The following Fedora 28 Security updates need testing: Age URL 315 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d510cfd7eb jgraphx-3.6.0.0-6.fc28 264 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d7aeaa74da nodejs-brace-expansion-1.1.11-1.fc28 263 https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc073fdc1a nodejs-atob-2.1.1-1.fc28 139 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc4b7af297 xerces-c27-2.7.0-28.fc28 91 https://bodhi.fedoraproject.org/updates/FEDORA-2018-997a9e3e1f xen-4.10.2-4.fc28 91 https://bodhi.fedoraproject.org/updates/FEDORA-2018-aa3752ac3c nginx-1.14.1-1.fc28 70 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc86ef9e22 squid-4.4-1.fc28 67 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b18f9dd65b tomcat-8.5.35-1.fc28 12 https://bodhi.fedoraproject.org/updates/FEDORA-2019-afade40f3d spice-0.14.0-5.fc28 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3f9a71578d java-1.8.0-openjdk-1.8.0.201.b09-2.fc28 8 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a5f616808e flatpak-1.0.7-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-31e6f6e545 rubygem-activejob-5.1.5-2.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-02e13cb1a8 libexif-0.6.21-19.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c602845b91 nss-3.42.1-1.fc28 5 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3d38ab031e mgetty-1.1.37-10.fc28 5 https://bodhi.fedoraproject.org/updates/FEDORA-2019-362387a66d java-1.8.0-openjdk-aarch32-1.8.0.201.190124-1.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d7ef743ef0 librsvg2-2.42.7-2.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-21b76d179e community-mysql-5.7.25-1.fc28 0 https://bodhi.fedoraproject.org/updates/FEDORA-2019-fa95c8120f thunderbird-60.5.1-1.fc28
The following Fedora 28 Critical Path updates have yet to be approved: Age URL 91 https://bodhi.fedoraproject.org/updates/FEDORA-2018-997a9e3e1f xen-4.10.2-4.fc28 70 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9f541b469b nfs-utils-2.3.3-1.rc2.fc28 61 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4dddcb3e5e highlight-3.48-1.fc28 34 https://bodhi.fedoraproject.org/updates/FEDORA-2019-78153d357c totem-pl-parser-3.26.2-1.fc28 27 https://bodhi.fedoraproject.org/updates/FEDORA-2019-e9c4843d39 volume_key-0.3.12-2.fc28 26 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bb30467485 ostree-2019.1-2.fc28 rpm-ostree-2019.1-1.fc28 18 https://bodhi.fedoraproject.org/updates/FEDORA-2019-cb4a3023ef iproute-4.20.0-1.fc28 15 https://bodhi.fedoraproject.org/updates/FEDORA-2019-67c405c3d8 hwdata-0.320-1.fc28 12 https://bodhi.fedoraproject.org/updates/FEDORA-2019-afade40f3d spice-0.14.0-5.fc28 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-f6fcc53d28 libidn2-2.1.1a-1.fc28 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-e5db0dc40c nss-pem-1.0.5-1.fc28 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-b9a64e04c4 polkit-0.115-2.2.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-df5f3b0bb2 gnome-online-accounts-3.28.2-1.fc28 8 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a5f616808e flatpak-1.0.7-1.fc28 8 https://bodhi.fedoraproject.org/updates/FEDORA-2019-4855c4d486 curl-7.59.0-10.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d70bc2e1c8 samba-4.8.9-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c602845b91 nss-3.42.1-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-02e13cb1a8 libexif-0.6.21-19.fc28 6 https://bodhi.fedoraproject.org/updates/FEDORA-2019-dc66cd245f pungi-4.1.33-1.fc28 6 https://bodhi.fedoraproject.org/updates/FEDORA-2019-069924b60e vim-8.1.897-1.fc28 5 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d1eff79041 selinux-policy-3.14.1-54.fc28 5 https://bodhi.fedoraproject.org/updates/FEDORA-2019-f27089e66c linux-firmware-20190213-93.git710963fe.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-04bcb2f1b9 p11-kit-0.23.15-2.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-37a7efe938 osinfo-db-20190218-1.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6c4e362bd0 dhcp-4.3.6-22.fc28 dnsperf-2.2.1-1.fc28 bind-dyndb-ldap-11.1-13.fc28 bind-9.11.5-2.P1.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d7ef743ef0 librsvg2-2.42.7-2.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-1c53f1a6c8 ceph-12.2.11-1.fc28 0 https://bodhi.fedoraproject.org/updates/FEDORA-2019-fa95c8120f thunderbird-60.5.1-1.fc28
The following builds have been pushed to Fedora 28 updates-testing
