--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-2d3e6eb9e4
2022-02-27 03:21:19.355380
--------------------------------------------------------------------------------
Name : protobuf
Product : Fedora 34
Version : 3.14.0
Release : 7.fc34
URL : https://github.com/protocolbuffers/protobuf
Summary : Protocol Buffers - Google's data interchange format
Description :
Protocol Buffers are a way of encoding structured data in an efficient
yet extensible format. Google uses Protocol Buffers for almost all of
its internal RPC protocols and file formats.
Protocol buffers are a flexible, efficient, automated mechanism for
serializing structured data ��� think XML, but smaller, faster, and
simpler. You define how you want your data to be structured once, then
you can use special generated source code to easily write and read
your structured data to and from a variety of data streams and using a
variety of languages. You can even update your data structure without
breaking deployed programs that are compiled against the "old" format.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2021-22570
--------------------------------------------------------------------------------
ChangeLog:
* Sat Feb 12 2022 Adrian Reber <adrian(a)lisas.de> - 3.14.0-7
- Applied patch for for CVE-2021-22570 (#2050492)
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.14.0-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 3.14.0-5
- Rebuilt for Python 3.10
* Thu May 6 2021 Adrian Reber <adrian(a)lisas.de> - 3.14.0-4
- Reintroduce the emacs subpackage to avoid file conflicts between
protobuf-compiler.x86_64 and protobuf-compiler.i686
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2049429 - CVE-2021-22570 protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference
https://bugzilla.redhat.com/show_bug.cgi?id=2049429
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-2d3e6eb9e4' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-0fe24b4283
2022-02-27 03:21:19.355367
--------------------------------------------------------------------------------
Name : linux-firmware
Product : Fedora 34
Version : 20220209
Release : 129.fc34
URL : http://www.kernel.org/
Summary : Firmware files used by the Linux kernel
Description :
This package includes firmware files required for some devices to
operate.
--------------------------------------------------------------------------------
Update Information:
Update to upstream 20220209 release: * i915: Add DMC firmware v2.16 for ADL-P
* i915: Add GuC v69.0.3 for all platforms * mediatek: Update MT8173 VPU
firmware to v1.1.7 * mediatek: update firmware for MT7921 WiFi and bluetooth *
mediatek: update firmware for MT7915 * mediatek: add firmware for MT7916 *
Firmware updates for Intel Bluetooth 9260/9462/9560/AX200/AX201/AX210/AX211 *
iwlwifi: add new FWs from core63-136 release * iwlwifi: update 9000-family
firmwares to core66-88 * Mellanox: Add new mlxsw_spectrum firmware xx.2010.1232
* add marvell CPT firmware images * WHENCE: add missing symlink for NanoPi R1
* amdgpu: update yellow carp dmcub firmware * QCA: Add Bluetooth nvm file for
WCN685x * QCA: Update Bluetooth WCN685x 2.1 firmware to 2.1.0-00324 * QCA:
Update Bluetooth WCN685x 2.0 firmware to 2.0.0-00609 * cxgb4: Update firmware
to revision 1.26.6.0 * cnm: add chips&media wave521c firmware. * rtw88: 8822c:
Update normal firmware to v9.9.11 * rtw89: 8852a: update fw to v0.13.33.0
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-0fe24b4283' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-88d642b37e
2022-02-27 03:21:19.355261
--------------------------------------------------------------------------------
Name : langtable
Product : Fedora 34
Version : 0.0.57
Release : 1.fc34
URL : https://github.com/mike-fabian/langtable
Summary : Guessing reasonable defaults for locale, keyboard layout, territory, and language.
Description :
langtable is used to guess reasonable defaults for locale, keyboard layout,
territory, and language, if part of that information is already known. For
example, guess the territory and the keyboard layout if the language
is known or guess the language and keyboard layout if the territory is
already known.
