The following Fedora 29 Security updates need testing: Age URL 40 https://bodhi.fedoraproject.org/updates/FEDORA-2019-49f80a78bc mingw-sqlite-3.26.0.0-1.fc29 21 https://bodhi.fedoraproject.org/updates/FEDORA-2019-fa5843e0e1 asterisk-16.2.1-1.fc29 19 https://bodhi.fedoraproject.org/updates/FEDORA-2019-07e8e806e0 golang-googlecode-net-0-0.49.20190302git16b79f2.fc29 15 https://bodhi.fedoraproject.org/updates/FEDORA-2019-4d83e78ad8 libu2f-host-1.1.8-1.fc29 15 https://bodhi.fedoraproject.org/updates/FEDORA-2019-f781d5c4c6 ntp-4.2.8p13-1.fc29 8 https://bodhi.fedoraproject.org/updates/FEDORA-2019-64b384de9b openwsman-2.6.5-9.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-023ea18e20 podofo-0.9.6-6.fc29 mingw-podofo-0.9.6-8.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c84f291592 WALinuxAgent-2.2.38-1.fc29 5 https://bodhi.fedoraproject.org/updates/FEDORA-2019-f99619e34d mxml-3.0-1.fc29 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bff1cbaba3 edk2-20190308stable-1.fc29 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-5776dfe300 putty-0.71-1.fc29 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9993d32c48 pdns-4.1.7-1.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3cbce64a64 svgsalamander-1.1.2-1.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6e1938a3c5 python35-3.5.7-1.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-7528388823 chicken-5.0.0-2.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6b02154aa0 python34-3.4.10-1.fc29 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-35589cfcb5 drupal7-7.65-1.fc29 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-1d9be4b853 drupal8-8.6.13-1.fc29 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-0233ec0ff3 libarchive-3.3.3-6.fc29 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-243442e600 python3-3.7.2-5.fc29
The following Fedora 29 Critical Path updates have yet to be approved: Age URL 16 https://bodhi.fedoraproject.org/updates/FEDORA-2019-4d2303dc16 pungi-4.1.34-1.fc29 11 https://bodhi.fedoraproject.org/updates/FEDORA-2019-940d3922ce koji-1.17.0-5.fc29 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-5329292fc2 fedfind-4.2.2-1.fc29 python-productmd-1.20-1.fc29 8 https://bodhi.fedoraproject.org/updates/FEDORA-2019-64b384de9b openwsman-2.6.5-9.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-96c964d319 sddm-0.18.0-4.fc29 4 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ebfd1fe19b uboot-tools-2018.09-3.fc29 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bff1cbaba3 edk2-20190308stable-1.fc29 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-7c323cc0a7 lxpanel-0.10.0-2.D20190301gitb9ad6f2a.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-32ee5fb506 python-productmd-1.21-1.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-f4b2308023 iproute-5.0.0-2.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-350fdd6efc llvm-7.0.1-4.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d6d9903b88 kernel-tools-5.0.3-200.fc29 kernel-headers-5.0.3-200.fc29 kernel-5.0.3-200.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-65327463be psmisc-23.1-4.1.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-5e21f19d19 mesa-18.3.5-1.fc29 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ec5e8e23ba osinfo-db-20190319-1.fc29 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a6b95f631a python-blivet-3.1.2-4.fc29 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-243442e600 python3-3.7.2-5.fc29 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c3ff0f7530 openssh-7.9p1-5.fc29 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-0233ec0ff3 libarchive-3.3.3-6.fc29
The following builds have been pushed to Fedora 29 updates-testing
R-assertthat-0.2.1-1.fc29 R-openssl-1.3-1.fc29 R-polynom-1.4.0-1.fc29 buildah-1.7-3.git873f001.fc29 cdargs-1.35-21.fc29 chromium-73.0.3683.75-2.fc29 cockpit-190-1.fc29 console-login-helper-messages-0.16-2.fc29 firefox-66.0-9.fc29 fts-3.8.4-2.fc29 ghostscript-9.26-4.fc29 git-time-metric-1.3.5-2.fc29 gpxsee-7.5-1.fc29 gsi-openssh-7.9p1-7.fc29 js-jsroot-5.6.4-1.fc29 klavaro-3.05-3.fc29 libreoffice-6.1.5.2-3.fc29 lollypop-1.0.2-1.fc29 moarvm-0.2019.03-1.fc29 netdata-1.13.0-2.fc29 nqp-0.0.2019.03-1.fc29 perl-DBD-Pg-3.7.4-5.fc29 perl-Term-Encoding-0.03-1.fc29 php-twig-1.38.3-2.fc29 php-twig2-2.7.3-1.fc29 polkit-0.115-4.4.fc29 pspp-1.2.0-1.fc29 python-repomd-0.2.0-1.fc29 rakudo-0.2019.03-1.fc29 rakudo-Readline-0.1.5-1.fc29 rakudo-zef-0.7.1-1.fc29 resultsdb-2.2.0-1.fc29 rubygem-jekyll-feed-0.12.0-1.fc29 rubygem-jekyll-watch-2.2.0-1.fc29 s3fs-fuse-1.85-1.fc29 tuned-2.11.0-1.fc29 ubridge-0.9.14-5.fc29 wordpress-5.1.1-4.fc29 zorba-3.0.0-44.20140621git152f8964c.fc29
Details about builds:
================================================================================ R-assertthat-0.2.1-1.fc29 (FEDORA-2019-fa1ae53aff) Easy Pre and Post Assertions -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 0.2.1-1 - Update to latest version * Thu Jan 31 2019 Fedora Release Engineering releng@fedoraproject.org - 0.2.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691491 - R-assertthat-0.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691491 --------------------------------------------------------------------------------