distribution-gpg-keys-1.29-1.fc28 erlang-20.3.8.20-1.fc28 evolution-3.28.5-3.fc28 fedora-repos-28-6 fedscm-admin-1.0.5-1.fc28 freeipa-4.7.2-1.1.fc28 golang-github-fortytw2-leaktest-1.3.0-1.fc28 golang-github-willf-bitset-1.1.10-1.fc28 ibus-typing-booster-2.5.3-1.fc28 kernel-4.20.11-100.fc28 kernel-headers-4.20.11-100.fc28 kernel-tools-4.20.11-100.fc28 libgpod-0.8.3-25.fc28 libtaskotron-0.9.7-1.fc28 lutris-0.5.0.1-5.fc28 mingw-poppler-0.62.0-3.fc28 mock-1.4.14-1.fc28 mock-core-configs-30.1-1.fc28 mozilla-noscript-10.2.1-2.fc28 mozilla-ublock-origin-1.18.4-1.fc28 openvpn-2.4.7-1.fc28 php-phpunit-php-timer2-2.1.1-2.fc28 py3status-3.16-1.fc28 python-django-2.0.13-1.fc28 python-vcstool-0.1.39-1.fc28 radvd-2.17-13.fc28 systemd-238-12.git07f8cd5.fc28 twa-1.8.0-2.fc28
Details about builds:
================================================================================ distribution-gpg-keys-1.29-1.fc28 (FEDORA-2019-5e16c1f70e) GPG keys of various Linux distributions -------------------------------------------------------------------------------- Update Information:
Release together with `mock-core-configs-30.1` which has these changes: - Added repositories for Fedora 30 (and Fedora 31 repos now points to rawhide). - distribution-gpg-keys for rhel8beta is being installed directly from Koji, because EPEL8 does not exist yet. - Fedora 27 config has been moved to `eol` directory. - `gpgcheck` is enabled for testing and debuginfo now. - Fedoras 29+ have included modular repos now. Additionally, there is now `module_platform_id` defined in these configs, which allows you to install modules without errors. ## Mock new features: - All mock configs are parsed and evaluated by [Jinja2](http://jinja.pocoo.org/). Here is small example how it can be used: ``` # define your own config variable config_opts['fedora_number'] = '30' config_opts['root'] = 'fedora-{{ fedora_number }}-x86_64' config_opts['dist'] = 'fc{{ fedora_number }}' ``` Another - more general - example from `site-defaults.cfg`: ``` # You can use jinja templates, e.g.: # config_opts['foobar'] = '{{ foo }} bar' # which will result in 'bar bar' (using value defined few lines above) # more complicated example: # config_opts['foo'] = "{{ plugin_conf['package_state_enable'] }}" # which will result in "True" ``` This feature can simplify mock's configs in the future. I intentionally did not use it now, because it is too fresh. Please experiment with this feature on your own and report any error or issues. If there would be none, then I will start using it in main configs. - Use 32-bit personality for armv7*/armv8* builds. - You can now specify decompress program for root_cache. This is new default in `site-defaults.cfg` [GH#230](https://github.com/rpm-software- management/mock/issues/230): ``` ## decompress_program is needed only for bsdtar, otherwise `compress_program` with `-d` is used ## for bsdtar use "unpigz" or "gunzip" # config_opts['plugin_conf']['root_cache_opts']['decompress_program'] = "pigz" ``` ## Bugfixes: - Added Scientific Linux on the list of RHEL clones [GH#228](https://github.com/rpm-software-management/mock/issues/228) - Fixed exclude pattern for BSDTar [GH#219](https://github.com/rpm-software- management/mock/issues/219) - There used to be living part of `site- defaults.cfg`: ``` config_opts['bootstrap_chroot_additional_packages'] = [] config_opts['bootstrap_module_enable'] = [] config_opts['bootstrap_module_install'] = [] ``` This is now commented out by default, and the defaults are set in mock code. You can still override it in `site-defaults.cfg`. -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Miroslav Such�� msuchy@redhat.com 1.29-1 - update Copr keys - add F31 key and point rawhide to F31 - add Fedora iot keys --------------------------------------------------------------------------------
================================================================================ erlang-20.3.8.20-1.fc28 (FEDORA-2019-ab42c19448) General-purpose programming language and runtime environment -------------------------------------------------------------------------------- Update Information:
* Erlang ver. 20.3.8.20 ---- * Revert last patch for OpenSSL EC selection ---- * Improve EC curves selection * https://github.com/rabbitmq/erlang- rpm/pull/65 -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Peter Lemenkov lemenkov@gmail.com - 20.3.8.20-1 - Ver. 20.3.8.20 * Fri Feb 15 2019 Peter Lemenkov lemenkov@gmail.com - 20.3.8.19-1 - Ver. 20.3.8.19 * Tue Feb 12 2019 Peter Lemenkov lemenkov@gmail.com - 20.3.8.18-3 - Revert latest patch - does too much damage * Mon Feb 4 2019 Peter Lemenkov lemenkov@gmail.com - 20.3.8.18-2 - Fix EC detection --------------------------------------------------------------------------------
================================================================================ evolution-3.28.5-3.fc28 (FEDORA-2019-fc866e9156) Mail and calendar client for GNOME -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2018-15587 -------------------------------------------------------------------------------- ChangeLog:
* Mon Feb 18 2019 Milan Crha mcrha@redhat.com - 3.28.5-3 - Add patch for RH bug #1677651 (CVE-2018-15587 reposition signature bar) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1677650 - CVE-2018-15587 evolution: specially crafted email leading to OpenPGP signatures being spoofed for arbitrary messages https://bugzilla.redhat.com/show_bug.cgi?id=1677650 --------------------------------------------------------------------------------
================================================================================ fedora-repos-28-6 (FEDORA-2019-47c0aa90d9) Fedora package repositories -------------------------------------------------------------------------------- Update Information:
Adding F31 key -------------------------------------------------------------------------------- ChangeLog:
* Mon Feb 18 2019 Mohan Boddu mboddu@bhujji.com - 28-6 - Adding F31 key --------------------------------------------------------------------------------
================================================================================ fedscm-admin-1.0.5-1.fc28 (FEDORA-2019-6710b19d82) CLI tool to process Fedora SCM requests -------------------------------------------------------------------------------- Update Information:
F30 branched. -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Mohan Boddu mboddu@bhujji.com - 1.0.5-1 - Fedora 30 is branched - Give a little more details when finding a ticket to be invalid (pingou) - Fixing tests --------------------------------------------------------------------------------
================================================================================ freeipa-4.7.2-1.1.fc28 (FEDORA-2019-a4c134b46a) The Identity, Policy and Audit system -------------------------------------------------------------------------------- Update Information:
Fix CA setup when fs.protected_regular=1 (fixes #1678794) -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Alexander Bokovoy abokovoy@redhat.com - 4.7.2-1.1 - Merge fixes from Fedora 30 (fixes #1678794) - Fix FTBS due to Samba having removed talloc_strackframe.h and memory.h (#1678670) - Fix CA setup when fs.protected_regular=1 (#1677027) - Fix compile issues after a mass rebuild using upstream patches -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1678794 - FreeIPA server deployment fails due to 'Permission denied' error under /tmp during pki-tomcatd deployment https://bugzilla.redhat.com/show_bug.cgi?id=1678794 --------------------------------------------------------------------------------
================================================================================ golang-github-fortytw2-leaktest-1.3.0-1.fc28 (FEDORA-2019-4481d71367) Goroutine Leak Detector -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 1.3.0-1 - Update to latest version - Increase test timeout to work on s390x * Fri Feb 1 2019 Fedora Release Engineering releng@fedoraproject.org - 1.1.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 1.1.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1558962 - golang-github-fortytw2-leaktest-1.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1558962 --------------------------------------------------------------------------------
================================================================================ golang-github-willf-bitset-1.1.10-1.fc28 (FEDORA-2019-5dc4baf570) Go package implementing bitsets -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 1.1.10-1 - Update to latest version * Fri Feb 1 2019 Fedora Release Engineering releng@fedoraproject.org - 1.1.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Tue Oct 23 2018 Nicolas Mailhot nim@fedoraproject.org - 1.1.9-2 - redhat-rpm-config-123 triggers bugs in gosetup, remove it from Go spec files as it���s just an alias - https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/... -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1678835 - golang-github-willf-bitset-1.1.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1678835 --------------------------------------------------------------------------------
================================================================================ ibus-typing-booster-2.5.3-1.fc28 (FEDORA-2019-ebffc0bae6) A completion input method -------------------------------------------------------------------------------- Update Information:
Update to 2.5.3 -------------------------------------------------------------------------------- ChangeLog:
* Mon Feb 11 2019 Mike FABIAN mfabian@redhat.com - 2.5.3-1 - Update to 2.5.3 - Update translations from zanata (ja, pl updated) - Update emoji annotations from CLDR - Use ���NoIME��� instead of ���NoIme��� as the internal name of the dummy input method - Remove ���Recommends: python3-pyaudio��� (Resolves: rhbz#1672562) - Add gcc to BuildRequires -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1672562 - Drop python3-pyaudio dependency https://bugzilla.redhat.com/show_bug.cgi?id=1672562 --------------------------------------------------------------------------------
================================================================================ kernel-4.20.11-100.fc28 (FEDORA-2019-16de0047d4) The Linux kernel -------------------------------------------------------------------------------- Update Information:
The 4.20.11 stable kernel update contains a number of important fixes across the tree. ---- The 4.20.10 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Justin M. Forbes jforbes@fedoraproject.org - 4.20.11-200 - Linux v4.20.11 * Tue Feb 19 2019 Justin M. Forbes jforbes@fedoraproject.org - Fix CVE-2019-8912 (rhbz 1678685 1678686) * Fri Feb 15 2019 Justin M. Forbes jforbes@fedoraproject.org - 4.20.10-100 - Linux v4.20.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1678685 - CVE-2019-8912 kernel: af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr https://bugzilla.redhat.com/show_bug.cgi?id=1678685 --------------------------------------------------------------------------------
================================================================================ kernel-headers-4.20.11-100.fc28 (FEDORA-2019-16de0047d4) Header files for the Linux kernel for use by glibc -------------------------------------------------------------------------------- Update Information:
The 4.20.11 stable kernel update contains a number of important fixes across the tree. ---- The 4.20.10 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Justin M. Forbes jforbes@fedoraproject.org - 4.20.11-100 - Linux v4.20.11 * Fri Feb 15 2019 Justin M. Forbes jforbes@fedoraproject.org - 4.20.10-100 - Linux v4.20.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1678685 - CVE-2019-8912 kernel: af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr https://bugzilla.redhat.com/show_bug.cgi?id=1678685 --------------------------------------------------------------------------------
================================================================================ kernel-tools-4.20.11-100.fc28 (FEDORA-2019-16de0047d4) Assortment of tools for the Linux kernel -------------------------------------------------------------------------------- Update Information:
The 4.20.11 stable kernel update contains a number of important fixes across the tree. ---- The 4.20.10 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Justin M. Forbes jforbes@fedoraproject.org - 4.20.11-100 - Linux v4.20.11 * Fri Feb 15 2019 Justin M. Forbes jforbes@fedoraproject.org - 4.20.10-100 - Linux v4.20.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1678685 - CVE-2019-8912 kernel: af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr https://bugzilla.redhat.com/show_bug.cgi?id=1678685 --------------------------------------------------------------------------------
================================================================================ libgpod-0.8.3-25.fc28 (FEDORA-2019-6330b17520) Library to access the contents of an iPod -------------------------------------------------------------------------------- Update Information:
rundir fix. -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Gwyn Ciesla limburgher@gmail.com - 0.8.3-25 - Backport tmpdir fix. * Tue Jul 24 2018 Christophe Fergeau cfergeau@redhat.com - 0.8.3-24 - Fix build with python2 * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 0.8.3-23 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1678143 - systemd error message during boot https://bugzilla.redhat.com/show_bug.cgi?id=1678143 --------------------------------------------------------------------------------
================================================================================ libtaskotron-0.9.7-1.fc28 (FEDORA-2019-6fd87cf2a2) Taskotron Support Library -------------------------------------------------------------------------------- Update Information:
- yumrepoinfo: Fedora 30 has been branched - docs: allow CRASHED outcome -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Frantisek Zatloukal fzatlouk@redhat.com - 0.9.7-1 - yumrepoinfo: Fedora 30 has been branched - docs: allow CRASHED outcome --------------------------------------------------------------------------------
================================================================================ lutris-0.5.0.1-5.fc28 (FEDORA-2019-e1c5b29865) Install and play any video game easily -------------------------------------------------------------------------------- Update Information:
More additional depends -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Christopher King bunnyapocalypse@protonmail.com - 0.5.0.1-5 - More additional depends --------------------------------------------------------------------------------
================================================================================ mingw-poppler-0.62.0-3.fc28 (FEDORA-2019-216ba46b12) MinGW Windows Poppler library -------------------------------------------------------------------------------- Update Information:
Backport security fixes: CVE-2019-7310, CVE-2018-20662 -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Sandro Mani manisandro@gmail.com - 0.62.0-3 - Backport security fix: CVE-2019-7310 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1665273 - CVE-2018-20662 poppler: SIGABRT PDFDoc::setup class in PDFDoc.cc https://bugzilla.redhat.com/show_bug.cgi?id=1665273 [ 2 ] Bug #1672419 - CVE-2019-7310 poppler: heap-based buffer over-read in XRef::getEntry in XRef.cc https://bugzilla.redhat.com/show_bug.cgi?id=1672419 --------------------------------------------------------------------------------
================================================================================ mock-1.4.14-1.fc28 (FEDORA-2019-5e16c1f70e) Builds packages inside chroots -------------------------------------------------------------------------------- Update Information:
Release together with `mock-core-configs-30.1` which has these changes: - Added repositories for Fedora 30 (and Fedora 31 repos now points to rawhide). - distribution-gpg-keys for rhel8beta is being installed directly from Koji, because EPEL8 does not exist yet. - Fedora 27 config has been moved to `eol` directory. - `gpgcheck` is enabled for testing and debuginfo now. - Fedoras 29+ have included modular repos now. Additionally, there is now `module_platform_id` defined in these configs, which allows you to install modules without errors. ## Mock new features: - All mock configs are parsed and evaluated by [Jinja2](http://jinja.pocoo.org/). Here is small example how it can be used: ``` # define your own config variable config_opts['fedora_number'] = '30' config_opts['root'] = 'fedora-{{ fedora_number }}-x86_64' config_opts['dist'] = 'fc{{ fedora_number }}' ``` Another - more general - example from `site-defaults.cfg`: ``` # You can use jinja templates, e.g.: # config_opts['foobar'] = '{{ foo }} bar' # which will result in 'bar bar' (using value defined few lines above) # more complicated example: # config_opts['foo'] = "{{ plugin_conf['package_state_enable'] }}" # which will result in "True" ``` This feature can simplify mock's configs in the future. I intentionally did not use it now, because it is too fresh. Please experiment with this feature on your own and report any error or issues. If there would be none, then I will start using it in main configs. - Use 32-bit personality for armv7*/armv8* builds. - You can now specify decompress program for root_cache. This is new default in `site-defaults.cfg` [GH#230](https://github.com/rpm-software- management/mock/issues/230): ``` ## decompress_program is needed only for bsdtar, otherwise `compress_program` with `-d` is used ## for bsdtar use "unpigz" or "gunzip" # config_opts['plugin_conf']['root_cache_opts']['decompress_program'] = "pigz" ``` ## Bugfixes: - Added Scientific Linux on the list of RHEL clones [GH#228](https://github.com/rpm-software-management/mock/issues/228) - Fixed exclude pattern for BSDTar [GH#219](https://github.com/rpm-software- management/mock/issues/219) - There used to be living part of `site- defaults.cfg`: ``` config_opts['bootstrap_chroot_additional_packages'] = [] config_opts['bootstrap_module_enable'] = [] config_opts['bootstrap_module_install'] = [] ``` This is now commented out by default, and the defaults are set in mock code. You can still override it in `site-defaults.cfg`. -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Miroslav Such�� msuchy@redhat.com 1.4.14-1 - config['decompress_program'] default (praiskup@redhat.com) - add example for jinja templates - implement templated configs using jinja2 - move live defaults from site-defaults.cfg to utils.py - introduce "decompress_program" option for root_cache for bsdtar - fix exclude patter for bsdtar - delete old changelog entries - use f29 for tests - update the default in sitec-defaults.cfg - Recommend dnf-utils (fzatlouk@redhat.com) - ignore useless-object-inheritance pylint warning - add scientific linux on list of rhel clones [GH#228] - Use 32-bit personality for armv7*/armv8* builds (bero@lindev.ch) - create custom error message for dnf-utils not being installed (pjunak) --------------------------------------------------------------------------------
