The following Fedora 34 Security updates need testing: Age URL 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-1d77047c61 freeipa-4.9.6-4.fc34 libldb-2.3.2-1.fc34 samba-4.14.10-2.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c7fd9e9126 suricata-6.0.4-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-224df1788e puppet-7.12.1-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-d250fc2622 stargz-snapshotter-0.10.1-1.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-73c086ef46 mingw-speex-1.2.0-9.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-160caefa4a vim-8.2.3642-1.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-67c946a9f3 libdxfrw-1.0.1-1.fc34 librecad-2.2.0-0.11.rc2.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-eb2742b148 containerd-1.5.8-1.fc34 golang-github-containerd-ttrpc-1.1.0-1.fc34 moby-engine-20.10.11-1.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-2b3a2de94f xen-4.14.3-3.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-ad7496d38d seamonkey-2.53.10-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-39a23c1aa0 matrix-synapse-1.47.1-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-97bd631e0a wireshark-3.6.0-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-0294e8ca24 php-symfony4-4.4.35-1.fc34
The following Fedora 34 Critical Path updates have yet to be approved: Age URL 233 https://bodhi.fedoraproject.org/updates/FEDORA-2021-1300e131b6 ddpt-0.96-4.fc34 ledmon-0.95-4.fc34 libgpod-0.8.3-38.fc34 libzfcphbaapi-2.2.0-12.fc34 lsvpd-1.7.11-6.fc34 sg3_utils-1.46-1.fc34 udisks-1.0.5-18.fc34 15 https://bodhi.fedoraproject.org/updates/FEDORA-2021-53a7dfa185 gdb-11.1-5.fc34 12 https://bodhi.fedoraproject.org/updates/FEDORA-2021-d114176c57 cups-2.3.3op2-10.fc34 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-a7936bba21 pungi-4.3.2-2.fc34 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-1d77047c61 freeipa-4.9.6-4.fc34 libldb-2.3.2-1.fc34 samba-4.14.10-2.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-af31f7a256 firefox-94.0-2.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-35f2489f7b fwupd-1.7.2-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e152ce5f31 python3-docs-3.9.9-1.fc34 python3-typed_ast-1.4.3-4.fc34 python3.9-3.9.9-2.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-160caefa4a vim-8.2.3642-1.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-bdd1cfb355 mtools-4.0.36-1.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-2b3a2de94f xen-4.14.3-3.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-74d8aea64b qrencode-4.1.1-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b61e57daf7 elfutils-0.186-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-5c0deb66ef fedora-release-34-39
The following builds have been pushed to Fedora 34 updates-testing
ImageMagick-6.9.12.31-1.fc34 R-magick-2.7.3-2.fc34 WindowMaker-0.95.9-7.fc34 ansible-collection-containers-podman-1.8.3-1.fc34 autotrace-0.31.1-62.fc34 chafa-1.2.1-6.fc34 converseen-0.9.9.2-2.fc34 digikam-7.3.0-4.fc34 dmtx-utils-0.7.6-9.fc34.1 dolphin-emu-5.0.15445-1.fc34 dvdauthor-0.7.2-16.fc34 eom-1.26.0-1.fc34.1 kernel-5.15.5-100.fc34 kxstitch-2.1.1-6.fc34 obs-build-20211125-376.1.1.fc34 pfstools-2.1.0-17.fc34.1 php-kolab-net-ldap3-1.1.4-1.fc34 php-pecl-imagick-3.5.0-1.fc34.1 php-phpmailer6-6.5.3-1.fc34 psiconv-0.9.8-36.fc34 python-metakernel-0.28.1-1.fc34 q-7.11-44.fc34 radeontop-1.4-2.fc34 rss-glx-0.9.1.p-50.fc34 rubygem-rmagick-4.2.3-5.fc34 rust-curl-0.4.41-1.fc34 rust-curl-sys-0.4.51-1.fc34 rust-fs2-0.4.3-14.fc34 rust-inventory-0.1.11-1.fc34 rust-inventory-impl-0.1.11-1.fc34 skopeo-1.5.2-1.fc34 synfig-1.4.0-1.fc34.1 synfigstudio-1.4.0-3.fc34 vdr-scraper2vdr-1.0.11-14.20190128gitd9f6cb4.fc34.1 vdr-skinelchihd-0.5.0-7.fc34 vdr-skinnopacity-1.1.8-1.fc34.1 vdr-tvguide-1.3.5-1.fc34.1 vim-8.2.3642-2.fc34 vips-8.11.3-1.fc34.1
Details about builds:
================================================================================ ImageMagick-6.9.12.31-1.fc34 (FEDORA-2021-b58af96f33) An X application for displaying and manipulating images -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 23 2021 S��rgio Basto sergio@serjux.com - 1:6.9.12-31 - Update ImageMagick to 6.9.12-31 (#2025909) * Mon Nov 22 2021 S��rgio Basto sergio@serjux.com - 1:6.9.12-30 - Update ImageMagick to 6.9.12-30 (#2017126) * Sun Oct 31 2021 Fedora Release Monitoring release-monitoring@fedoraproject.org - 1:6.9.12-28 - Update to 6.9.12-28 (resolves #2017126) * Tue Oct 26 2021 Fedora Release Monitoring release-monitoring@fedoraproject.org - 1:6.9.12-27 - Update to 6.9.12-27 (#2017126) * Mon Oct 4 2021 Fedora Release Monitoring release-monitoring@fedoraproject.org - 1:6.9.12-25 - Update to 6.9.12-25 (#1869912) - New url address - Use pkgconfig for depending packages * Fri Aug 27 2021 V��t Ondruch vondruch@redhat.com - 1:6.9.11.27-8 - Fix segfaults on s390x with rubygem-acitvestorage test suite. Resolves: rhbz#1993193 * Sun Aug 22 2021 Richard