--------------------------------------------------------------------------------
Update Information:
Update to 0.0.57
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 25 2022 Mike FABIAN <mfabian(a)redhat.com> - 0.0.57-1
- Update to 0.0.57
- Get translation changes from CLDR
- Add more translations from CLDR
- Replace ���ibus/cangjie��� with ���ibus/table:cangjie5���
- Updates for Sami languages (from Marko Myllynen)
- Updates for Finnish keyboard layouts (from Marko Myllynen)
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-88d642b37e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-48bf3cb1c4
2022-02-25 17:01:56.011534
--------------------------------------------------------------------------------
Name : vim
Product : Fedora 34
Version : 8.2.4460
Release : 1.fc34
URL : http://www.vim.org/
Summary : The VIM editor
Description :
VIM (VIsual editor iMproved) is an updated and improved version of the
vi editor. Vi was the first real screen-based editor for UNIX, and is
still very popular. VIM improves on vi by adding new features:
multiple windows, multi-level undo, block highlighting and more.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2022-0554 ---- Security fixes for CVE-2022-0714,
CVE-2022-0729 ---- Security fix for CVE-2022-0696 ---- Security fix for
CVE-2022-0629 ---- Security fix for CVE-2022-0572 ---- Security fixes for
CVE-2022-0408, CVE-2022-0413, CVE-2022-0393, CVE-2022-0417, CVE-2022-0443 ----
Security fix for CVE-2022-0685
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 24 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4460-1
- patchlevel 4460
* Mon Feb 21 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4428-1
- patchlevel 4428
* Tue Feb 15 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4386-1
- patchlevel 4386
* Mon Feb 7 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4314-1
- patchlevel 4314
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2048515 - CVE-2022-0408 vim: Stack-based Buffer Overflow in spellsuggest.c
https://bugzilla.redhat.com/show_bug.cgi?id=2048515
[ 2 ] Bug #2048519 - CVE-2022-0413 vim: Use after free in src/ex_cmds.c
https://bugzilla.redhat.com/show_bug.cgi?id=2048519
[ 3 ] Bug #2049180 - CVE-2022-0393 vim: out-of-bounds read in delete_buff_tail() in getchar.c
https://bugzilla.redhat.com/show_bug.cgi?id=2049180
[ 4 ] Bug #2050149 - CVE-2022-0417 vim: heap-based-buffer-overflow in ex_retab() of src/indent.c
https://bugzilla.redhat.com/show_bug.cgi?id=2050149
[ 5 ] Bug #2050182 - CVE-2022-0443 vim: heap-use-after-free in enter_buffer() of src/buffer.c
https://bugzilla.redhat.com/show_bug.cgi?id=2050182
[ 6 ] Bug #2054278 - CVE-2022-0572 vim: heap overflow in ex_retab() may lead to crash
https://bugzilla.redhat.com/show_bug.cgi?id=2054278
[ 7 ] Bug #2055695 - CVE-2022-0629 vim: Stack-based Buffer Overflow in vim prior to 8.2.
https://bugzilla.redhat.com/show_bug.cgi?id=2055695
[ 8 ] Bug #2056805 - CVE-2022-0696 vim: NULL Pointer Dereference in vim prior to 8.2
https://bugzilla.redhat.com/show_bug.cgi?id=2056805
[ 9 ] Bug #2057187 - CVE-2022-0714 vim: buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=2057187
[ 10 ] Bug #2057716 - CVE-2022-0729 vim: Use of Out-of-range Pointer Offset
https://bugzilla.redhat.com/show_bug.cgi?id=2057716
[ 11 ] Bug #2057820 - CVE-2022-0685 : vim: Use of Out-of-range Pointer Offset in vim
https://bugzilla.redhat.com/show_bug.cgi?id=2057820
[ 12 ] Bug #2058483 - CVE-2022-0554 vim: Use of Out-of-range Pointer Offset in vim prior
https://bugzilla.redhat.com/show_bug.cgi?id=2058483
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-48bf3cb1c4' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-7ec871873c
2022-02-25 17:01:56.011523
--------------------------------------------------------------------------------
Name : spamassassin-dqs
Product : Fedora 34
Version : 1.2.1
Release : 1.fc34
URL : https://github.com/spamhaus/spamassassin-dqs
Summary : SpamAssassin plugin for Spamhaus Data Query Service (DQS)
Description :
The Spamhaus Data Query Service (DQS) plugin for SpamAssassin enhances
existing functions by checking HELO/EHLO, From, Reply-To, Envelope-From
and Return-Path against Spamhaus DBL/ZRD blacklists. It also scans the
e-mail body for e-mail addresses and performs blacklist lookups against
the domains or its authoritative nameservers. Further checks cover the
reverse DNS matches in DBL/ZRD blacklists or the SBL/CSS lookups for IP
addresses or IP addresses of authoritative nameservers of domains being
part of the e-mail body.