================================================================================ mock-core-configs-30.1-1.fc28 (FEDORA-2019-5e16c1f70e) Mock core config files basic chroots -------------------------------------------------------------------------------- Update Information:
Release together with `mock-core-configs-30.1` which has these changes: - Added repositories for Fedora 30 (and Fedora 31 repos now points to rawhide). - distribution-gpg-keys for rhel8beta is being installed directly from Koji, because EPEL8 does not exist yet. - Fedora 27 config has been moved to `eol` directory. - `gpgcheck` is enabled for testing and debuginfo now. - Fedoras 29+ have included modular repos now. Additionally, there is now `module_platform_id` defined in these configs, which allows you to install modules without errors. ## Mock new features: - All mock configs are parsed and evaluated by [Jinja2](http://jinja.pocoo.org/). Here is small example how it can be used: ``` # define your own config variable config_opts['fedora_number'] = '30' config_opts['root'] = 'fedora-{{ fedora_number }}-x86_64' config_opts['dist'] = 'fc{{ fedora_number }}' ``` Another - more general - example from `site-defaults.cfg`: ``` # You can use jinja templates, e.g.: # config_opts['foobar'] = '{{ foo }} bar' # which will result in 'bar bar' (using value defined few lines above) # more complicated example: # config_opts['foo'] = "{{ plugin_conf['package_state_enable'] }}" # which will result in "True" ``` This feature can simplify mock's configs in the future. I intentionally did not use it now, because it is too fresh. Please experiment with this feature on your own and report any error or issues. If there would be none, then I will start using it in main configs. - Use 32-bit personality for armv7*/armv8* builds. - You can now specify decompress program for root_cache. This is new default in `site-defaults.cfg` [GH#230](https://github.com/rpm-software- management/mock/issues/230): ``` ## decompress_program is needed only for bsdtar, otherwise `compress_program` with `-d` is used ## for bsdtar use "unpigz" or "gunzip" # config_opts['plugin_conf']['root_cache_opts']['decompress_program'] = "pigz" ``` ## Bugfixes: - Added Scientific Linux on the list of RHEL clones [GH#228](https://github.com/rpm-software-management/mock/issues/228) - Fixed exclude pattern for BSDTar [GH#219](https://github.com/rpm-software- management/mock/issues/219) - There used to be living part of `site- defaults.cfg`: ``` config_opts['bootstrap_chroot_additional_packages'] = [] config_opts['bootstrap_module_enable'] = [] config_opts['bootstrap_module_install'] = [] ``` This is now commented out by default, and the defaults are set in mock code. You can still override it in `site-defaults.cfg`. -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 19 2019 Miroslav Such�� msuchy@redhat.com 30.1-1 - default for config['decompress_program'] (praiskup@redhat.com) - require recent distribution-gpg-keys which has F31 key - add examples how to enable/install module in F29+ configs - add module_platform_id - add modular repos - enable gpgcheck for debuginfo for rawhide - enable gpgcheck for testing and debuginfo for F30 - EOL Fedora 27 configs - remove mdpolicy from F30 - add Fedora 30 configs - add link to distribution-gpg-keys for rhel8 bootstrap --------------------------------------------------------------------------------
================================================================================ mozilla-noscript-10.2.1-2.fc28 (FEDORA-2019-e72e83f14d) JavaScript white list extension for Mozilla Firefox -------------------------------------------------------------------------------- Update Information:
v 10.2.1 ============================================================= * Cascade top document's restrictions to subframes (Tor issue #28873) * Fixed restored media element from placeholder not loading previously blocked content automatically * Fixed placeholders missing for some blocked embeddings (Tor ticket #28720) v 10.2 ============================================================ * [L10n] Updated fr, he * Allow origin-less fetch for extensions (issue #41) * Fixed meta refresh inside NOSCRIPT emulation breaking Firefox's built-in refresh blocking * Fixed issue #35 "tabId is not defined" on startup * Darker red badge background to ensure text is kept white across browsers -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Dominik Mierzejewski rpm@greysector.net - 10.2.1-2 - update to 10.2.1 --------------------------------------------------------------------------------