Shaw hobbes1069@gmail.com - 1:6.9.11.27-7 - Rebuild for OpenEXR/Imath 3.1. * Tue Aug 10 2021 Richard Shaw hobbes1069@gmail.com - 1:6.9.11.27-6 - Rebuild for OpenEXR/Imath 3. * Wed Jul 21 2021 Fedora Release Engineering releng@fedoraproject.org - 1:6.9.11.27-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri May 21 2021 Jitka Plesnikova jplesnik@redhat.com - 1:6.9.11.27-4 - Perl 5.34 rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ R-magick-2.7.3-2.fc34 (FEDORA-2021-b58af96f33) Advanced Graphics and Image-Processing in R -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Wed Nov 3 2021 Mamoru TASAKA mtasaka@fedoraproject.org 2.7.3-2 - rebuld against new ImageMagick (no change to spec) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ WindowMaker-0.95.9-7.fc34 (FEDORA-2021-b58af96f33) A fast, feature rich Window Manager -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Sun Oct 17 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 0.95.9-7 - Rebuild against new ImageMagick * Thu Aug 5 2021 Jani Juhani Sinervo jani@sinervo.fi - 0.95.9-6 - Fix FTBFS in Rawhide and F35 * Wed Jul 21 2021 Fedora Release Engineering releng@fedoraproject.org - 0.95.9-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ ansible-collection-containers-podman-1.8.3-1.fc34 (FEDORA-2021-0407da2745) Podman Ansible collection for Podman containers -------------------------------------------------------------------------------- Update Information:
Bump to 1.8.3 -------------------------------------------------------------------------------- ChangeLog:
* Thu Nov 25 2021 Sagi Shnaidman sshnaidm@redhat.com - 1.8.3-1 - Bump to 1.8.3 --------------------------------------------------------------------------------
================================================================================ autotrace-0.31.1-62.fc34 (FEDORA-2021-b58af96f33) Utility for converting bitmaps to vector graphics -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Oct 15 2021 Gwyn Ciesla gwync@protonmail.com - 0.31.1-62 - ImageMagick rebuild. * Wed Jul 21 2021 Fedora Release Engineering releng@fedoraproject.org - 0.31.1-61 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ chafa-1.2.1-6.fc34 (FEDORA-2021-b58af96f33) Image-to-text converter for terminal -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Wed Nov 3 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 1.2.1-6 - rebuild for new ImageMagick * Wed Jul 21 2021 Fedora Release Engineering releng@fedoraproject.org - 1.2.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ converseen-0.9.9.2-2.fc34 (FEDORA-2021-b58af96f33) A batch image conversion tool written in C++ with Qt5 and Magick++ -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Sun Oct 17 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 0.9.9.2-2 - Rebuild against new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ digikam-7.3.0-4.fc34 (FEDORA-2021-b58af96f33) A digital camera accessing & photo management application -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 5 2021 Rex Dieter rdieter@fedoraproject.org - 7.3.0-4 - rebuild (ImageMagick) * Thu Nov 4 2021 Rex Dieter rdieter@fedoraproject.org - 7.3.0-3 - backport exiv2-related upstream fixes (kde#439785, rh#2019835) * Fri Oct 15 2021 Rex Dieter rdieter@fedoraproject.org - 7.3.0-2 - rebuild (ImageMagick) * Tue Jul 27 2021 Rex Dieter rdieter@fedoraproject.org - 7.3.0-1 - 7.3.0 * Wed Jul 21 2021 Fedora Release Engineering releng@fedoraproject.org - 7.2.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Wed Jun 30 2021 Rex Dieter rdieter@fedoraproject.org - 7.2.0-4 - -libs: Recommends %name (instead of Requires) (#1973495) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ dmtx-utils-0.7.6-9.fc34.1 (FEDORA-2021-b58af96f33) Tools for working with Data Matrix 2D bar-codes -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Wed Nov 3 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 0.7.6-9.1 - rebuild for new ImageMagick * Wed Jul 21 2021 Fedora Release Engineering releng@fedoraproject.org - 0.7.6-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ dolphin-emu-5.0.15445-1.fc34 (FEDORA-2021-3a5084469b) GameCube / Wii / Triforce Emulator -------------------------------------------------------------------------------- Update Information:
Mostly minor bugfixes, see upstream notes for more details: https://dolphin- emu.org/blog/2021/11/13/dolphin-progress-report-september-and-october-2021/ -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 23 2021 Jeremy Newton <alexjnewt at hotmail dot com> - 5.0.15445-1 - Update to 5.0-15445 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2022944 - dolphin-emu-5.0-15445 is available https://bugzilla.redhat.com/show_bug.cgi?id=2022944 --------------------------------------------------------------------------------
