The following Fedora 28 Security updates need testing: Age URL 345 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d510cfd7eb jgraphx-3.6.0.0-6.fc28 294 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d7aeaa74da nodejs-brace-expansion-1.1.11-1.fc28 293 https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc073fdc1a nodejs-atob-2.1.1-1.fc28 169 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc4b7af297 xerces-c27-2.7.0-28.fc28 121 https://bodhi.fedoraproject.org/updates/FEDORA-2018-aa3752ac3c nginx-1.14.1-1.fc28 101 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc86ef9e22 squid-4.4-1.fc28 97 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b18f9dd65b tomcat-8.5.35-1.fc28 31 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d7ef743ef0 librsvg2-2.42.7-2.fc28 29 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8b5e704a73 poppler-0.62.0-16.fc28 28 https://bodhi.fedoraproject.org/updates/FEDORA-2019-86412405d5 bind-9.11.5-4.P4.fc28 17 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3c1aed2aa9 cfitsio-3.430-2.fc28 17 https://bodhi.fedoraproject.org/updates/FEDORA-2019-07d447a1d3 golang-googlecode-net-0-0.48.20190302git16b79f2.fc28 16 https://bodhi.fedoraproject.org/updates/FEDORA-2019-b2d986c3e9 freerdp-2.0.0-49.20190304git435872b.fc28 gnome-boxes-3.28.5-2.fc28 pidgin-sipe-1.24.0-3.fc28 remmina-1.3.3-1.fc28 15 https://bodhi.fedoraproject.org/updates/FEDORA-2019-63029a7692 libu2f-host-1.1.8-1.fc28 15 https://bodhi.fedoraproject.org/updates/FEDORA-2019-694e3aa4e8 ntp-4.2.8p13-1.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-87e2fa8e0f libjpeg-turbo-1.5.3-7.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-348166f7fd openwsman-2.6.5-4.fc28 5 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d333d01e08 mxml-3.0-1.fc28 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-b85d4171d4 pdns-4.1.7-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9e1a1cd634 putty-0.71-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3348cb4934 libssh2-1.8.1-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-eabbc2c97d thunderbird-60.6.0-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6baeb15da3 python34-3.4.10-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-cf725dd20b python35-3.5.7-1.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-2fbce03df3 drupal7-7.65-1.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-79bd99f9a8 drupal8-8.6.13-1.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c595a93536 libarchive-3.3.3-6.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-86f32cbab1 python3-3.6.8-3.fc28
The following Fedora 28 Critical Path updates have yet to be approved: Age URL 101 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9f541b469b nfs-utils-2.3.3-1.rc2.fc28 91 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4dddcb3e5e highlight-3.48-1.fc28 65 https://bodhi.fedoraproject.org/updates/FEDORA-2019-78153d357c totem-pl-parser-3.26.2-1.fc28 57 https://bodhi.fedoraproject.org/updates/FEDORA-2019-e9c4843d39 volume_key-0.3.12-2.fc28 56 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bb30467485 ostree-2019.1-2.fc28 rpm-ostree-2019.1-1.fc28 48 https://bodhi.fedoraproject.org/updates/FEDORA-2019-cb4a3023ef iproute-4.20.0-1.fc28 31 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6c4e362bd0 dhcp-4.3.6-22.fc28 dnsperf-2.2.1-1.fc28 bind-dyndb-ldap-11.1-13.fc28 bind-9.11.5-2.P1.fc28 31 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d7ef743ef0 librsvg2-2.42.7-2.fc28 29 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8b5e704a73 poppler-0.62.0-16.fc28 25 https://bodhi.fedoraproject.org/updates/FEDORA-2019-68e7e119bb udisks2-2.7.6-3.fc28 17 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ac998d3003 vim-8.1.994-1.fc28 11 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c4107ac9d3 koji-1.17.0-5.fc28 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-f38cfd1456 ntfs-3g-2017.3.23-10.fc28 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-cb98bf5ace fedfind-4.2.2-1.fc28 python-productmd-1.20-1.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-348166f7fd openwsman-2.6.5-4.