While the DQS usage is free under the same terms like when using public
mirrors (which are shipped in SpamAssassin as default configuration), a
registration procedure for a free DQS key is mandatory nevertheless.
--------------------------------------------------------------------------------
Update Information:
The Spamhaus Data Query Service (DQS) plugin for SpamAssassin enhances existing
functions by checking HELO/EHLO, From, Reply-To, Envelope-From and Return-Path
against Spamhaus DBL/ZRD blacklists. It also scans the e-mail body for e-mail
addresses and performs blacklist lookups against the domains or its
authoritative nameservers. Further checks cover the reverse DNS matches in
DBL/ZRD blacklists or the SBL/CSS lookups for IP addresses or IP addresses of
authoritative nameservers of domains being part of the e-mail body. While the
DQS usage is free under the same terms like when using public mirrors (which are
shipped in SpamAssassin as default configuration), a registration procedure for
a free DQS key is mandatory nevertheless.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 17 2022 Robert Scheck <robert(a)fedoraproject.org> 1.2.1-1
- Upgrade to 1.2.1 (#2048938)
* Mon Feb 14 2022 Robert Scheck <robert(a)fedoraproject.org> 1.2.0-1
- Upgrade to 1.2.0 (#2048938)
* Sat Jan 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Sat Jul 17 2021 Robert Scheck <robert(a)fedoraproject.org> 1.1.3-1
- Upgrade to 1.1.3 (#1982505)
* Mon Jul 5 2021 Robert Scheck <robert(a)fedoraproject.org> 1.1.2-1
- Upgrade to 1.1.2
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-7ec871873c' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-3cd610662d
2022-02-25 17:01:56.011512
--------------------------------------------------------------------------------
Name : python-editables
Product : Fedora 34
Version : 0.2.0
Release : 1.20220217git5112e1b.fc34
URL : https://github.com/pfmoore/editables
Summary : Editable installations
Description :
A Python library for creating ���editable wheels���
This library supports the building of wheels which, when installed, will expose
packages in a local directory on sys.path in ���editable mode���. In other words,
changes to the package source will be reflected in the package visible to
Python, without needing a reinstall.
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 17 2022 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.2.0-1
- Initial package (close RHBZ#2050876)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2050876 - Review Request: python-editables - Editable installations
https://bugzilla.redhat.com/show_bug.cgi?id=2050876
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-3cd610662d' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-3f7fd36ffe
2022-02-25 17:01:56.011501
--------------------------------------------------------------------------------
Name : tellico
Product : Fedora 34
Version : 3.4.4
Release : 1.fc34
URL : http://tellico-project.org/
Summary : A collection manager
Description :
Tellico is a collection manager by KDE. It includes default collections for
books, bibliographies, comic books, videos, music, coins, stamps, trading
cards, and wines, and also allows custom collections. Unlimited user-defined
fields are allowed. Filters are available to limit the visible entries by
definable criteria. Full customization for printing is possible through
editing the default XSLT file. It can import CSV, Bibtex, and Bibtexml and
export CSV, HTML, Bibtex, Bibtexml, and PilotDB. Entries may be imported
directly from Amazon.com.
