.2
- fixes CVE-2019-10691: Trying to login with 8bit username containing
invalid UTF8 input causes auth process to crash if auth policy is enabled.
* Thu Mar 28 2019 Michal Hlavinka <mhlavink(a)redhat.com> - 1:2.3.5.1-1
- dovecot updated to 2.3.5.1
- CVE-2019-7524: Missing input buffer size validation leads into
arbitrary buffer overflow when reading fts or pop3 uidl header
from Dovecot index.
* Wed Mar 6 2019 Michal Hlavinka <mhlavink(a)redhat.com> - 1:2.3.5-1
- dovecot updated to 2.3.5, pigeonhole updated to 0.5.5
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1:2.3.4-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1742010 - dovecot-2.3.7.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1742010
[ 2 ] Bug #1746666 - CVE-2019-11500 dovecot: improper NULL byte handling in IMAP and ManageSieve protocol parsers leads to out of bounds writes [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1746666
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-3844281be1' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-a4637723aa
2019-08-30 14:20:29.663194
--------------------------------------------------------------------------------
Name : wireless-regdb
Product : Fedora 30
Version : 2019.06.03
Release : 5.fc30
URL : https://wireless.wiki.kernel.org/en/developers/regulatory/wireless-regdb
Summary : Regulatory database for 802.11 wireless networking
Description :
The wireless-regdb package provides the regulatory rules database
used by the kernels 802.11 networking stack in order to comply
with radio frequency regulatory rules around the world.
--------------------------------------------------------------------------------
Update Information:
Remove patch preventing install of regulatory.bin.5 man page Include
regulatory.bin.5 man page in distributed files
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 28 2019 John W. Linville <linville(a)redhat.com> - 2019.06.03-5
- Remove patch preventing install of regulatory.bin.5 man page
- Include regulatory.bin.5 man page in distributed files
* Mon Aug 26 2019 John W. Linville <linville(a)redhat.com> - 2019.06.03-4
- Bump crda Provides and Obsoletes to ensure proper upgrades
* Mon Aug 5 2019 John W. Linville <linville(a)redhat.com> - 2019.06.03-3
- remove Requires for kernel
* Sat Jul 27 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2019.06.03-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Thu Jun 6 2019 John W. Linville <linville(a)redhat.com> - 2019.06.03-1
- Update to version 2019.06.03 from upstream
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1746441 - man regulatory.db does not work
https://bugzilla.redhat.com/show_bug.cgi?id=1746441
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-a4637723aa' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-e5b6f7abc2
2019-08-30 14:20:29.663180
--------------------------------------------------------------------------------
Name : pulseaudio
Product : Fedora 30
Version : 12.2
Release : 9.fc30
URL : http://www.freedesktop.org/wiki/Software/PulseAudio
Summary : Improved Linux Sound Server
Description :
PulseAudio is a sound server for Linux and other Unix like operating
systems. It is intended to be an improved drop-in replacement for the
Enlightened Sound Daemon (ESOUND).
--------------------------------------------------------------------------------
Update Information:
Pull in upstream fix for volume distortion when built with gcc-9.1+
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 27 2019 Rex Dieter <rdieter(a)fedoraproject.org> - 12.2-9
- (branch) Mark channel parameter as earlyclobber (#1745733)
* Wed Jul 3 2019 Rex Dieter <rdieter(a)fedoraproject.org> - 12.2-7
- alsa-sink: clear pollfd revents before poll
* Mon Jun 17 2019 Rex Dieter <rdieter(a)fedoraproject.org> - 12.2-6
- pull in upstream patch for alsa include paths
* Thu May 9 2019 Rex Dieter <rdieter(a)fedoraproject.org> - 12.2-5
- Use systemd presets to enable user units
- conditionals: simplify and support rhel8
* Wed Apr 10 2019 Rex Dieter <rdieter(a)fedoraproject.org> - 12.2-4
- test using only socket activation (f31+ only for now)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1745733 - Noise in various channels when volume is lowered [regression]
https://bugzilla.redhat.com/show_bug.cgi?id=1745733
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-e5b6f7abc2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-8a1a071360
2019-08-30 14:20:29.663167
--------------------------------------------------------------------------------
Name : poetry
Product : Fedora 30
Version : 0.12.17
Release : 3.fc30
URL : https://poetry.eustace.io/
Summary : Python dependency management and packaging made easy
Description :
Poetry helps you declare, manage and install dependencies of Python
projects, ensuring you have the right stack everywhere.
