package-announce February 2022

package-announce@lists.fedoraproject.org

1 participants
2469 discussions

[SECURITY] Fedora 34 Update: protobuf-3.14.0-7.fc34
by updates＠fedoraproject.org 26 Feb '22

26 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-2d3e6eb9e4 2022-02-27 03:21:19.355380 -------------------------------------------------------------------------------- Name : protobuf Product : Fedora 34 Version : 3.14.0 Release : 7.fc34 URL : https://github.com/protocolbuffers/protobuf Summary : Protocol Buffers - Google's data interchange format Description : Protocol Buffers are a way of encoding structured data in an efficient yet extensible format. Google uses Protocol Buffers for almost all of its internal RPC protocols and file formats. Protocol buffers are a flexible, efficient, automated mechanism for serializing structured data �� think XML, but smaller, faster, and simpler. You define how you want your data to be structured once, then you can use special generated source code to easily write and read your structured data to and from a variety of data streams and using a variety of languages. You can even update your data structure without breaking deployed programs that are compiled against the "old" format. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2021-22570 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 12 2022 Adrian Reber <adrian(a)lisas.de> - 3.14.0-7 - Applied patch for for CVE-2021-22570 (#2050492) * Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.14.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 3.14.0-5 - Rebuilt for Python 3.10 * Thu May 6 2021 Adrian Reber <adrian(a)lisas.de> - 3.14.0-4 - Reintroduce the emacs subpackage to avoid file conflicts between protobuf-compiler.x86_64 and protobuf-compiler.i686 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2049429 - CVE-2021-22570 protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference https://bugzilla.redhat.com/show_bug.cgi?id=2049429 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-2d3e6eb9e4' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 34 Update: linux-firmware-20220209-129.fc34
by updates＠fedoraproject.org 26 Feb '22

26 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-0fe24b4283 2022-02-27 03:21:19.355367 -------------------------------------------------------------------------------- Name : linux-firmware Product : Fedora 34 Version : 20220209 Release : 129.fc34 URL : http://www.kernel.org/ Summary : Firmware files used by the Linux kernel Description : This package includes firmware files required for some devices to operate. -------------------------------------------------------------------------------- Update Information: Update to upstream 20220209 release: * i915: Add DMC firmware v2.16 for ADL-P * i915: Add GuC v69.0.3 for all platforms * mediatek: Update MT8173 VPU firmware to v1.1.7 * mediatek: update firmware for MT7921 WiFi and bluetooth * mediatek: update firmware for MT7915 * mediatek: add firmware for MT7916 * Firmware updates for Intel Bluetooth 9260/9462/9560/AX200/AX201/AX210/AX211 * iwlwifi: add new FWs from core63-136 release * iwlwifi: update 9000-family firmwares to core66-88 * Mellanox: Add new mlxsw_spectrum firmware xx.2010.1232 * add marvell CPT firmware images * WHENCE: add missing symlink for NanoPi R1 * amdgpu: update yellow carp dmcub firmware * QCA: Add Bluetooth nvm file for WCN685x * QCA: Update Bluetooth WCN685x 2.1 firmware to 2.1.0-00324 * QCA: Update Bluetooth WCN685x 2.0 firmware to 2.0.0-00609 * cxgb4: Update firmware to revision 1.26.6.0 * cnm: add chips&media wave521c firmware. * rtw88: 8822c: Update normal firmware to v9.9.11 * rtw89: 8852a: update fw to v0.13.33.0 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-0fe24b4283' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 34 Update: langtable-0.0.57-1.fc34
by updates＠fedoraproject.org 26 Feb '22

26 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-88d642b37e 2022-02-27 03:21:19.355261 -------------------------------------------------------------------------------- Name : langtable Product : Fedora 34 Version : 0.0.57 Release : 1.fc34 URL : https://github.com/mike-fabian/langtable Summary : Guessing reasonable defaults for locale, keyboard layout, territory, and language. Description : langtable is used to guess reasonable defaults for locale, keyboard layout, territory, and language, if part of that information is already known. For example, guess the territory and the keyboard layout if the language is known or guess the language and keyboard layout if the territory is already known. -------------------------------------------------------------------------------- Update Information: Update to 0.0.57 -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 25 2022 Mike FABIAN <mfabian(a)redhat.com> - 0.0.57-1 - Update to 0.0.57 - Get translation changes from CLDR - Add more translations from CLDR - Replace ��ibus/cangjie�� with ��ibus/table:cangjie5�� - Updates for Sami languages (from Marko Myllynen) - Updates for Finnish keyboard layouts (from Marko Myllynen) -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-88d642b37e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