================================================================================ dvdauthor-0.7.2-16.fc34 (FEDORA-2021-b58af96f33) Command line DVD authoring tool -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Sun Oct 17 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 0.7.2-16 - Rebuild against new ImageMagick * Wed Jul 21 2021 Fedora Release Engineering releng@fedoraproject.org - 0.7.2-15 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ eom-1.26.0-1.fc34.1 (FEDORA-2021-b58af96f33) Eye of MATE image viewer -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 1.26.0-1.1 - rebuild for new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ kernel-5.15.5-100.fc34 (FEDORA-2021-c0dc424b7d) The Linux kernel -------------------------------------------------------------------------------- Update Information:
The 5.15.5 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Thu Nov 25 2021 Justin M. Forbes jforbes@fedoraproject.org [5.15-0] - Revert "fuse: fix page stealing" (Justin M. Forbes) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2025645 - CVE-2021-4001 kernel: race condition when the EBPF map is frozen https://bugzilla.redhat.com/show_bug.cgi?id=2025645 --------------------------------------------------------------------------------
================================================================================ kxstitch-2.1.1-6.fc34 (FEDORA-2021-b58af96f33) Program to create cross stitch patterns -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Wed Nov 3 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 2.1.1-6 - rebuild for new ImageMagick * Thu Jul 22 2021 Fedora Release Engineering releng@fedoraproject.org - 2.1.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ obs-build-20211125-376.1.1.fc34 (FEDORA-2021-487b6d04b1) A generic package build script -------------------------------------------------------------------------------- Update Information:
New upstream release 20211125 -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Dan ��erm��k dan.cermak@cgc-instruments.com - 20211125-376.1.1 - New upstream release 20211125, fixes rhbz#2026807 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2026807 - obs-build-20211125 is available https://bugzilla.redhat.com/show_bug.cgi?id=2026807 --------------------------------------------------------------------------------
================================================================================ pfstools-2.1.0-17.fc34.1 (FEDORA-2021-b58af96f33) Programs for handling high-dynamic range images -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 2.1.0-17.1 - rebuild for new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ php-kolab-net-ldap3-1.1.4-1.fc34 (FEDORA-2021-2a45f06dc3) Advanced functionality for accessing LDAP directories -------------------------------------------------------------------------------- Update Information:
**Version 1.1.4** * Fix an undefined index warning * Fix PHP 8.1 compatibility where LDAP connection is not a resource, but an object * Fix PHP 8.1 deprecation warnings -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Remi Collet remi@remirepo.net - 1.1.4-1 - update to 1.1.4 --------------------------------------------------------------------------------
================================================================================ php-pecl-imagick-3.5.0-1.fc34.1 (FEDORA-2021-b58af96f33) Provides a wrapper to the ImageMagick library -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 3.5.0-1.1 - rebuild for new ImageMagick * Fri Oct 15 2021 Remi Collet remi@remirepo.net - fix #457 failed test with ImageMagick 6.9.12-23 using patch from https://github.com/Imagick/imagick/pull/458 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ php-phpmailer6-6.5.3-1.fc34 (FEDORA-2021-cf23349ced) Full-featured email creation and transfer class for PHP -------------------------------------------------------------------------------- Update Information:
**Version 6.5.3** (November 25th, 2021) * Wrong commit tagged for the 6.5.2 release! * Version file updated ---- **Version 6.5.2** (November 25th, 2021) * Enable official support for PHP 8.1 * Enable experimental support for PHP 8.2 * Fix for PHP 5.6 * Fix for incorrect options for punyencoding IDNs -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Remi Collet remi@remirepo.net - 6.5.3-1 - update to 6.5.3 --------------------------------------------------------------------------------
================================================================================ psiconv-0.9.8-36.fc34 (FEDORA-2021-b58af96f33) A conversion utility for Psion files -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Sun Oct 17 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 0.9.8-36 - Rebuild against new ImageMagick * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 0.9.8-35 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ python-metakernel-0.28.1-1.fc34 (FEDORA-2021-2c922fdcab) Metakernel for Jupyter -------------------------------------------------------------------------------- Update Information:
metakernel 0.28.1 -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mattias Ellert mattias.ellert@physics.uu.se - 0.28.1-1 - Update to version 0.28.1 * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 0.27.5-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint python-maint@redhat.com - 0.27.5-4 - Rebuilt for Python 3.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2026803 - python-metakernel-0.28.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2026803 --------------------------------------------------------------------------------
================================================================================ q-7.11-44.fc34 (FEDORA-2021-b58af96f33) Equational programming language -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Sun Oct 17 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 7.11-44 - Rebuild against new ImageMagick * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 7.11-43 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ radeontop-1.4-2.fc34 (FEDORA-2021-beb1ad9004) AMD Radeon video cards monitoring utility -------------------------------------------------------------------------------- Update Information:
Update to 1.4 -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Dominik Mierzejewski rpm@greysector.net - 1.4-2 - stop rebuilding binaries at make install * Thu Nov 25 2021 Fedora Release Monitoring release-monitoring@fedoraproject.org - 1.4-1 - Update to 1.4 (#2026535) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2026535 - radeontop-1.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2026535 --------------------------------------------------------------------------------
================================================================================ rss-glx-0.9.1.p-50.fc34 (FEDORA-2021-b58af96f33) Really Slick Screensavers -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Sun Oct 17 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 0.9.1.p-50 - Rebuild against new ImageMagick * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 0.9.1.p-49 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ rubygem-rmagick-4.2.3-5.fc34 (FEDORA-2021-b58af96f33) Ruby binding to ImageMagick -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Thu Nov 25 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 4.2.3-5 - Use rich boolean dependency * Mon Nov 22 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 4.2.3-4 - Rebuild against new ImageMagick * Tue Nov 2 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 4.2.3-3 - Rebuild against new ImageMagick * Sat Oct 16 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 4.2.3-2 - Rebuild against new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ rust-curl-0.4.41-1.fc34 (FEDORA-2021-b932e1f786) Rust bindings to libcurl for making HTTP requests -------------------------------------------------------------------------------- Update Information:
- Update the curl crate to version 0.4.41. - Update the curl-sys crate to version 0.4.51+curl-7.80.0. -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Fabio Valentini decathorpe@gmail.com 0.4.41-1 - Update to version 0.4.41 --------------------------------------------------------------------------------
================================================================================ rust-curl-sys-0.4.51-1.fc34 (FEDORA-2021-b932e1f786) Native bindings to the libcurl library -------------------------------------------------------------------------------- Update Information:
- Update the curl crate to version 0.4.41. - Update the curl-sys crate to version 0.4.51+curl-7.80.0. -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Fabio Valentini decathorpe@gmail.com 0.4.51-1 - Update to version 0.4.51+curl-7.80.0; Fixes RHBZ#2025204 --------------------------------------------------------------------------------
================================================================================ rust-fs2-0.4.3-14.fc34 (FEDORA-2021-c83475b7d6) Cross-platform file locks and file duplication -------------------------------------------------------------------------------- Update Information:
Skip a flaky test to reduce the likelihood of build failures, especially in koschei, which only produce noise. -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Fabio Valentini decathorpe@gmail.com - 0.4.3-14 - Skip a flaky test to reduce likelihood of build failures. * Tue Jul 27 2021 Fedora Release Engineering releng@fedoraproject.org - 0.4.3-13 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ rust-inventory-0.1.11-1.fc34 (FEDORA-2021-3db7a82b8b) Typed distributed plugin registration -------------------------------------------------------------------------------- Update Information:
Update the inventory and inventory-impl crates to version 0.1.11. -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Fabio Valentini decathorpe@gmail.com 0.1.11-1 - Update to version 0.1.11 * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 0.1.10-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ rust-inventory-impl-0.1.11-1.fc34 (FEDORA-2021-3db7a82b8b) Implementation of macros for the inventory crate -------------------------------------------------------------------------------- Update Information:
Update the inventory and inventory-impl crates to version 0.1.11. -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Fabio Valentini decathorpe@gmail.com 0.1.11-1 - Update to version 0.1.11; Fixes RHBZ#2021706 * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 0.1.10-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ skopeo-1.5.2-1.fc34 (FEDORA-2021-aacef7fa15) Inspect container images and repositories on registries -------------------------------------------------------------------------------- Update Information:
Includes a fix for CVE-2021-41190 / GHSA-77vh-xpmg-72qh -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 RH Container Bot rhcontainerbot@fedoraproject.org - 1:1.5.2-1 - autobuilt v1.5.2 --------------------------------------------------------------------------------
================================================================================ synfig-1.4.0-1.fc34.1 (FEDORA-2021-b58af96f33) Vector-based 2D animation rendering backend -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 1.4.0-1.1 - Rebuild for new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ synfigstudio-1.4.0-3.fc34 (FEDORA-2021-b58af96f33) Vector-based 2D animation studio -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Oct 15 2021 Gwyn Ciesla gwync@protonmail.com - 1.4.0-3 - ImageMagick rebuild * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 1.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ vdr-scraper2vdr-1.0.11-14.20190128gitd9f6cb4.fc34.1 (FEDORA-2021-b58af96f33) A client plugin which provides scraped metadata from EPGD to other plugins -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 1.0.11-14.20190128gitd9f6cb4.1 - rebuild for new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ vdr-skinelchihd-0.5.0-7.fc34 (FEDORA-2021-b58af96f33) A Elchi based skin with True Color support for the Video Disc Recorder -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Sat Oct 16 2021 Martin Gansser martinkg@fedoraproject.org - 0.5.0-7 - Rebuilt due FTI in rawhide * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 0.5.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Wed Apr 28 2021 Martin Gansser martinkg@fedoraproject.org - 0.5.0-5 - Rebuilt for new VDR API version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ vdr-skinnopacity-1.1.8-1.fc34.1 (FEDORA-2021-b58af96f33) A highly customizable native true color skin for the Video Disc Recorder -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 1.1.8-1.1 - rebuild for new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ vdr-tvguide-1.3.5-1.fc34.1 (FEDORA-2021-b58af96f33) TvGuide is a highly customizable 2D EPG viewer plugin -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 1.3.5-1.1 - rebuild for new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------
================================================================================ vim-8.2.3642-2.fc34 (FEDORA-2021-da451c47e1) The VIM editor -------------------------------------------------------------------------------- Update Information:
2026651 - defaults.vim changes create conflicts between vim-minimal and vim- common -------------------------------------------------------------------------------- ChangeLog:
* Thu Nov 25 2021 Zdenek Dohnal zdohnal@redhat.com - 2:8.2.3642-2 - 2026651 - defaults.vim changes create conflicts between vim-minimal and vim-common * Mon Nov 22 2021 Zdenek Dohnal zdohnal@redhat.com - 2:8.2.3642-1 - patchlevel 3642 * Mon Nov 8 2021 Zdenek Dohnal zdohnal@redhat.com - 2:8.2.3582-1 - patchlevel 3582 * Mon Nov 1 2021 Zdenek Dohnal zdohnal@redhat.com - 2:8.2.3568-1 - patchlevel 3568 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2026651 - defaults.vim changes create conflicts between vim-minimal and vim-common https://bugzilla.redhat.com/show_bug.cgi?id=2026651 --------------------------------------------------------------------------------
================================================================================ vips-8.11.3-1.fc34.1 (FEDORA-2021-b58af96f33) C/C++ library for processing large images -------------------------------------------------------------------------------- Update Information:
ImageMagick is updated 6.9.12-31 , soname bump , many security fixes -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 26 2021 Mamoru TASAKA mtasaka@fedoraproject.org - 8.11.3-1.1 - rebuild for new ImageMagick -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1901226 - CVE-2020-25664 ImageMagick: heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1901226 [ 2 ] Bug #2025909 - ImageMagick-6.9.12-31 is available https://bugzilla.redhat.com/show_bug.cgi?id=2025909 --------------------------------------------------------------------------------