--------------------------------------------------------------------------------
Update Information:
Relax dependency on cachy to fix installability.
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-8a1a071360' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-f0f0ff64bb
2019-08-30 14:20:29.663153
--------------------------------------------------------------------------------
Name : pcre2
Product : Fedora 30
Version : 10.33
Release : 13.fc30
URL : https://www.pcre.org/
Summary : Perl-compatible regular expression library
Description :
PCRE2 is a re-working of the original PCRE (Perl-compatible regular
expression) library to provide an entirely new API.
PCRE2 is written in C, and it has its own API. There are three sets of
functions, one for the 8-bit library, which processes strings of bytes, one
for the 16-bit library, which processes strings of 16-bit values, and one for
the 32-bit library, which processes strings of 32-bit values. There are no C++
wrappers. This package provides support for strings in 8-bit and UTF-8
encodings. Install pcre2-utf16 or pcre2-utf32 packages for the other ones.
The distribution does contain a set of C wrapper functions for the 8-bit
library that are based on the POSIX regular expression API (see the pcre2posix
man page). These can be found in a library called libpcre2posix. Note that
this just provides a POSIX calling interface to PCRE2; the regular expressions
themselves still follow Perl syntax and semantics. The POSIX API is
restricted, and does not give full access to all of PCRE2's facilities.
--------------------------------------------------------------------------------
Update Information:
This releases fixes a regression in a lookbehind after a condition. It also
fixes reporting rightmost consulted characters. It also updates a URL in the RPM
metadata.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 27 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-13
- Readd a fix for a mismatch with a lookbehind within a lookahead within
a lookbehind and fix the regression in matching a lookbehind after
a condition (bug #1743863)
* Mon Aug 26 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-12
- Revert a fix for a mismatch with a lookbehind within a lookahead within
a lookbehind (bug #1743863)
* Mon Aug 12 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-11
- Fix reporting rightmost consulted characters
* Mon Aug 5 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-10
- Fix an incorrect computation of a group length when a branch exceeds 65535
(upstream bug #2428)
- Use HTTPS protocol in URL metadata
* Mon Jul 22 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-9
- Fix a recursion in compiling an expression with a lookbehind within a
lookahead (upstream bug #2412)
* Wed Jul 17 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-8
- Fix a mismatch with a lookbehind within a lookahead within a lookbehind
(upstream bug #2412)
* Thu Jul 11 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-7
- Fix an integer overflow when checking a lookbehind length
* Wed Jul 3 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-6
- Fix a DFA to recognize a partial match if the end of a subject is encountered
in a lookahead, an atomic group, or a recursion
* Thu Jun 20 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-5
- Do not ignore {1} quantifier when it is applied to a non-possessive group
with more alternatives
* Mon Jun 17 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-4
- Fix a non-JIT match to return (*MARK) names from a successful conditional
assertion
- Fix pcre2grep --only-matching output when number of capturing groups exceeds
32 (upstream bug #2407)
* Mon May 13 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-3
- Correct a misspelling in a documentation
- Fix a crash when \X is used without UTF mode in a JIT (upstream bug #2399)
* Mon May 6 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-2
- Validate number of capturing parentheses
* Tue Apr 16 2019 Petr Pisar <ppisar(a)redhat.com> - 10.33-1
- 10.33 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1743863 - Regression with lookbehind regex in 10.33-8
https://bugzilla.redhat.com/show_bug.cgi?id=1743863
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-f0f0ff64bb' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-34538ccb8e
2019-08-30 14:20:29.663139
--------------------------------------------------------------------------------
Name : btrfs-progs
Product : Fedora 30
Version : 5.2.1
Release : 1.fc30
URL : http://btrfs.wiki.kernel.org/index.php/Main_Page
Summary : Userspace programs for btrfs
Description :
The btrfs-progs package provides all the userspace programs needed to create,
check, modify and correct any inconsistencies in the btrfs filesystem.
--------------------------------------------------------------------------------
Update Information:
Update to btrfs-progs v5.2.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Aug 24 2019 Neal Gompa <ngompa13(a)gmail.com> - 5.2.1-1
- New upstream release
* Wed Jul 24 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Thu May 30 2019 Neal Gompa <ngompa13(a)gmail.com> - 5.1-1
- New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1719392 - btrfs-progs-5.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1719392
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-34538ccb8e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------