[SECURITY] Fedora 34 Update: vim-8.2.4460-1.fc34
by updates＠fedoraproject.org 25 Feb '22

25 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-48bf3cb1c4 2022-02-25 17:01:56.011534 -------------------------------------------------------------------------------- Name : vim Product : Fedora 34 Version : 8.2.4460 Release : 1.fc34 URL : http://www.vim.org/ Summary : The VIM editor Description : VIM (VIsual editor iMproved) is an updated and improved version of the vi editor. Vi was the first real screen-based editor for UNIX, and is still very popular. VIM improves on vi by adding new features: multiple windows, multi-level undo, block highlighting and more. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2022-0554 ---- Security fixes for CVE-2022-0714, CVE-2022-0729 ---- Security fix for CVE-2022-0696 ---- Security fix for CVE-2022-0629 ---- Security fix for CVE-2022-0572 ---- Security fixes for CVE-2022-0408, CVE-2022-0413, CVE-2022-0393, CVE-2022-0417, CVE-2022-0443 ---- Security fix for CVE-2022-0685 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 24 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4460-1 - patchlevel 4460 * Mon Feb 21 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4428-1 - patchlevel 4428 * Tue Feb 15 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4386-1 - patchlevel 4386 * Mon Feb 7 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4314-1 - patchlevel 4314 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2048515 - CVE-2022-0408 vim: Stack-based Buffer Overflow in spellsuggest.c https://bugzilla.redhat.com/show_bug.cgi?id=2048515 [ 2 ] Bug #2048519 - CVE-2022-0413 vim: Use after free in src/ex_cmds.c https://bugzilla.redhat.com/show_bug.cgi?id=2048519 [ 3 ] Bug #2049180 - CVE-2022-0393 vim: out-of-bounds read in delete_buff_tail() in getchar.c https://bugzilla.redhat.com/show_bug.cgi?id=2049180 [ 4 ] Bug #2050149 - CVE-2022-0417 vim: heap-based-buffer-overflow in ex_retab() of src/indent.c https://bugzilla.redhat.com/show_bug.cgi?id=2050149 [ 5 ] Bug #2050182 - CVE-2022-0443 vim: heap-use-after-free in enter_buffer() of src/buffer.c https://bugzilla.redhat.com/show_bug.cgi?id=2050182 [ 6 ] Bug #2054278 - CVE-2022-0572 vim: heap overflow in ex_retab() may lead to crash https://bugzilla.redhat.com/show_bug.cgi?id=2054278 [ 7 ] Bug #2055695 - CVE-2022-0629 vim: Stack-based Buffer Overflow in vim prior to 8.2. https://bugzilla.redhat.com/show_bug.cgi?id=2055695 [ 8 ] Bug #2056805 - CVE-2022-0696 vim: NULL Pointer Dereference in vim prior to 8.2 https://bugzilla.redhat.com/show_bug.cgi?id=2056805 [ 9 ] Bug #2057187 - CVE-2022-0714 vim: buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=2057187 [ 10 ] Bug #2057716 - CVE-2022-0729 vim: Use of Out-of-range Pointer Offset https://bugzilla.redhat.com/show_bug.cgi?id=2057716 [ 11 ] Bug #2057820 - CVE-2022-0685 : vim: Use of Out-of-range Pointer Offset in vim https://bugzilla.redhat.com/show_bug.cgi?id=2057820 [ 12 ] Bug #2058483 - CVE-2022-0554 vim: Use of Out-of-range Pointer Offset in vim prior https://bugzilla.redhat.com/show_bug.cgi?id=2058483 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-48bf3cb1c4' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 34 Update: spamassassin-dqs-1.2.1-1.fc34
by updates＠fedoraproject.org 25 Feb '22