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-87e2fa8e0f libjpeg-turbo-1.5.3-7.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d95d1a1e0e libseccomp-2.4.0-0.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ea42f2be87 fedora-repos-28-7 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-e60ecc03b4 python-productmd-1.21-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-0a771739b5 kernel-headers-4.20.17-100.fc28 kernel-4.20.17-100.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-eabbc2c97d thunderbird-60.6.0-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-457ab67a6c psmisc-23.1-3.1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3348cb4934 libssh2-1.8.1-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-155f8c72c2 osinfo-db-20190319-1.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-86f32cbab1 python3-3.6.8-3.fc28 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c595a93536 libarchive-3.3.3-6.fc28
The following builds have been pushed to Fedora 28 updates-testing
R-assertthat-0.2.1-1.fc28 R-openssl-1.3-1.fc28 R-polynom-1.4.0-1.fc28 chromium-73.0.3683.75-2.fc28 console-login-helper-messages-0.16-2.fc28 firefox-66.0-9.fc28 fts-3.8.4-2.fc28 ghostscript-9.26-4.fc28 gpxsee-7.5-1.fc28 js-jsroot-5.6.4-1.fc28 klavaro-3.05-3.fc28 lollypop-1.0.2-1.fc28 netdata-1.13.0-2.fc28 perl-DBD-Pg-3.7.4-3.fc28 perl-Term-Encoding-0.03-1.fc28 php-twig-1.38.3-2.fc28 php-twig2-2.7.3-1.fc28 polkit-0.115-2.3.fc28 python-repomd-0.2.0-1.fc28 rubygem-jekyll-feed-0.12.0-1.fc28 rubygem-jekyll-watch-2.2.0-1.fc28 s3fs-fuse-1.85-1.fc28 tuned-2.11.0-1.fc28 wordpress-5.1.1-4.fc28
Details about builds:
================================================================================ R-assertthat-0.2.1-1.fc28 (FEDORA-2019-e0d9f07fd8) Easy Pre and Post Assertions -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 0.2.1-1 - Update to latest version * Thu Jan 31 2019 Fedora Release Engineering releng@fedoraproject.org - 0.2.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Thu Jul 12 2018 Fedora Release Engineering releng@fedoraproject.org - 0.2.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691491 - R-assertthat-0.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691491 --------------------------------------------------------------------------------
================================================================================ R-openssl-1.3-1.fc28 (FEDORA-2019-5de592807e) Toolkit for Encryption, Signatures and Certificates Based on OpenSSL -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 1.3-1 - Update to latest version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691835 - R-openssl-1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691835 --------------------------------------------------------------------------------
================================================================================ R-polynom-1.4.0-1.fc28 (FEDORA-2019-cd6a38da49) A Class for Univariate Polynomial Manipulations -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 1.4.0-1 - Update to latest version * Thu Jan 31 2019 Fedora Release Engineering releng@fedoraproject.org - 1.3.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Thu Jul 12 2018 Fedora Release Engineering releng@fedoraproject.org - 1.3.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691766 - R-polynom-1.4-0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691766 --------------------------------------------------------------------------------
================================================================================ chromium-73.0.3683.75-2.fc28 (FEDORA-2019-225052b90e) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information:
Update to 73.0.3683.75. Fixes large bucket of CVEs. CVE-2019-5754 CVE-2019-5782 CVE-2019-5755 CVE-2019-5756 CVE-2019-5757 CVE-2019-5758 CVE-2019-5759 CVE-2019-5760 CVE-2019-5761 CVE-2019-5762 CVE-2019-5763 CVE-2019-5764 CVE-2019-5765 CVE-2019-5766 CVE-2019-5767 CVE-2019-5768 CVE-2019-5769 CVE-2019-5770 CVE-2019-5771 CVE-2019-5772 CVE-2019-5773 CVE-2019-5774 CVE-2019-5775 CVE-2019-5776 CVE-2019-5777 CVE-2019-5778 CVE-2019-5779 CVE-2019-5780 CVE-2019-5781 CVE-2019-5784 CVE-2019-5786 CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796 CVE-2019-5797 CVE-2019-5798 CVE-2019-5799 CVE-2019-5800 CVE-2019-5802 CVE-2019-5803 -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 19 2019 Tom Callaway spot@fedoraproject.org - 73.0.3683.75-2 - do not include pyproto/protoc files in package * Tue Mar 12 2019 Tom Callaway spot@fedoraproject.org - 73.0.3683.75-1 - update to 73.0.3683.75 * Sat Mar 9 2019 Tom Callaway spot@fedoraproject.org - 72.0.3626.121-1 - update to 72.0.3626.121 * Tue Feb 26 2019 Tom Callaway spot@fedoraproject.org - 71.0.3578.98-5 - rebuild for libva api change * Thu Jan 31 2019 Fedora Release Engineering releng@fedoraproject.org - 71.0.3578.98-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Mon Jan 21 2019 Tom Callaway spot@fedoraproject.org - 71.0.3578.98-3 - rebuild with widevine fix * Tue Jan 8 2019 Tom Callaway spot@fedoraproject.org - 71.0.3578.98-2 - drop rsp clobber, which breaks gcc9 (thanks to Jeff Law) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1688206 - CVE-2019-5804 chromium-browser: Command line command injection on Windows https://bugzilla.redhat.com/show_bug.cgi?id=1688206 [ 2 ] Bug #1688205 - CVE-2019-5803 chromium-browser: CSP bypass with Javascript URLs' https://bugzilla.redhat.com/show_bug.cgi?id=1688205 [ 3 ] Bug #1688204 - CVE-2019-5802 chromium-browser: Security UI spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1688204 [ 4 ] Bug #1688203 - CVE-2019-5801 chromium-browser: Incorrect Omnibox display on iOS https://bugzilla.redhat.com/show_bug.cgi?id=1688203 [ 5 ] Bug #1688202 - CVE-2019-5800 chromium-browser: CSP bypass with blob URL https://bugzilla.redhat.com/show_bug.cgi?id=1688202 [ 6 ] Bug #1688201 - CVE-2019-5799 chromium-browser: CSP bypass with blob URL https://bugzilla.redhat.com/show_bug.cgi?id=1688201 [ 7 ] Bug #1688200 - CVE-2019-5798 chromium-browser: Out of bounds read in Skia https://bugzilla.redhat.com/show_bug.cgi?id=1688200 [ 8 ] Bug #1688199 - CVE-2019-5797 chromium-browser: Race condition in DOMStorage https://bugzilla.redhat.com/show_bug.cgi?id=1688199 [ 9 ] Bug #1688198 - CVE-2019-5796 chromium-browser: Race condition in Extensions https://bugzilla.redhat.com/show_bug.cgi?id=1688198 [ 10 ] Bug #1688197 - CVE-2019-5795 chromium-browser: Integer overflow in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1688197 [ 11 ] Bug #1688196 - CVE-2019-5794 chromium-browser: Security UI spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1688196 [ 12 ] Bug #1688195 - CVE-2019-5793 chromium-browser: Excessive permissions for private API in Extensions https://bugzilla.redhat.com/show_bug.cgi?id=1688195 [ 13 ] Bug #1688194 - CVE-2019-5792 chromium-browser: Integer overflow in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1688194 [ 14 ] Bug #1688193 - CVE-2019-5791 chromium-browser: Type confusion in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1688193 [ 15 ] Bug #1688192 - CVE-2019-5790 chromium-browser: Heap buffer overflow in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1688192 [ 16 ] Bug #1688191 - CVE-2019-5789 chromium-browser: Use after free in WebMIDI https://bugzilla.redhat.com/show_bug.cgi?id=1688191 [ 17 ] Bug #1688190 - CVE-2019-5788 chromium-browser: Use after free in FileAPI https://bugzilla.redhat.com/show_bug.cgi?id=1688190 [ 18 ] Bug #1688189 - CVE-2019-5787 chromium-browser: Use after free in Canvas https://bugzilla.redhat.com/show_bug.cgi?id=1688189 [ 19 ] Bug #1685162 - CVE-2019-5786 chromium-browser: Use-after-free in FileReader https://bugzilla.redhat.com/show_bug.cgi?id=1685162 [ 20 ] Bug #1676527 - CVE-2019-5784 chromium-browser: Inappropriate implementation in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1676527 [ 21 ] Bug #1670764 - CVE-2019-5780 chromium-browser: Insufficient policy enforcement https://bugzilla.redhat.com/show_bug.cgi?id=1670764 [ 22 ] Bug #1670763 - CVE-2019-5779 chromium-browser: Insufficient policy enforcement in ServiceWorker https://bugzilla.redhat.com/show_bug.cgi?id=1670763 [ 23 ] Bug #1670762 - CVE-2019-5778 chromium-browser: Insufficient