The following Fedora 32 Security updates need testing: Age URL 20 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4c8458e373 containernetworking-plugins-0.9.1-1.fc32 17 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b61fc0e1b7 linux-firmware-20210208-117.fc32 16 https://bodhi.fedoraproject.org/updates/FEDORA-2021-16d1596c42 buildah-1.19.4-1.fc32 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e03b328043 webkit2gtk3-2.30.5-1.fc32 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-0595625865 bind-9.11.28-1.fc32 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-7c1bb32d13 python39-3.9.2-1.fc32 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b904045ad5 nagios-4.4.6-1.fc32 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-88d9d29680 python3-3.8.8-1.fc32 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9a0903469c ansible-2.9.18-1.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-5e9894a0c5 screen-4.8.0-5.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b98baa06c1 chromium-88.0.4324.182-1.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-954ebabcf7 isync-1.4.1-1.fc32 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-793da7882b openscad-2019.05-13.fc32 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-d8e6f014e5 mupdf-1.18.0-5.fc32 python-PyMuPDF-1.18.8-2.fc32 zathura-pdf-mupdf-0.3.6-6.fc32
The following Fedora 32 Critical Path updates have yet to be approved: Age URL 237 https://bodhi.fedoraproject.org/updates/FEDORA-2020-ebbe0f7b25 cpio-2.13-6.fc32 77 https://bodhi.fedoraproject.org/updates/FEDORA-2020-345d2fd2aa iproute-5.9.0-1.fc32 53 https://bodhi.fedoraproject.org/updates/FEDORA-2021-50c22ae8fd lua-socket-3.0-0.27.rc1.fc32 42 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b5281bf395 gnome-shell-3.36.8-1.fc32 mutter-3.36.8-1.fc32 22 https://bodhi.fedoraproject.org/updates/FEDORA-2021-f0efcc3af3 pciutils-3.7.0-3.fc32 17 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b61fc0e1b7 linux-firmware-20210208-117.fc32 13 https://bodhi.fedoraproject.org/updates/FEDORA-2021-fe00210717 libpcap-1.10.0-1.fc32 tcpdump-4.99.0-1.fc32 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e03b328043 webkit2gtk3-2.30.5-1.fc32 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-2df31e679c elfutils-0.183-1.fc32 10 https://bodhi.fedoraproject.org/updates/FEDORA-2021-61ef58a988 osinfo-db-20210215-1.fc32 9 https://bodhi.fedoraproject.org/updates/FEDORA-2021-046318b62d libusbx-1.0.24-2.fc32 9 https://bodhi.fedoraproject.org/updates/FEDORA-2021-03649421b2 pungi-4.2.8-1.fc32 8 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4605cffca5 xdg-desktop-portal-1.8.1-1.fc32 7 https://bodhi.fedoraproject.org/updates/FEDORA-2021-5a7113ce31 koji-1.24.0-1.fc32 7 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9dbd7b358a audit-3.0.1-2.fc32 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-a15939f099 pcre2-10.36-4.fc32 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-fe13a855ed dbus-broker-27-2.fc32 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-a20872d158 libxcrypt-4.4.18-1.fc32 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-88d9d29680 python3-3.8.8-1.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-0add7af1ca gtk3-3.24.26-1.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-84fe85a7ae thunderbird-78.8.0-1.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-449618a8a8 fwupd-1.5.7-1.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-ebd097aa46 nfs-utils-2.5.3-0.fc32 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-dcf7002718 libsndfile-1.0.31-3.fc32 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-fcc0494a63 nss-3.62.0-1.fc32
The following builds have been pushed to Fedora 32 updates-testing
389-ds-base-1.4.3.20-2.fc32 GAPDoc-1.6.4-5.fc32 blender-2.83.12-2.fc32 bottles-3.0.1.1-2.fc32 dogtag-pki-10.10.5-1.fc32 freeipa-4.9.2-4.fc32 giada-0.17.1-4.fc32.1 kernel-5.10.19-100.fc32 libss7-2.0.0-7.fc32 pki-core-10.10.5-1.fc32 prusa-slicer-2.2.0-8.fc32
Details about builds:
================================================================================ 389-ds-base-1.4.3.20-2.fc32 (FEDORA-2021-dc1a4934a5) 389 Directory Server (base) -------------------------------------------------------------------------------- Update Information:
- 389-ds fixes an information disclosure during unsuccessful LDAP BIND operation, CVE-2020-35518 - Dogtag PKI adopted to work with 389-ds with the fix - FreeIPA rebuilt to require new Dogtag and 389-ds versions -------------------------------------------------------------------------------- ChangeLog:
* Fri Feb 26 2021 Alexander Bokovoy abokovoy@redhat.com - 1.4.3.20-2 - Rebuild now that Dogtag is fixed to work with a fix to Issue 4609 * Fri Feb 12 2021 Mark Reynolds mreynolds@redhat.com - 1.4.3.20-1 - Bump version to 1.4.3.20 - Issue 4324 - Some architectures the cache line size file does not exist - Issue 4593 - RFE - Print help when nsSSLPersonalitySSL is not found (#4614) * Wed Feb 10 2021 Thierry Bordaz tbordaz@redhat.com - 1.4.3.19-1 - bump version to 1.4.3.19 - Issue 4609 - CVE - info disclosure when authenticating - Issue 4581 - A failed re-indexing leaves the database in broken state (#4582) - Issue 4579 - libasan detects heap-use-after-free in URP test (#4584) - Issue 4563 - Failure on s390x: 'Fails to split RDN "o=pki-tomcat-CA" into components' (#4573) - Issue 4526 - sync_repl: when completing an operation in the pending list, it can select the wrong operation (#4553) - Issue 4324 - Performance search rate: change entry cache monitor to recursive pthread mutex (#4569) - Issue 5442 - Search results are different between RHDS10 and RHDS11 - Issue 4548 - CLI - dsconf needs better root DN access control plugin validation - Issue 4513 - Fix schema test and lib389 task module (#4514) - Issue 4534 - libasan read buffer overflow in filtercmp (#4541) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1908653 - CVE-2020-35518 389-ds-base: information disclosure during the binding of a DN [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1908653 --------------------------------------------------------------------------------
================================================================================ GAPDoc-1.6.4-5.fc32 (FEDORA-2021-812a80fc89) GAP documentation tool -------------------------------------------------------------------------------- Update Information:
This update simply adds a dependency on amssym.tex. That dependency used to be satisfied transitively, but must now be explicit. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 25 2021 Fedora Release Engineering releng@fedoraproject.org - 1.6.4-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ blender-2.83.12-2.fc32 (FEDORA-2021-9ac3cd7381) 3D modeling, animation, rendering and post-production -------------------------------------------------------------------------------- Update Information:
Rebuild to fix openvdb ABI break -------------------------------------------------------------------------------- ChangeLog:
* Fri Feb 26 2021 Nicolas Chauvet kwizart@gmail.com - 1:2.83.12-2 - Rebuilt * Tue Feb 9 2021 Luya Tshimbalanga luya@fedoraproject.org - 1:2.83.12-1 - Update to 2.83.12 * Thu Jan 21 2021 Luya Tshimbalanga luya@fedoraproject.org - 1:2.83.10-1 - Update to 2.83.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1933279 - Blender breaks last update of openvdb-libs https://bugzilla.redhat.com/show_bug.cgi?id=1933279 --------------------------------------------------------------------------------
================================================================================ bottles-3.0.1.1-2.fc32 (FEDORA-2021-6b9beb9ee8) Easily manage Wine prefix in a new way -------------------------------------------------------------------------------- Update Information:
Update to 3.0.1.1 ---- Update to 3.0.1.1 -------------------------------------------------------------------------------- ChangeLog:
* Fri Feb 26 2021 Artem Polishchuk ego.cordatus@gmail.com - 3.0.1.1-2 - build: Add libhandy1 dep * Fri Feb 26 2021 Artem Polishchuk ego.cordatus@gmail.com - 3.0.1.1-1 - build(update): 3.0.1.1 * Mon Feb 22 2021 Artem Polishchuk ego.cordatus@gmail.com - 2.1.2-1 - build(update): 2.1.2 * Fri Feb 19 2021 Artem Polishchuk ego.cordatus@gmail.com - 2.1.1-1 - build(update): 2.1.1 --------------------------------------------------------------------------------
================================================================================ dogtag-pki-10.10.5-1.fc32 (FEDORA-2021-dc1a4934a5) Dogtag PKI Package -------------------------------------------------------------------------------- Update Information:
- 389-ds fixes an information disclosure during unsuccessful LDAP BIND operation, CVE-2020-35518 - Dogtag PKI adopted to work with 389-ds with the fix - FreeIPA rebuilt to require new Dogtag and 389-ds versions -------------------------------------------------------------------------------- ChangeLog:
* Thu Feb 25 2021 Dogtag PKI Team pki-devel@redhat.com - 10.10.5-1 - Rebase to upstream stable v10.10.5 release -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1908653 - CVE-2020-35518 389-ds-base: information disclosure during the binding of a DN [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1908653 --------------------------------------------------------------------------------
================================================================================ freeipa-4.9.2-4.fc32 (FEDORA-2021-dc1a4934a5) The Identity, Policy and Audit system -------------------------------------------------------------------------------- Update Information:
- 389-ds fixes an information disclosure during unsuccessful LDAP BIND operation, CVE-2020-35518 - Dogtag PKI adopted to work with 389-ds with the fix - FreeIPA rebuilt to require new Dogtag and 389-ds versions -------------------------------------------------------------------------------- ChangeLog:
* Fri Feb 26 2021 Alexander Bokovoy abokovoy@redhat.com - 4.9.2-4 - Rebuild against 389-ds and PKI to fix https://github.com/389ds/389-ds-base/issues/4609 * Tue Feb 23 2021 Alexander Bokovoy abokovoy@redhat.com - 4.9.2-3 - Only use python-platform on RHEL 8 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1908653 - CVE-2020-35518 389-ds-base: information disclosure during the binding of a DN [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1908653 --------------------------------------------------------------------------------
================================================================================ giada-0.17.1-4.fc32.1 (FEDORA-2021-7cb670d55f) Your hardcore loop machine -------------------------------------------------------------------------------- Update Information:
New upstream release 0.17.1; remove all VST functionality for legal reasons -------------------------------------------------------------------------------- ChangeLog:
* Fri Feb 26 2021 Benjamin A. Beasley code@musicinmybrain.net - 0.17.1-4.1 - Add Fedora 32 compatibility * Thu Feb 25 2021 Benjamin A. Beasley code@musicinmybrain.net - 0.17.1-4 - Remove VST 3 SDK and JUCE from source tarball for legal reasons; disable all VST support - Update License field to reflect the removed bundled dependencies - Remove stray debugging ���find��� commands * Tue Feb 23 2021 Benjamin A. Beasley code@musicinmybrain.net - 0.17.1-3 - Add link to upstream issue for format-security patch - Add commentary on forked bundled rtaudio, with a link to upstream discussion * Tue Feb 23 2021 Benjamin A. Beasley code@musicinmybrain.net - 0.17.1-2 - Disable VST3 on PPC64LE due to a non-obvious linker error * Mon Feb 22 2021 Benjamin A. Beasley code@musicinmybrain.net - 0.17.1-2 - New upstream release 0.17.1 - Switch to CMake build system - Add AppData and updated desktop file from https://github.com/monocasual/giada/pull/358 - Add virtual Provides, and update License field, for bundled dependencies - Update summary and description from upstream - Build Giada with tests, and run them at build time * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 0.17.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Nov 24 2020 Erich Eickmeyer erich@ericheickmeyer.com - 0.17.0-1 - New upstream release - Add CMake build system - VST3 support - Show descriptive plug-in names in Plug-in List Window - Resizable plug-in list - New persistence mechanism for Plug-ins state - Improved text truncation for small buttons and text boxes - Beautify Sample Editor window - Resizable plug-in list window - Show descriptive plug-in name in plug-in list - Update JUCE, version 6.0.4 - Update Catch2 to version 2.13.2 - Replace old filesystem functions in fs.h with std::filesystem - Add VST3 SDK as git submodule - Set minimum macOS version to 10.14 - Statically link the MSVC runtime library on Windows - Avoid crash on opening plug-in list with invalid plug-ins - Rewind sample channels in loop.once.bar mode on bar, if still playing (fix #403) - Modernize log::print() function to handle std::string arguments (PR #402) - Fix playStatus logic for ending sample channels in loop-once-bar mode (#404) - Fix shrinking beats that could glitch the output (#361) --------------------------------------------------------------------------------
================================================================================ kernel-5.10.19-100.fc32 (FEDORA-2021-cf0236f45f) The Linux kernel -------------------------------------------------------------------------------- Update Information:
The 5.10.19 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Fri Feb 26 2021 Justin M. Forbes jforbes@fedoraproject.org - 5.10.19-100 - Linux v5.10.19 * Thu Feb 25 2021 Justin M. Forbes jforbes@fedoraproject.org - Some i915 fixes for 5.10 (rhbz 1925346) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1925346 - Screen glitches after updating to Kernel 5.10.10 https://bugzilla.redhat.com/show_bug.cgi?id=1925346 --------------------------------------------------------------------------------
================================================================================ libss7-2.0.0-7.fc32 (FEDORA-2021-9bcf292a9d) SS7 protocol services to applications -------------------------------------------------------------------------------- Update Information:
Work around no -Werror=stringop-truncation on EPEL7 ---- Add source file signature verification; assorted minor packaging improvements -------------------------------------------------------------------------------- ChangeLog:
* Fri Feb 26 2021 Benjamin A. Beasley code@musicinmybrain.net - 2.0.0-7 - Work around no -Werror=stringop-truncation on EPEL7 * Tue Feb 23 2021 Benjamin A. Beasley code@musicinmybrain.net - 2.0.0-6 - Improve keyring generation instructions - Reflow description text - Whitespace changes according to personal preference - Add release summary files to documentation - Add %_hardened_build macro, which still matters on EPEL * Sun Feb 14 2021 Benjamin A. Beasley code@musicinmybrain.net - 2.0.0-5 - Make dependency from -devel subpackage on main package arch-specific - Use %setup macro instead of %setup0 - Remove obsolete %ldconfig_scriptlets, except for EPEL7 - Use make macros - Do not remove the buildroot in %install - Remove static libraries directly with find rather than calling rm - Remove unnecessary README from -devel, since it is installed with the main package - Correctly use the %license macro - Use tighter file globs; in particular, per the packaging guidelines, specify the current so-version so that a version bump in an update will not be missed so easily - Switch URLs from HTTP to HTTPS - Add source file signature verification - Allow build to continue past string operation truncation warnings - Remove obsolete commented-out manual symlink command * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 2.0.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering releng@fedoraproject.org - 2.0.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ pki-core-10.10.5-1.fc32 (FEDORA-2021-dc1a4934a5) Dogtag PKI Core Package -------------------------------------------------------------------------------- Update Information:
- 389-ds fixes an information disclosure during unsuccessful LDAP BIND operation, CVE-2020-35518 - Dogtag PKI adopted to work with 389-ds with the fix - FreeIPA rebuilt to require new Dogtag and 389-ds versions -------------------------------------------------------------------------------- ChangeLog:
* Thu Feb 25 2021 Alexander Scheel ascheel@redhat.com - 10.10.5-1 - Update to latest stable release 10.10.5 Resolves: rh-bz#1929940 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1908653 - CVE-2020-35518 389-ds-base: information disclosure during the binding of a DN [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1908653 --------------------------------------------------------------------------------
================================================================================ prusa-slicer-2.2.0-8.fc32 (FEDORA-2021-13c033a187) 3D printing slicer optimized for Prusa printers -------------------------------------------------------------------------------- Update Information:
Rebuild with openvdb 8.0. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jan 4 2021 Miro Hron��ok mhroncok@redhat.com - 2.2.0-8 - Rebuilt for openvdb 8.0 - Fixes: rhbz#1912499 * Fri Jan 1 2021 Richard Shaw hobbes1069@gmail.com - 2.2.0-7 - Rebuild for OpenEXR 2.5.3. * Wed Aug 26 2020 Jan Beran jaberan@redhat.com - 2.2.0-6 - Add fixes for the flatpak build: disable perltests by default when building flatpak don't remove Perl modules when building without perltests * Mon Aug 24 2020 Miro Hron��ok mhroncok@redhat.com - 2.2.0-5 - Rebuilt for openvdb 7.1 * Sat Aug 1 2020 Fedora Release Engineering releng@fedoraproject.org - 2.2.0-4 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering releng@fedoraproject.org - 2.2.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue Jun 2 2020 Miro Hron��ok mhroncok@redhat.com - 2.2.0-2 - Rebuilt and fix for Boost 1.73.0 (#1842011) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1933140 - prusa-slicer breaks openvdb upgrade on F32 https://bugzilla.redhat.com/show_bug.cgi?id=1933140 --------------------------------------------------------------------------------