25 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-7ec871873c 2022-02-25 17:01:56.011523 -------------------------------------------------------------------------------- Name : spamassassin-dqs Product : Fedora 34 Version : 1.2.1 Release : 1.fc34 URL : https://github.com/spamhaus/spamassassin-dqs Summary : SpamAssassin plugin for Spamhaus Data Query Service (DQS) Description : The Spamhaus Data Query Service (DQS) plugin for SpamAssassin enhances existing functions by checking HELO/EHLO, From, Reply-To, Envelope-From and Return-Path against Spamhaus DBL/ZRD blacklists. It also scans the e-mail body for e-mail addresses and performs blacklist lookups against the domains or its authoritative nameservers. Further checks cover the reverse DNS matches in DBL/ZRD blacklists or the SBL/CSS lookups for IP addresses or IP addresses of authoritative nameservers of domains being part of the e-mail body. While the DQS usage is free under the same terms like when using public mirrors (which are shipped in SpamAssassin as default configuration), a registration procedure for a free DQS key is mandatory nevertheless. -------------------------------------------------------------------------------- Update Information: The Spamhaus Data Query Service (DQS) plugin for SpamAssassin enhances existing functions by checking HELO/EHLO, From, Reply-To, Envelope-From and Return-Path against Spamhaus DBL/ZRD blacklists. It also scans the e-mail body for e-mail addresses and performs blacklist lookups against the domains or its authoritative nameservers. Further checks cover the reverse DNS matches in DBL/ZRD blacklists or the SBL/CSS lookups for IP addresses or IP addresses of authoritative nameservers of domains being part of the e-mail body. While the DQS usage is free under the same terms like when using public mirrors (which are shipped in SpamAssassin as default configuration), a registration procedure for a free DQS key is mandatory nevertheless. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 17 2022 Robert Scheck <robert(a)fedoraproject.org> 1.2.1-1 - Upgrade to 1.2.1 (#2048938) * Mon Feb 14 2022 Robert Scheck <robert(a)fedoraproject.org> 1.2.0-1 - Upgrade to 1.2.0 (#2048938) * Sat Jan 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Sat Jul 17 2021 Robert Scheck <robert(a)fedoraproject.org> 1.1.3-1 - Upgrade to 1.1.3 (#1982505) * Mon Jul 5 2021 Robert Scheck <robert(a)fedoraproject.org> 1.1.2-1 - Upgrade to 1.1.2 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-7ec871873c' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 34 Update: python-editables-0.2.0-1.20220217git5112e1b.fc34
by updates＠fedoraproject.org 25 Feb '22

25 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-3cd610662d 2022-02-25 17:01:56.011512 -------------------------------------------------------------------------------- Name : python-editables Product : Fedora 34 Version : 0.2.0 Release : 1.20220217git5112e1b.fc34 URL : https://github.com/pfmoore/editables Summary : Editable installations Description : A Python library for creating ��editable wheels�� This library supports the building of wheels which, when installed, will expose packages in a local directory on sys.path in ��editable mode��. In other words, changes to the package source will be reflected in the package visible to Python, without needing a reinstall. -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 17 2022 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.2.0-1 - Initial package (close RHBZ#2050876) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2050876 - Review Request: python-editables - Editable installations https://bugzilla.redhat.com/show_bug.cgi?id=2050876 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-3cd610662d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 34 Update: tellico-3.4.4-1.fc34
by updates＠fedoraproject.org 25 Feb '22