================================================================================ mozilla-ublock-origin-1.18.4-1.fc28 (FEDORA-2019-baa231b766) An efficient blocker for Firefox -------------------------------------------------------------------------------- Update Information:
## 1.18.4 * [Firefox] Cosmetic filtering not enforced at uBO launch on already opened web pages * [Webext] Platform/webext/vapi-webrequest.js breaks uBo functionality * [Core] Compute URL of sublists as relative to URL of parent list Fix partyness evaluation for cases of base domain-less hostnames ## 1.18.2 * [Firefox] Improve nowebrtc.js scriptlet ## 1.18.0 * [New] Refactoring of the logger code for performance/efficiency purpose -- the logger output has been decoupled from the DOM. * [Firefox] Does not block JavaScript in embedded YouTube video on specific webpage * [Firefox] Move early blocking of requests out of experimental status on Firefox. Made easy by Firefox's webext API, as early blocking is natively supported. * [Core] Prevent sites from disabling mouse events for element picker * [Core] Add an option to remove the URL comments in My filters (originally declined in #93) * [Core] uBO does not unhide nodes no longer matching procedural cosmetic filters * [Core] Static extended filtering: fix empty hostnames not being detected/handled * [Core] Cosmetic filter `##` or `##tag`, same as `##*` in element picker only * [Core] `!#include` directive should insert sub-content at directive point 3rd-gen HNTrie * [Core] Duplicate specific cosmetic filters not discarded when "Ignore generic" is enabled * [Core] `$generichide` is still applied even when website is whitelisted * [Core] Change "IDN: ABPindo" to "IDN, MYS: ABPindo" * [Core] Changing the button for the NOR list * [Core] Filter list view - ugly/messy line breaking/wrapping at minus sign char * [Core] Add X to close overlay box * [Core] No scripting switch number not fully displayed * [Core] Remember and reuse last position/size of the logger popup window * [Core] Logger filter lookup overlay should scroll when filter too long * [Core] Element picker not taking into account srcset when blocking an image = non-working network filter * [Core] Internationalize CodeMirror's hard-coded tooltips in the "My rules" pane * [Core] Remember the cursor position in 'My Filters' tab * [Core] Deprecate pseudo operator `:if(...)`, `:if-not(...)`, reuse `:has(...)`, `:not(...)` * [Core] Improve representation of behind-the-scene network requests in the logger * [Core] The element picker window is almost invisible * [Core] Duplicated entry when creating dynamic filter in logger * [Core] Logger loads blocked content in preview ## 1.17.4 * [Firefox] When pasting multiple lines into the rules editor they are joined together in a single line. Fixed by importing latest release of CodeMirror. * [Core] `##.ad.super` from EasyList is causing `##.ad` to not be applied * [Core] Fix missing trailing asterisk in filter representation in the logger * [Core] No context menu entry for data:* iframes (banners) * [Core] UI Search field and it's search counter interfere with each other / unreadable * [Core] "Update now" button flashes for 1 second before changing the count numbers * [Core] Improve usability of temporarily disabling strict-blocking * [Core] HTML filter exception doesn't work * [Core] `$badfilter` does not work on a CSP filter -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Dominik Mierzejewski rpm@greysector.net - 1.18.4-1 - update to 1.18.4 (#1669295) - update bundled fontawesome version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1669295 - mozilla-ublock-origin-1.18.5b7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1669295 --------------------------------------------------------------------------------
================================================================================ openvpn-2.4.7-1.fc28 (FEDORA-2019-930486994f) A full-featured SSL VPN solution -------------------------------------------------------------------------------- Update Information:
Updating to upstream OpenVPN 2.4.7 -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 David Sommerseth dazo@eurephia.org - 2.4.7-1 - Updating to upstream OpenVPN 2.4.7 --------------------------------------------------------------------------------
================================================================================ php-phpunit-php-timer2-2.1.1-2.fc28 (FEDORA-2019-e6f7f6633c) PHP Utility class for timing -------------------------------------------------------------------------------- Update Information:
**Version 2.1.1** - 2019-02-20 **Changed** * Improved formatting of memory consumption for `resourceUsage()` -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Remi Collet remi@remirepo.net - 2.1.1-2 - add patch from https://github.com/sebastianbergmann/php-timer/pull/21 fix for 32-bit where large value are converted to float * Wed Feb 20 2019 Remi Collet remi@remirepo.net - 2.1.1-1 - update to 2.1.1 --------------------------------------------------------------------------------
================================================================================ py3status-3.16-1.fc28 (FEDORA-2019-3fd1f62e78) An extensible i3status wrapper written in python -------------------------------------------------------------------------------- Update Information:
Upgrade to version 3.16 -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Jakub Jedelsky jakub.jedelsky@gmail.com - 3.16-1 - Upgrade to version 3.16 * Sat Feb 2 2019 Fedora Release Engineering releng@fedoraproject.org - 3.12-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1667799 - py3status-3.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1667799 --------------------------------------------------------------------------------
================================================================================ python-django-2.0.13-1.fc28 (FEDORA-2019-9760933547) A high-level Python Web framework -------------------------------------------------------------------------------- Update Information:
fix CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format() ---- fix CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format() -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Matthias Runge mrunge@redhat.com - 2.0.13-1 - fix CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format() rhbz#1678264 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1673642 - CVE-2019-6975 python-django: memory exhaustion in django.utils.numberformat.format() https://bugzilla.redhat.com/show_bug.cgi?id=1673642 --------------------------------------------------------------------------------
================================================================================ python-vcstool-0.1.39-1.fc28 (FEDORA-2019-528c3d78ba) Tool to invoke vcs commands on multiple repositories -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1677067 - Review Request: python-vcstool - Tool to invoke vcs commands on multiple repositories https://bugzilla.redhat.com/show_bug.cgi?id=1677067 --------------------------------------------------------------------------------
================================================================================ radvd-2.17-13.fc28 (FEDORA-2019-3c30fcfb70) A Router Advertisement daemon -------------------------------------------------------------------------------- Update Information:
change tmpfiles location (#1678147) -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Pavel Zhukov pzhukov@redhat.com - 2.17-13 - change tmpfiles location (#1678147) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1678147 - systemd error/warning message during boot https://bugzilla.redhat.com/show_bug.cgi?id=1678147 --------------------------------------------------------------------------------
================================================================================ systemd-238-12.git07f8cd5.fc28 (FEDORA-2019-2dab60e288) System and Service Manager -------------------------------------------------------------------------------- Update Information:
- Properly validate dbus paths received over dbus (#1678394, CVE-2019-6454) - systemd-networkd fixes: keep bond slave up if already attached, keep existing ip addresses and routes No need to log out or reboot. -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 238-12.git07f8cd5 - Properly validate dbus paths received over dbus (#1678394, CVE-2019-6454) - systemd-networkd fixes: keep bond slave up if already attached, keep existing ip addresses and routes -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1678394 - CVE-2019-6454 systemd: Insufficient input validation in bus_process_object() resulting in PID 1 crash [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1678394 --------------------------------------------------------------------------------
================================================================================ twa-1.8.0-2.fc28 (FEDORA-2019-54c00a72cc) Tiny web auditor with strong opinions -------------------------------------------------------------------------------- Update Information:
Add missing dependency on /usr/bin/dig ---- Update to latest upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 20 2019 Artur Iwicki fedora@svgames.pl - 1.8.0-2 - Add missing dependency on /usr/bin/dig * Sun Feb 17 2019 Artur Iwicki fedora@svgames.pl - 1.8.0-1 - Update to latest upstream release --------------------------------------------------------------------------------