================================================================================ R-openssl-1.3-1.fc29 (FEDORA-2019-e469641426) Toolkit for Encryption, Signatures and Certificates Based on OpenSSL -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 1.3-1 - Update to latest version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691835 - R-openssl-1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691835 --------------------------------------------------------------------------------
================================================================================ R-polynom-1.4.0-1.fc29 (FEDORA-2019-aa395e4417) A Class for Univariate Polynomial Manipulations -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 1.4.0-1 - Update to latest version * Thu Jan 31 2019 Fedora Release Engineering releng@fedoraproject.org - 1.3.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691766 - R-polynom-1.4-0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691766 --------------------------------------------------------------------------------
================================================================================ buildah-1.7-3.git873f001.fc29 (FEDORA-2019-ebcfde4245) A command line tool used for creating OCI Images -------------------------------------------------------------------------------- Update Information:
Re-enable SELinux separation on containers. -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Dan Walsh dwalsh@redhat.com - 1.7-3.git873f0014 - Complile with SELinux enabled --------------------------------------------------------------------------------
================================================================================ cdargs-1.35-21.fc29 (FEDORA-2019-4b22c30c72) The shell cd with bookmarks and browser -------------------------------------------------------------------------------- Update Information:
Remove emacs subpackage to conform with Emacs packaging guidelines (#1234562) -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Robert-Andr�� Mauchin zebob.m@gmail.com - 1.35-21 - Remove emacs subpackage to conform with Emacs packaging guidelines (#1234562) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1234562 - Package should not ship a separate emacs sub-package https://bugzilla.redhat.com/show_bug.cgi?id=1234562 --------------------------------------------------------------------------------
================================================================================ chromium-73.0.3683.75-2.fc29 (FEDORA-2019-561eae4626) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information:
Update to 73.0.3683.75. Fixes large bucket of CVEs. CVE-2019-5754 CVE-2019-5782 CVE-2019-5755 CVE-2019-5756 CVE-2019-5757 CVE-2019-5758 CVE-2019-5759 CVE-2019-5760 CVE-2019-5761 CVE-2019-5762 CVE-2019-5763 CVE-2019-5764 CVE-2019-5765 CVE-2019-5766 CVE-2019-5767 CVE-2019-5768 CVE-2019-5769 CVE-2019-5770 CVE-2019-5771 CVE-2019-5772 CVE-2019-5773 CVE-2019-5774 CVE-2019-5775 CVE-2019-5776 CVE-2019-5777 CVE-2019-5778 CVE-2019-5779 CVE-2019-5780 CVE-2019-5781 CVE-2019-5784 CVE-2019-5786 CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796 CVE-2019-5797 CVE-2019-5798 CVE-2019-5799 CVE-2019-5800 CVE-2019-5802 CVE-2019-5803 -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 19 2019 Tom Callaway spot@fedoraproject.org - 73.0.3683.75-2 - do not include pyproto/protoc files in package * Tue Mar 12 2019 Tom Callaway spot@fedoraproject.org - 73.0.3683.75-1 - update to 73.0.3683.75 * Sat Mar 9 2019 Tom Callaway spot@fedoraproject.org - 72.0.3626.121-1 - update to 72.0.3626.121 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1688206 - CVE-2019-5804 chromium-browser: Command line command injection on Windows https://bugzilla.redhat.com/show_bug.cgi?id=1688206 [ 2 ] Bug #1688205 - CVE-2019-5803 chromium-browser: CSP bypass with Javascript URLs' https://bugzilla.redhat.com/show_bug.cgi?id=1688205 [ 3 ] Bug #1688204 - CVE-2019-5802 chromium-browser: Security UI spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1688204 [ 4 ] Bug #1688203 - CVE-2019-5801 chromium-browser: Incorrect Omnibox display on iOS https://bugzilla.redhat.com/show_bug.cgi?id=1688203 [ 5 ] Bug #1688202 - CVE-2019-5800 chromium-browser: CSP bypass with blob URL https://bugzilla.redhat.com/show_bug.cgi?id=1688202 [ 6 ] Bug #1688201 - CVE-2019-5799 chromium-browser: CSP bypass with blob URL https://bugzilla.redhat.com/show_bug.cgi?id=1688201 [ 7 ] Bug #1688200 - CVE-2019-5798 chromium-browser: Out of bounds read in Skia https://bugzilla.redhat.com/show_bug.cgi?id=1688200 [ 8 ] Bug #1688199 - CVE-2019-5797 chromium-browser: Race condition in DOMStorage https://bugzilla.redhat.com/show_bug.cgi?id=1688199 [ 9 ] Bug #1688198 - CVE-2019-5796 chromium-browser: Race condition in Extensions https://bugzilla.redhat.com/show_bug.cgi?id=1688198 [ 10 ] Bug #1688197 - CVE-2019-5795 chromium-browser: Integer overflow in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1688197 [ 11 ] Bug #1688196 - CVE-2019-5794 chromium-browser: Security UI spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1688196 [ 12 ] Bug #1688195 - CVE-2019-5793 chromium-browser: Excessive permissions for private API in Extensions https://bugzilla.redhat.com/show_bug.cgi?id=1688195 [ 13 ] Bug #1688194 - CVE-2019-5792 chromium-browser: Integer overflow in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1688194 [ 14 ] Bug #1688193 - CVE-2019-5791 chromium-browser: Type confusion in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1688193 [ 15 ] Bug #1688192 - CVE-2019-5790 chromium-browser: Heap buffer overflow in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1688192 [ 16 ] Bug #1688191 - CVE-2019-5789 chromium-browser: Use after free in WebMIDI https://bugzilla.redhat.com/show_bug.cgi?id=1688191 [ 17 ] Bug #1688190 - CVE-2019-5788 chromium-browser: Use after free in FileAPI https://bugzilla.redhat.com/show_bug.cgi?id=1688190 [ 18 ] Bug #1688189 - CVE-2019-5787 chromium-browser: Use after free in Canvas https://bugzilla.redhat.com/show_bug.cgi?id=1688189 [ 19 ] Bug #1685162 - CVE-2019-5786 chromium-browser: Use-after-free in FileReader https://bugzilla.redhat.com/show_bug.cgi?id=1685162 [ 20 ] Bug #1676527 - CVE-2019-5784 chromium-browser: Inappropriate implementation in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1676527 [ 21 ] Bug #1670764 - CVE-2019-5780 chromium-browser: Insufficient policy enforcement https://bugzilla.redhat.com/show_bug.cgi?id=1670764 [ 22 ] Bug #1670763 - CVE-2019-5779 chromium-browser: Insufficient policy enforcement in ServiceWorker https://bugzilla.redhat.com/show_bug.cgi?id=1670763 [ 23 ] Bug #1670762 - CVE-2019-5778 chromium-browser: Insufficient policy enforcement in Extensions https://bugzilla.redhat.com/show_bug.cgi?id=1670762 [ 24 ] Bug #1670761 - CVE-2019-5777 chromium-browser: Insufficient policy enforcement in Omnibox https://bugzilla.redhat.com/show_bug.cgi?id=1670761 [ 25 ] Bug #1670760 - CVE-2019-5776 chromium-browser: Insufficient policy enforcement in Omnibox https://bugzilla.redhat.com/show_bug.cgi?id=1670760 [ 26 ] Bug #1670759 - CVE-2019-5775 chromium-browser: Insufficient policy enforcement in Omnibox https://bugzilla.redhat.com/show_bug.cgi?id=1670759 [ 27 ] Bug #1670758 - CVE-2019-5774 chromium-browser: Insufficient validation of untrusted input in SafeBrowsing https://bugzilla.redhat.com/show_bug.cgi?id=1670758 [ 28 ] Bug #1670757 - CVE-2019-5773 chromium-browser: Insufficient data validation in IndexedDB https://bugzilla.redhat.com/show_bug.cgi?id=1670757 [ 29 ] Bug #1670756 - CVE-2019-5772 chromium-browser: Use after free in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1670756 [ 30 ] Bug #1670755 - CVE-2019-5771 chromium-browser: Heap buffer overflow in SwiftShader https://bugzilla.redhat.com/show_bug.cgi?id=1670755 [ 31 ] Bug #1670754 - CVE-2019-5770 chromium-browser: Heap buffer overflow in WebGL https://bugzilla.redhat.com/show_bug.cgi?id=1670754 [ 32 ] Bug #1670753 - CVE-2019-5769 chromium-browser: Insufficient validation of untrusted input in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1670753 [ 33 ] Bug #1670752 - CVE-2019-5768 chromium-browser: Insufficient policy enforcement in DevTools https://bugzilla.redhat.com/show_bug.cgi?id=1670752 [ 34 ] Bug #1670751 - CVE-2019-5767 chromium-browser: Incorrect security UI in WebAPKs https://bugzilla.redhat.com/show_bug.cgi?id=1670751 [ 35 ] Bug #1670750 - CVE-2019-5766 chromium-browser: Insufficient policy enforcement in Canvas https://bugzilla.redhat.com/show_bug.cgi?id=1670750 [ 36 ] Bug #1670749 - CVE-2019-5765 chromium-browser: Insufficient policy enforcement in the browser https://bugzilla.redhat.com/show_bug.cgi?id=1670749 [ 37 ] Bug #1670748 - CVE-2019-5764 chromium-browser: Use after free in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1670748 [ 38 ] Bug #1670747 - CVE-2019-5763 chromium-browser: Insufficient validation of untrusted input in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1670747 [ 39 ] Bug #1670746 - CVE-2019-5762 chromium-browser: Use after free in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1670746 [ 40 ] Bug #1670745 - CVE-2019-5761 chromium-browser: Use after free in SwiftShader https://bugzilla.redhat.com/show_bug.cgi?id=1670745 [ 41 ] Bug #1670744 - CVE-2019-5760 chromium-browser: Use after free in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1670744 [ 42 ] Bug #1670743 - CVE-2019-5759 chromium-browser: Use after free in HTML select elements https://bugzilla.redhat.com/show_bug.cgi?id=1670743 [ 43 ] Bug #1670742 - CVE-2019-5758 chromium-browser: Use after free in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1670742 [ 44 ] Bug #1670741 - CVE-2019-5757 chromium-browser: Type Confusion in SVG https://bugzilla.redhat.com/show_bug.cgi?id=1670741 [ 45 ] Bug #1670740 - CVE-2019-5756 chromium-browser: Use after free in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1670740 [ 46 ] Bug #1670739 - CVE-2019-5755 chromium-browser: Inappropriate implementation in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1670739 [ 47 ] Bug #1670738 - CVE-2019-5782 chromium-browser: Inappropriate implementation in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1670738 [ 48 ] Bug #1670737 - CVE-2019-5754 chromium-browser: Inappropriate implementation in QUIC Networking https://bugzilla.redhat.com/show_bug.cgi?id=1670737 --------------------------------------------------------------------------------