25 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-3f7fd36ffe 2022-02-25 17:01:56.011501 -------------------------------------------------------------------------------- Name : tellico Product : Fedora 34 Version : 3.4.4 Release : 1.fc34 URL : http://tellico-project.org/ Summary : A collection manager Description : Tellico is a collection manager by KDE. It includes default collections for books, bibliographies, comic books, videos, music, coins, stamps, trading cards, and wines, and also allows custom collections. Unlimited user-defined fields are allowed. Filters are available to limit the visible entries by definable criteria. Full customization for printing is possible through editing the default XSLT file. It can import CSV, Bibtex, and Bibtexml and export CSV, HTML, Bibtex, Bibtexml, and PilotDB. Entries may be imported directly from Amazon.com. -------------------------------------------------------------------------------- Update Information: Tellico 3.4.4 is available, with a few bug fixes. Notably, version 3.4.3 introduced a potential data loss if your collection used unicode code points with surrogate pairs, such as emojis, which is fixed in 3.4.4. Other improvements and bug fixes: * Fixed bug with serializing code points with surrogate pairs. * Fixed bug with internet search dialog layout. * Fixed bug with taskbar icon on Wayland. * Updated `Discogs` keyword search to show accurate results. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 17 2022 Jos�� Matos <jamatos(a)fedoraproject.org> - 3.4.4-1 - Update to 3.4.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2054001 - tellico is displaying default wayland icon in titlebar and taskbar when it should be displaying app icon https://bugzilla.redhat.com/show_bug.cgi?id=2054001 [ 2 ] Bug #2055467 - tellico-3.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2055467 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-3f7fd36ffe' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 34 Update: gh-2.5.1-1.fc34
by updates＠fedoraproject.org 25 Feb '22

25 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-1b0fcd5f00 2022-02-25 17:01:56.011489 -------------------------------------------------------------------------------- Name : gh Product : Fedora 34 Version : 2.5.1 Release : 1.fc34 URL : https://github.com/cli/cli Summary : GitHub��s official command line tool Description : GitHub��s official command line tool. -------------------------------------------------------------------------------- Update Information: Update to 2.5.1 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 17 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 2.5.1-1 - Update to 2.5.1 * Thu Feb 3 2022 Maxwell G <gotmax(a)e.email> 2.5.0-2 - Fix forgeurl -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-1b0fcd5f00' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 34 Update: python3.7-3.7.12-8.fc34
by updates＠fedoraproject.org 25 Feb '22

25 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-8b7e9457a2 2022-02-25 17:01:56.011477 -------------------------------------------------------------------------------- Name : python3.7 Product : Fedora 34 Version : 3.7.12 Release : 8.fc34 URL : https://www.python.org/ Summary : Version 3.7 of the Python interpreter Description : Python 3.7 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.7, see other distributions that support it, such as an older Fedora release. -------------------------------------------------------------------------------- Update Information: - Instruct pip to use distutils - Instruct pypa/distutils to add /local/ addition to prefix - Set sys.platlibdir to "lib64" on 64bit architectures (for pypa/distutils) -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 3 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.7.12-8 - Instruct pip to use distutils - Instruct pypa/distutils to add /local/ addition to prefix - Set sys.platlibdir to "lib64" on 64bit architectures (for pypa/distutils) * Wed Feb 2 2022 Karolina Surma <ksurma(a)redhat.com> - 3.7.12-7 - Disable two test_zlib tests on s390x to prevent build failure - Fixes: rhbz#2038848 * Tue Jan 25 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.7.12-6 - Disable debug build, as intended - Fixes: rhbz#2044291 * Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.7.12-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Sat Jan 8 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.7.12-4 - Rebuilt for https://fedoraproject.org/wiki/Changes/LIBFFI34 * Fri Nov 12 2021 Bj��rn Esser <besser82(a)fedoraproject.org> - 3.7.12-3 - Rebuild(libnsl2) * Mon Sep 20 2021 Miro Hron��ok <mhroncok(a)redhat.com> - 3.7.12-2 - Explicitly buildrequire OpenSSL 1.1, as Python 3.7 is not compatible with OpenSSL 3.0 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-8b7e9457a2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 34 Update: golang-github-jbenet-cienv-0.1.0-1.fc34
by updates＠fedoraproject.org 25 Feb '22

25 Feb '22

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-bd4223e9c4 2022-02-25 17:01:56.011466 -------------------------------------------------------------------------------- Name : golang-github-jbenet-cienv Product : Fedora 34 Version : 0.1.0 Release : 1.fc34 URL : https://github.com/jbenet/go-cienv Summary : None Description : -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-bd4223e9c4' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

← Newer
1
...
5
6
7
8
9
10
11
...
247
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce February 2022