policy enforcement in Extensions https://bugzilla.redhat.com/show_bug.cgi?id=1670762 [ 24 ] Bug #1670761 - CVE-2019-5777 chromium-browser: Insufficient policy enforcement in Omnibox https://bugzilla.redhat.com/show_bug.cgi?id=1670761 [ 25 ] Bug #1670760 - CVE-2019-5776 chromium-browser: Insufficient policy enforcement in Omnibox https://bugzilla.redhat.com/show_bug.cgi?id=1670760 [ 26 ] Bug #1670759 - CVE-2019-5775 chromium-browser: Insufficient policy enforcement in Omnibox https://bugzilla.redhat.com/show_bug.cgi?id=1670759 [ 27 ] Bug #1670758 - CVE-2019-5774 chromium-browser: Insufficient validation of untrusted input in SafeBrowsing https://bugzilla.redhat.com/show_bug.cgi?id=1670758 [ 28 ] Bug #1670757 - CVE-2019-5773 chromium-browser: Insufficient data validation in IndexedDB https://bugzilla.redhat.com/show_bug.cgi?id=1670757 [ 29 ] Bug #1670756 - CVE-2019-5772 chromium-browser: Use after free in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1670756 [ 30 ] Bug #1670755 - CVE-2019-5771 chromium-browser: Heap buffer overflow in SwiftShader https://bugzilla.redhat.com/show_bug.cgi?id=1670755 [ 31 ] Bug #1670754 - CVE-2019-5770 chromium-browser: Heap buffer overflow in WebGL https://bugzilla.redhat.com/show_bug.cgi?id=1670754 [ 32 ] Bug #1670753 - CVE-2019-5769 chromium-browser: Insufficient validation of untrusted input in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1670753 [ 33 ] Bug #1670752 - CVE-2019-5768 chromium-browser: Insufficient policy enforcement in DevTools https://bugzilla.redhat.com/show_bug.cgi?id=1670752 [ 34 ] Bug #1670751 - CVE-2019-5767 chromium-browser: Incorrect security UI in WebAPKs https://bugzilla.redhat.com/show_bug.cgi?id=1670751 [ 35 ] Bug #1670750 - CVE-2019-5766 chromium-browser: Insufficient policy enforcement in Canvas https://bugzilla.redhat.com/show_bug.cgi?id=1670750 [ 36 ] Bug #1670749 - CVE-2019-5765 chromium-browser: Insufficient policy enforcement in the browser https://bugzilla.redhat.com/show_bug.cgi?id=1670749 [ 37 ] Bug #1670748 - CVE-2019-5764 chromium-browser: Use after free in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1670748 [ 38 ] Bug #1670747 - CVE-2019-5763 chromium-browser: Insufficient validation of untrusted input in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1670747 [ 39 ] Bug #1670746 - CVE-2019-5762 chromium-browser: Use after free in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1670746 [ 40 ] Bug #1670745 - CVE-2019-5761 chromium-browser: Use after free in SwiftShader https://bugzilla.redhat.com/show_bug.cgi?id=1670745 [ 41 ] Bug #1670744 - CVE-2019-5760 chromium-browser: Use after free in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1670744 [ 42 ] Bug #1670743 - CVE-2019-5759 chromium-browser: Use after free in HTML select elements https://bugzilla.redhat.com/show_bug.cgi?id=1670743 [ 43 ] Bug #1670742 - CVE-2019-5758 chromium-browser: Use after free in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1670742 [ 44 ] Bug #1670741 - CVE-2019-5757 chromium-browser: Type Confusion in SVG https://bugzilla.redhat.com/show_bug.cgi?id=1670741 [ 45 ] Bug #1670740 - CVE-2019-5756 chromium-browser: Use after free in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1670740 [ 46 ] Bug #1670739 - CVE-2019-5755 chromium-browser: Inappropriate implementation in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1670739 [ 47 ] Bug #1670738 - CVE-2019-5782 chromium-browser: Inappropriate implementation in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1670738 [ 48 ] Bug #1670737 - CVE-2019-5754 chromium-browser: Inappropriate implementation in QUIC Networking https://bugzilla.redhat.com/show_bug.cgi?id=1670737 --------------------------------------------------------------------------------
================================================================================ console-login-helper-messages-0.16-2.fc28 (FEDORA-2019-b41fdb4c81) Combines motd, issue, profile features to show system information to the user before/on login -------------------------------------------------------------------------------- Update Information:
Fix AVC denial when reading generated MOTD message. The generated motdgen message did not show when SSHing into a machine with console-login-helper- messgaes-motdgen installed, and an SELinux AVC denial was given. Now, the message displays on SSH login. Updates to the v0.16 release of the upstream source which includes other minor enhancements that do not change behavior. Bug 1691914 was filed against F29, but also occurs on F28. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Robert Fairley rfairley@redhat.com - 0.16-2 - Add condition for f28 setup Requires * Thu Mar 21 2019 Robert Fairley rfairley@redhat.com - 0.16-1 - relax setup dependency for f29 - general upstream source/tidiness improvements - house executable scripts in /usr/libexec - change Source0 to use GitHub-generated archive link - drop .path units for motdgen and issuegen * Fri Mar 15 2019 Robert Fairley rfairley@redhat.com - 0.15-1 - make motdgen generate motd in /run with no symlink * Fri Mar 15 2019 Robert Fairley rfairley@redhat.com - 0.14-1 - issuegen.service: rely on sshd-keygen.target - issuegen: don't show kernel version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691914 - console-login-helper-messages-motdgen: Generated MOTD not displayed - AVC denial https://bugzilla.redhat.com/show_bug.cgi?id=1691914 --------------------------------------------------------------------------------
================================================================================ firefox-66.0-9.fc28 (FEDORA-2019-a0ccc78064) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information:
- Fixed popup issues on Wayland (mozbz#1423598) - Fixed rendering artifacts on Wayland (mozbz#1468911) ---- - New upstream version (66.0) - Details at https://www.mozilla.org/en-US/firefox/66.0/releasenotes/ -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Martin Stransky stransky@redhat.com - 66.0-9 - Release build * Thu Mar 21 2019 Martin Stransky stransky@redhat.com - 66.0-8.test - Added module specific build config - Fixed mozbz#1423598 for multi-monitor setup * Wed Mar 20 2019 Martin Stransky stransky@redhat.com - 66.0-7.test - Switched to test builds - Updated mozbz#1468911 patch * Mon Mar 18 2019 Martin Stransky stransky@redhat.com - 66.0-6 - Build release candidate - Disabled default Wayland backend for Fedora 30 * Mon Mar 18 2019 Martin Stransky stransky@redhat.com - 66.0-5 - Added fix for mozbz#1468911 * Mon Mar 18 2019 Martin Stransky stransky@redhat.com - 66.0-4 - Release build * Fri Mar 15 2019 Martin Stransky stransky@redhat.com - 66.0-3 - Updated to 66.0 (Build 3) - Re-enable s390x arches - Fixed Wayland specific bugs mozbz#1535567, mozbz#1431399 * Tue Mar 12 2019 Martin Stransky stransky@redhat.com - 66.0-1 - Updated to 66.0 (Build 1) --------------------------------------------------------------------------------
================================================================================ fts-3.8.4-2.fc28 (FEDORA-2019-a5393dff26) File Transfer Service V3 -------------------------------------------------------------------------------- Update Information:
* new upstream release ---- * new upstream release ---- * new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Andrea Manzi amanzi@cern.ch - 3.8.4-2 - New upstream release * Tue Mar 19 2019 Andrea Manzi amanzi@cern.ch - 3.8.4-1 - New upstream release * Fri Feb 22 2019 Andrea Manzi amanzi@cern.ch - 3.8.3-1 - New upstream release * Thu Jan 31 2019 Fedora Release Engineering releng@fedoraproject.org - 3.7.8-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Wed Nov 21 2018 Igor Gnatenko ignatenkobrain@fedoraproject.org - 3.7.8-3 - Rebuild for protobuf 3.6 * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 3.7.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ ghostscript-9.26-4.fc28 (FEDORA-2019-9f28451404) Interpreter for PostScript language & PDF -------------------------------------------------------------------------------- Update Information:
- Security fix for CVE-2019-3835 CVE-2019-3838 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Martin Osvald mosvald@redhat.com - 9.26-4 - Fixes for CVE-2019-3835 and CVE-2019-3838 added -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691327 - CVE-2019-3835 ghostscript: superexec operator is available (700585) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1691327 [ 2 ] Bug #1691326 - CVE-2019-3838 ghostscript: forceput in DefineResource is still accessible (700576) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1691326 --------------------------------------------------------------------------------
================================================================================ gpxsee-7.5-1.fc28 (FEDORA-2019-29ad0abcc4) GPS log file viewer and analyzer -------------------------------------------------------------------------------- Update Information:
**News in version 7.5**: - Added support for geotagged JPEG images -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 19 2019 Nikola Forr�� nforro@redhat.com - 7.5-1 - Update to version 7.5 resolves: #1689598 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1689598 - gpxsee-7.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1689598 --------------------------------------------------------------------------------
================================================================================ js-jsroot-5.6.4-1.fc28 (FEDORA-2019-d14bf3a02e) JavaScript ROOT - Interactive numerical data analysis graphics -------------------------------------------------------------------------------- Update Information:
jsroot 5.6.4 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Mattias Ellert mattias.ellert@physics.uu.se - 5.6.4-1 - Update to version 5.6.4 --------------------------------------------------------------------------------
================================================================================ klavaro-3.05-3.fc28 (FEDORA-2019-649b0ebcd8) Typing tutor -------------------------------------------------------------------------------- Update Information:
Fix segfault. ---- Solve library dependencies. ---- Update to 3.05. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Vasiliy N. Glazov vascom2@gmail.com - 3.05-3 - Fix segfault * Tue Mar 19 2019 Vasiliy N. Glazov vascom2@gmail.com - 3.05-2 - Correct databox library handling * Sun Mar 17 2019 Vasiliy N. Glazov vascom2@gmail.com - 3.05-1 - Update to 3.05 * Mon Feb 11 2019 Vasiliy N. Glazov vascom2@gmail.com - 3.04-1 - Update to 3.04 - Clean spec and correct paths * Fri Feb 1 2019 Fedora Release Engineering releng@fedoraproject.org - 3.03-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 3.03-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ lollypop-1.0.2-1.fc28 (FEDORA-2019-cb71f3b73e) Music player for GNOME -------------------------------------------------------------------------------- Update Information:
Update to 1.0.2-1 ---- Update to 1.0-1 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Martin Gansser martinkg@fedoraproject.org - 1.0.2-1 - Update to 1.0.2-1 * Tue Mar 19 2019 Martin Gansser martinkg@fedoraproject.org - 1.0-1 - Update to 1.0-1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691679 - lollypop-1.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691679 [ 2 ] Bug #1690166 - lollypop-1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1690166 [ 3 ] Bug #1677701 - Opening a file from the command line doesn't work https://bugzilla.redhat.com/show_bug.cgi?id=1677701 --------------------------------------------------------------------------------
================================================================================ netdata-1.13.0-2.fc28 (FEDORA-2019-9f72c9d271) Real-time performance monitoring -------------------------------------------------------------------------------- Update Information:
Fix bash and sh path on el6 ---- Update from upstream ---- Fix upstream archive name (source0) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1684719 - Review Request: netdata - Real-time performance monitoring https://bugzilla.redhat.com/show_bug.cgi?id=1684719 --------------------------------------------------------------------------------
================================================================================ perl-DBD-Pg-3.7.4-3.fc28 (FEDORA-2019-a563071644) A PostgreSQL interface for perl -------------------------------------------------------------------------------- Update Information:
Backport the upstream fix for failing test -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Jitka Plesnikova jplesnik@redhat.com - 3.7.4-3 - Fix failing test (bug #1679574) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1679574 - perl-DBD-Pg-3.7.4-5.fc30 FTBFS: t/02attribs.t test fails https://bugzilla.redhat.com/show_bug.cgi?id=1679574 --------------------------------------------------------------------------------
================================================================================ perl-Term-Encoding-0.03-1.fc28 (FEDORA-2019-c7f80f3c72) Detect encoding of the current terminal -------------------------------------------------------------------------------- Update Information:
This release updates a build script. We deliver it only to provide an up-to-date version string. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Petr Pisar ppisar@redhat.com - 0.03-1 - 0.03 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691684 - perl-Term-Encoding-0.03 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691684 --------------------------------------------------------------------------------
================================================================================ php-twig-1.38.3-2.fc28 (FEDORA-2019-7188d6a5fe) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information:
**Version 1.38.3** (2019-03-21) * fixed the spaceless filter so that it behaves like the spaceless tag * fixed BC break on Environment::resolveTemplate() * fixed the bundled Autoloader to also load namespaced classes * allowed Traversable objects to be used in the "with" tag * allowed Traversable objects to be used in the "with" argument of the "include" and "embed" tags -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Remi Collet remi@remirepo.net - 1.38.3-1 - update to 1.38.3 --------------------------------------------------------------------------------
================================================================================ php-twig2-2.7.3-1.fc28 (FEDORA-2019-c4d97b079d) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information:
**Version 2.7.3** (2019-03-21) * fixed the spaceless filter so that it behaves like the spaceless tag * fixed BC break on Environment::resolveTemplate() * allowed Traversable objects to be used in the "with" tag * allowed Traversable objects to be used in the "with" tag * allowed Traversable objects to be used in the "with" argument of the "include" and "embed" tags -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Remi Collet remi@remirepo.net - 2.7.3-1 - update to 2.7.3 --------------------------------------------------------------------------------
================================================================================ polkit-0.115-2.3.fc28 (FEDORA-2019-a7ea886082) An authorization framework -------------------------------------------------------------------------------- Update Information:
pkttyagent: PolkitAgentTextListener leaves echo tty disabled if SIGINT/SIGTERM. More info at https://gitlab.freedesktop.org/polkit/polkit/commit/bfb722bbe5a503 -------------------------------------------------------------------------------- ChangeLog:
* Thu Feb 14 2019 Jan Rybar jrybar@redhat.com - 0.115-2.3 - pkttyagent: PolkitAgentTextListener leaves echo tty disabled if SIGINT/SIGTERM --------------------------------------------------------------------------------
================================================================================ python-repomd-0.2.0-1.fc28 (FEDORA-2019-5db1de5a52) Library for reading dnf/yum repositories -------------------------------------------------------------------------------- Update Information:
- Latest upstream -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Carl George carl@george.computer - 0.2.0-1 - Latest upstream * Sat Feb 2 2019 Fedora Release Engineering releng@fedoraproject.org - 0.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691198 - python-repomd-0.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691198 --------------------------------------------------------------------------------