--------------------------------------------------------------------------------
Update Information:
Tellico 3.4.4 is available, with a few bug fixes. Notably, version 3.4.3
introduced a potential data loss if your collection used unicode code points
with surrogate pairs, such as emojis, which is fixed in 3.4.4. Other
improvements and bug fixes: * Fixed bug with serializing code points with
surrogate pairs. * Fixed bug with internet search dialog layout. * Fixed bug
with taskbar icon on Wayland. * Updated `Discogs` keyword search to show
accurate results.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 17 2022 Jos�� Matos <jamatos(a)fedoraproject.org> - 3.4.4-1
- Update to 3.4.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2054001 - tellico is displaying default wayland icon in titlebar and taskbar when it should be displaying app icon
https://bugzilla.redhat.com/show_bug.cgi?id=2054001
[ 2 ] Bug #2055467 - tellico-3.4.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2055467
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-3f7fd36ffe' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-1b0fcd5f00
2022-02-25 17:01:56.011489
--------------------------------------------------------------------------------
Name : gh
Product : Fedora 34
Version : 2.5.1
Release : 1.fc34
URL : https://github.com/cli/cli
Summary : GitHub���s official command line tool
Description :
GitHub���s official command line tool.
--------------------------------------------------------------------------------
Update Information:
Update to 2.5.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 17 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 2.5.1-1
- Update to 2.5.1
* Thu Feb 3 2022 Maxwell G <gotmax(a)e.email> 2.5.0-2
- Fix forgeurl
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-1b0fcd5f00' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-8b7e9457a2
2022-02-25 17:01:56.011477
--------------------------------------------------------------------------------
Name : python3.7
Product : Fedora 34
Version : 3.7.12
Release : 8.fc34
URL : https://www.python.org/
Summary : Version 3.7 of the Python interpreter
Description :
Python 3.7 package for developers.
This package exists to allow developers to test their code against an older
version of Python. This is not a full Python stack and if you wish to run
your applications with Python 3.7, see other distributions
that support it, such as an older Fedora release.
--------------------------------------------------------------------------------
Update Information:
- Instruct pip to use distutils - Instruct pypa/distutils to add /local/
addition to prefix - Set sys.platlibdir to "lib64" on 64bit architectures (for
pypa/distutils)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 3 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.7.12-8
- Instruct pip to use distutils
- Instruct pypa/distutils to add /local/ addition to prefix
- Set sys.platlibdir to "lib64" on 64bit architectures (for pypa/distutils)
* Wed Feb 2 2022 Karolina Surma <ksurma(a)redhat.com> - 3.7.12-7
- Disable two test_zlib tests on s390x to prevent build failure
- Fixes: rhbz#2038848
* Tue Jan 25 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.7.12-6
- Disable debug build, as intended
- Fixes: rhbz#2044291
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.7.12-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Sat Jan 8 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.7.12-4
- Rebuilt for https://fedoraproject.org/wiki/Changes/LIBFFI34
* Fri Nov 12 2021 Bj��rn Esser <besser82(a)fedoraproject.org> - 3.7.12-3
- Rebuild(libnsl2)
* Mon Sep 20 2021 Miro Hron��ok <mhroncok(a)redhat.com> - 3.7.12-2
- Explicitly buildrequire OpenSSL 1.1, as Python 3.7 is not compatible with OpenSSL 3.0
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-8b7e9457a2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-bd4223e9c4
2022-02-25 17:01:56.011466
--------------------------------------------------------------------------------
Name : golang-github-jbenet-cienv
Product : Fedora 34
Version : 0.1.0
Release : 1.fc34
URL : https://github.com/jbenet/go-cienv
Summary : None
Description :
--------------------------------------------------------------------------------
Update Information:
Initial import
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-bd4223e9c4' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------