================================================================================ rubygem-jekyll-feed-0.12.0-1.fc28 (FEDORA-2019-9376b59c6e) Jekyll plugin to generate an Atom feed of your Jekyll posts -------------------------------------------------------------------------------- Update Information:
Update to version 0.12.0. Release notes: https://github.com/jekyll/jekyll- feed/releases/tag/v0.12.0 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Fabio Valentini decathorpe@gmail.com - 0.12.0-1 - Update to version 0.12.0. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691545 - rubygem-jekyll-feed-0.12.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691545 --------------------------------------------------------------------------------
================================================================================ rubygem-jekyll-watch-2.2.0-1.fc28 (FEDORA-2019-2815658b06) Rebuild your Jekyll site when a file changes -------------------------------------------------------------------------------- Update Information:
Update to version 2.2.0. Release notes: https://github.com/jekyll/jekyll- watch/releases/tag/v2.2.0 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Fabio Valentini decathorpe@gmail.com - 2.2.0-1 - Update to version 2.2.0. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691667 - rubygem-jekyll-watch-2.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691667 --------------------------------------------------------------------------------
================================================================================ s3fs-fuse-1.85-1.fc28 (FEDORA-2019-22631f68c7) FUSE-based file system backed by Amazon S3 -------------------------------------------------------------------------------- Update Information:
Fix cross building (https://github.com/s3fs-fuse/s3fs-fuse/pull/985) Update to 1.85 (Full changelog: https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.85) -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 12 2019 Julio Gonzalez Gil git@juliogonzalez.es - 1.85-1 - Fix cross building (https://github.com/s3fs-fuse/s3fs-fuse/pull/985) * 985-fix-cross-building.patch - Support Curl lower than 7.25 (CentOS6) (https://github.com/s3fs-fuse/s3fs-fuse/pull/987) * 987-support-curl-lt-7-25.patch - Update to 1.85 from https://github.com/s3fs-fuse/s3fs-fuse Full changelog: https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.85 * Sat Feb 2 2019 Fedora Release Engineering releng@fedoraproject.org - 1.84-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ tuned-2.11.0-1.fc28 (FEDORA-2019-750744d6a3) A dynamic adaptive system tuning daemon -------------------------------------------------------------------------------- Update Information:
This is new Tuned release. -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Jaroslav ��karvada jskarvad@redhat.com - 2.11.0-1 - new release - rebased tuned to latest upstream related: rhbz#1643654 - used dmidecode only on x86 architectures resolves: rhbz#1688371 - recommend: fixed to work without tuned daemon running resolves: rhbz#1687397 - powertop2tuned: added support for wakeup tuning (powertop-2.10) resolves: rhbz#1690354 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1690354 - RFE: please add support for wake status tuning into powertop2tuned https://bugzilla.redhat.com/show_bug.cgi?id=1690354 --------------------------------------------------------------------------------
================================================================================ wordpress-5.1.1-4.fc28 (FEDORA-2019-86961fcae7) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information:
Fix empty wp-tinymce.js.gz and missing wp-tinymce.js -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Remi Collet remi@remirepo.net - 5.1.1-4 - fix wp-tinymce.js is missing, wp-tinymce.js.gz is empty #1691524 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691524 - wp-tinymce.js.gz is empty https://bugzilla.redhat.com/show_bug.cgi?id=1691524 --------------------------------------------------------------------------------