================================================================================ cockpit-190-1.fc29 (FEDORA-2019-daba1fe7d7) Web Console for Linux servers -------------------------------------------------------------------------------- Update Information:
- Logs: Filter log entries by service - Machines: Support for Pausing/Resuming VMs - Machines: Make Autostart property of a Virtual Network configurable - Machines: Support for creating VM with option to boot from PXE - Accessibility improvements -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Katerina Koukiou kkoukiou@redhat.com - 190-1 - Logs: Filter log entries by service - Machines: Support for Pausing/Resuming VMs - Machines: Make Autostart property of a Virtual Network configurable - Machines: Support for creating VM with option to boot from PXE - Accessibility improvements --------------------------------------------------------------------------------
================================================================================ console-login-helper-messages-0.16-2.fc29 (FEDORA-2019-f96dcbfe3a) Combines motd, issue, profile features to show system information to the user before/on login -------------------------------------------------------------------------------- Update Information:
Fix AVC denial when reading generated MOTD message. The generated motdgen message did not show when SSHing into a machine with console-login-helper- messgaes-motdgen installed, and an SELinux AVC denial was given. Now, the message displays on SSH login. Updates to the v0.16 release of the upstream source which includes other minor enhancements that do not change behavior. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Robert Fairley rfairley@redhat.com - 0.16-2 - Add condition for f28 setup Requires * Thu Mar 21 2019 Robert Fairley rfairley@redhat.com - 0.16-1 - relax setup dependency for f29 - general upstream source/tidiness improvements - house executable scripts in /usr/libexec - change Source0 to use GitHub-generated archive link - drop .path units for motdgen and issuegen * Fri Mar 15 2019 Robert Fairley rfairley@redhat.com - 0.15-1 - make motdgen generate motd in /run with no symlink * Fri Mar 15 2019 Robert Fairley rfairley@redhat.com - 0.14-1 - issuegen.service: rely on sshd-keygen.target - issuegen: don't show kernel version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691914 - console-login-helper-messages-motdgen: Generated MOTD not displayed - AVC denial https://bugzilla.redhat.com/show_bug.cgi?id=1691914 --------------------------------------------------------------------------------
================================================================================ firefox-66.0-9.fc29 (FEDORA-2019-132f177699) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information:
- Fixed popup issues on Wayland (mozbz#1423598) - Fixed rendering artifacts on Wayland (mozbz#1468911) -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Martin Stransky stransky@redhat.com - 66.0-9 - Release build * Thu Mar 21 2019 Martin Stransky stransky@redhat.com - 66.0-8.test - Added module specific build config - Fixed mozbz#1423598 for multi-monitor setup * Wed Mar 20 2019 Martin Stransky stransky@redhat.com - 66.0-7.test - Switched to test builds - Updated mozbz#1468911 patch --------------------------------------------------------------------------------
================================================================================ fts-3.8.4-2.fc29 (FEDORA-2019-e3059ee1c9) File Transfer Service V3 -------------------------------------------------------------------------------- Update Information:
* new upstream release ---- * new upstream release ---- * new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Andrea Manzi amanzi@cern.ch - 3.8.4-2 - New upstream release * Tue Mar 19 2019 Andrea Manzi amanzi@cern.ch - 3.8.4-1 - New upstream release * Fri Feb 22 2019 Andrea Manzi amanzi@cern.ch - 3.8.3-1 - New upstream release * Thu Jan 31 2019 Fedora Release Engineering releng@fedoraproject.org - 3.7.8-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Wed Nov 21 2018 Igor Gnatenko ignatenkobrain@fedoraproject.org - 3.7.8-3 - Rebuild for protobuf 3.6 --------------------------------------------------------------------------------
================================================================================ ghostscript-9.26-4.fc29 (FEDORA-2019-1a2c059afd) Interpreter for PostScript language & PDF -------------------------------------------------------------------------------- Update Information:
- Security fix for CVE-2019-3835 CVE-2019-3838 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Martin Osvald mosvald@redhat.com - 9.26-4 - Fixes for CVE-2019-3835 and CVE-2019-3838 added -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691327 - CVE-2019-3835 ghostscript: superexec operator is available (700585) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1691327 [ 2 ] Bug #1691326 - CVE-2019-3838 ghostscript: forceput in DefineResource is still accessible (700576) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1691326 --------------------------------------------------------------------------------
================================================================================ git-time-metric-1.3.5-2.fc29 (FEDORA-2019-028a5c8965) Simple, seamless, lightweight time tracking for Git -------------------------------------------------------------------------------- Update Information:
Fix missing BuildRequires for testing, and remove vendored code before build. -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 1.3.5-2 - Add git-core BR for testing - Remove vendored code before build --------------------------------------------------------------------------------
================================================================================ gpxsee-7.5-1.fc29 (FEDORA-2019-891f6d886a) GPS log file viewer and analyzer -------------------------------------------------------------------------------- Update Information:
**News in version 7.5**: - Added support for geotagged JPEG images -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 19 2019 Nikola Forr�� nforro@redhat.com - 7.5-1 - Update to version 7.5 resolves: #1689598 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1689598 - gpxsee-7.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1689598 --------------------------------------------------------------------------------
================================================================================ gsi-openssh-7.9p1-7.fc29 (FEDORA-2019-7a15bb47e8) An implementation of the SSH protocol with GSI authentication -------------------------------------------------------------------------------- Update Information:
Sync with openssh package. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Mattias Ellert mattias.ellert@physics.uu.se - 7.9p1-7 - Based on openssh-7.9p1-5.fc29 --------------------------------------------------------------------------------
================================================================================ js-jsroot-5.6.4-1.fc29 (FEDORA-2019-032c581655) JavaScript ROOT - Interactive numerical data analysis graphics -------------------------------------------------------------------------------- Update Information:
jsroot 5.6.4 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Mattias Ellert mattias.ellert@physics.uu.se - 5.6.4-1 - Update to version 5.6.4 --------------------------------------------------------------------------------
================================================================================ klavaro-3.05-3.fc29 (FEDORA-2019-878a5f4b1f) Typing tutor -------------------------------------------------------------------------------- Update Information:
Fix segfault. ---- Solve library dependencies. ---- Update to 3.05. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Vasiliy N. Glazov vascom2@gmail.com - 3.05-3 - Fix segfault * Tue Mar 19 2019 Vasiliy N. Glazov vascom2@gmail.com - 3.05-2 - Correct databox library handling * Sun Mar 17 2019 Vasiliy N. Glazov vascom2@gmail.com - 3.05-1 - Update to 3.05 * Mon Feb 11 2019 Vasiliy N. Glazov vascom2@gmail.com - 3.04-1 - Update to 3.04 - Clean spec and correct paths * Fri Feb 1 2019 Fedora Release Engineering releng@fedoraproject.org - 3.03-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ libreoffice-6.1.5.2-3.fc29 (FEDORA-2019-9512551c7b) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information:
- fix crash in writer navigator - fix crash with KDE -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 20 2019 Stephan Bergmann sbergman@redhat.com - 1:6.1.5.2-3 - Resolves: rhbz#1687589 KDE4 gpoll_wrapper can be called with SolarMutex locked -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1690645 - [abrt] libreoffice-core: (anonymous namespace)::signalHandlerFunction(int, siginfo_t*, void*)(): soffice.bin killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1690645 [ 2 ] Bug #1687589 - [abrt] libreoffice-core: comphelper::GenericSolarMutex::doRelease(): soffice.bin killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1687589 --------------------------------------------------------------------------------
================================================================================ lollypop-1.0.2-1.fc29 (FEDORA-2019-97927c0277) Music player for GNOME -------------------------------------------------------------------------------- Update Information:
Update to 1.0.2-1 ---- Update to 1.0-1 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Martin Gansser martinkg@fedoraproject.org - 1.0.2-1 - Update to 1.0.2-1 * Tue Mar 19 2019 Martin Gansser martinkg@fedoraproject.org - 1.0-1 - Update to 1.0-1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691679 - lollypop-1.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691679 [ 2 ] Bug #1690166 - lollypop-1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1690166 [ 3 ] Bug #1677701 - Opening a file from the command line doesn't work https://bugzilla.redhat.com/show_bug.cgi?id=1677701 --------------------------------------------------------------------------------
================================================================================ moarvm-0.2019.03-1.fc29 (FEDORA-2019-222f4f2c85) Meta-model On A Runtime Virtual Machine -------------------------------------------------------------------------------- Update Information:
update to rakudo 2019.03 and dependencies -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 19 2019 Gerd Pokorra gp@zimt.uni-siegen.de 0.2019.03-1 - update to 2019.03 --------------------------------------------------------------------------------
================================================================================ netdata-1.13.0-2.fc29 (FEDORA-2019-711c0d07dc) Real-time performance monitoring -------------------------------------------------------------------------------- Update Information:
Fix bash and sh path on el6 ---- Update from upstream ---- Fix upstream archive name (source0) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1684719 - Review Request: netdata - Real-time performance monitoring https://bugzilla.redhat.com/show_bug.cgi?id=1684719 --------------------------------------------------------------------------------
================================================================================ nqp-0.0.2019.03-1.fc29 (FEDORA-2019-222f4f2c85) Not Quite Perl (6) -------------------------------------------------------------------------------- Update Information:
update to rakudo 2019.03 and dependencies -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 19 2019 Gerd Pokorra gp@zimt.uni-siegen.de 0.0.2019.03-1 - update to 2019.03 --------------------------------------------------------------------------------
================================================================================ perl-DBD-Pg-3.7.4-5.fc29 (FEDORA-2019-069434bcd1) A PostgreSQL interface for perl -------------------------------------------------------------------------------- Update Information:
Backport the upstream fix for failing test -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Jitka Plesnikova jplesnik@redhat.com - 3.7.4-5 - Fix failing test (bug #1679574) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1679574 - perl-DBD-Pg-3.7.4-5.fc30 FTBFS: t/02attribs.t test fails https://bugzilla.redhat.com/show_bug.cgi?id=1679574 --------------------------------------------------------------------------------
================================================================================ perl-Term-Encoding-0.03-1.fc29 (FEDORA-2019-2685e91eb5) Detect encoding of the current terminal -------------------------------------------------------------------------------- Update Information:
This release updates a build script. We deliver it only to provide an up-to-date version string. -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Petr Pisar ppisar@redhat.com - 0.03-1 - 0.03 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691684 - perl-Term-Encoding-0.03 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691684 --------------------------------------------------------------------------------
================================================================================ php-twig-1.38.3-2.fc29 (FEDORA-2019-91c1f8c8a0) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information:
**Version 1.38.3** (2019-03-21) * fixed the spaceless filter so that it behaves like the spaceless tag * fixed BC break on Environment::resolveTemplate() * fixed the bundled Autoloader to also load namespaced classes * allowed Traversable objects to be used in the "with" tag * allowed Traversable objects to be used in the "with" argument of the "include" and "embed" tags -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Remi Collet remi@remirepo.net - 1.38.3-1 - update to 1.38.3 --------------------------------------------------------------------------------
================================================================================ php-twig2-2.7.3-1.fc29 (FEDORA-2019-eb540661b2) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information:
**Version 2.7.3** (2019-03-21) * fixed the spaceless filter so that it behaves like the spaceless tag * fixed BC break on Environment::resolveTemplate() * allowed Traversable objects to be used in the "with" tag * allowed Traversable objects to be used in the "with" tag * allowed Traversable objects to be used in the "with" argument of the "include" and "embed" tags -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Remi Collet remi@remirepo.net - 2.7.3-1 - update to 2.7.3 --------------------------------------------------------------------------------
================================================================================ polkit-0.115-4.4.fc29 (FEDORA-2019-255bc9309c) An authorization framework -------------------------------------------------------------------------------- Update Information:
pkttyagent: PolkitAgentTextListener leaves echo tty disabled if SIGINT/SIGTERM More info at https://gitlab.freedesktop.org/polkit/polkit/commit/bfb722bbe5a503. -------------------------------------------------------------------------------- ChangeLog:
* Thu Feb 14 2019 Jan Rybar jrybar@redhat.com - 0.115-4.4 - pkttyagent: PolkitAgentTextListener leaves echo tty disabled if SIGINT/SIGTERM --------------------------------------------------------------------------------
================================================================================ pspp-1.2.0-1.fc29 (FEDORA-2019-8861e3b84c) A program for statistical analysis of sampled data -------------------------------------------------------------------------------- Update Information:
* PSPP ver. 1.2.0 -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Peter Lemenkov lemenkov@gmail.com - 1.2.0-1 - Ver. 1.2.0 * Sun Feb 17 2019 Igor Gnatenko ignatenkobrain@fedoraproject.org - 1.0.1-9 - Rebuild for readline 8.0 * Sat Feb 2 2019 Fedora Release Engineering releng@fedoraproject.org - 1.0.1-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Fri Sep 28 2018 Peter Lemenkov lemenkov@gmail.com - 1.0.1-7 - Added missing test dependency - perl(Text::Diff) * Thu Sep 27 2018 Peter Lemenkov lemenkov@gmail.com - 1.0.1-6 - Fixed two bugs (1470704, 1470708) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1675689 - pspp: FTBFS in Fedora rawhide/f30 https://bugzilla.redhat.com/show_bug.cgi?id=1675689 --------------------------------------------------------------------------------
================================================================================ python-repomd-0.2.0-1.fc29 (FEDORA-2019-a894daa2bf) Library for reading dnf/yum repositories -------------------------------------------------------------------------------- Update Information:
- Latest upstream -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Carl George carl@george.computer - 0.2.0-1 - Latest upstream * Sat Feb 2 2019 Fedora Release Engineering releng@fedoraproject.org - 0.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691198 - python-repomd-0.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691198 --------------------------------------------------------------------------------
================================================================================ rakudo-0.2019.03-1.fc29 (FEDORA-2019-222f4f2c85) Perl 6 compiler implementation that runs on MoarVM -------------------------------------------------------------------------------- Update Information:
update to rakudo 2019.03 and dependencies -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 19 2019 Gerd Pokorra gp@zimt.uni-siegen.de 0.2019.03-1 - update to 2019.03 - add 'export QA_SKIP_BUILD_ROOT=1' - some test will not executed at the s390x architecture --------------------------------------------------------------------------------
================================================================================ rakudo-Readline-0.1.5-1.fc29 (FEDORA-2019-222f4f2c85) Simple Perl 6 binding to GNU libreadline -------------------------------------------------------------------------------- Update Information:
update to rakudo 2019.03 and dependencies -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 20 2019 Gerd Pokorra gp@zimt.uni-siegen.de 0.1.5-1 - update to 0.1.5 - change the source to the new official tarfile --------------------------------------------------------------------------------
================================================================================ rakudo-zef-0.7.1-1.fc29 (FEDORA-2019-222f4f2c85) Perl6 Module Management -------------------------------------------------------------------------------- Update Information:
update to rakudo 2019.03 and dependencies -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 20 2019 Gerd Pokorra gp@zimt.uni-siegen.de 0.7.1-1 - update to 0.7.1 - add 'export QA_SKIP_BUILD_ROOT=1' - exclude zef-j* (zef-j and zef-js) --------------------------------------------------------------------------------
================================================================================ resultsdb-2.2.0-1.fc29 (FEDORA-2019-1682f0d440) Results store for automated tasks -------------------------------------------------------------------------------- Update Information:
- Latest endpoint: group by additional fields - specfile: Drop python 2 support - Drop support for fedmsg and replace by fedora-messaging - settings.py: use lists instead of tuples -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Frantisek Zatloukal fzatlouk@redhat.com - 2.2.0-1 - Latest endpoint: group by additional fields - specfile: Drop python 2 support - Drop support for fedmsg and replace by fedora-messaging - settings.py: use lists instead of tuples * Sat Feb 2 2019 Fedora Release Engineering releng@fedoraproject.org - 2.1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ rubygem-jekyll-feed-0.12.0-1.fc29 (FEDORA-2019-144084c809) Jekyll plugin to generate an Atom feed of your Jekyll posts -------------------------------------------------------------------------------- Update Information:
Update to version 0.12.0. Release notes: https://github.com/jekyll/jekyll- feed/releases/tag/v0.12.0 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Fabio Valentini decathorpe@gmail.com - 0.12.0-1 - Update to version 0.12.0. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691545 - rubygem-jekyll-feed-0.12.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691545 --------------------------------------------------------------------------------
================================================================================ rubygem-jekyll-watch-2.2.0-1.fc29 (FEDORA-2019-66f99076f3) Rebuild your Jekyll site when a file changes -------------------------------------------------------------------------------- Update Information:
Update to version 2.2.0. Release notes: https://github.com/jekyll/jekyll- watch/releases/tag/v2.2.0 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Fabio Valentini decathorpe@gmail.com - 2.2.0-1 - Update to version 2.2.0. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691667 - rubygem-jekyll-watch-2.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1691667 --------------------------------------------------------------------------------
================================================================================ s3fs-fuse-1.85-1.fc29 (FEDORA-2019-6a428162a7) FUSE-based file system backed by Amazon S3 -------------------------------------------------------------------------------- Update Information:
Fix cross building (https://github.com/s3fs-fuse/s3fs-fuse/pull/985) Update to 1.85 (Full changelog: https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.85) -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 12 2019 Julio Gonzalez Gil git@juliogonzalez.es - 1.85-1 - Fix cross building (https://github.com/s3fs-fuse/s3fs-fuse/pull/985) * 985-fix-cross-building.patch - Support Curl lower than 7.25 (CentOS6) (https://github.com/s3fs-fuse/s3fs-fuse/pull/987) * 987-support-curl-lt-7-25.patch - Update to 1.85 from https://github.com/s3fs-fuse/s3fs-fuse Full changelog: https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.85 * Sat Feb 2 2019 Fedora Release Engineering releng@fedoraproject.org - 1.84-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ tuned-2.11.0-1.fc29 (FEDORA-2019-953c10959d) A dynamic adaptive system tuning daemon -------------------------------------------------------------------------------- Update Information:
This is new Tuned release. -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Jaroslav ��karvada jskarvad@redhat.com - 2.11.0-1 - new release - rebased tuned to latest upstream related: rhbz#1643654 - used dmidecode only on x86 architectures resolves: rhbz#1688371 - recommend: fixed to work without tuned daemon running resolves: rhbz#1687397 - powertop2tuned: added support for wakeup tuning (powertop-2.10) resolves: rhbz#1690354 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1690354 - RFE: please add support for wake status tuning into powertop2tuned https://bugzilla.redhat.com/show_bug.cgi?id=1690354 --------------------------------------------------------------------------------
================================================================================ ubridge-0.9.14-5.fc29 (FEDORA-2019-8be456c50a) Bridge for UDP tunnels, Ethernet, TAP and VMnet interfaces -------------------------------------------------------------------------------- Update Information:
Enable raw support GH #1546 -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Athmane Madjoudj athmane@fedoraproject.org - 0.9.14-5 - Enable raw support * Sun Feb 3 2019 Fedora Release Engineering releng@fedoraproject.org - 0.9.14-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ wordpress-5.1.1-4.fc29 (FEDORA-2019-4825f7896c) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information:
Fix empty wp-tinymce.js.gz and missing wp-tinymce.js -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 22 2019 Remi Collet remi@remirepo.net - 5.1.1-4 - fix wp-tinymce.js is missing, wp-tinymce.js.gz is empty #1691524 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691524 - wp-tinymce.js.gz is empty https://bugzilla.redhat.com/show_bug.cgi?id=1691524 --------------------------------------------------------------------------------
================================================================================ zorba-3.0.0-44.20140621git152f8964c.fc29 (FEDORA-2019-8ad350f067) General purpose XQuery processor implemented in C++ -------------------------------------------------------------------------------- Update Information:
- Fixed an installation failure - The Ruby bindings have been removed due to outdated code -------------------------------------------------------------------------------- ChangeLog:
* Thu Mar 21 2019 Martin Gieseking martin.gieseking@uos.de - 3.0.0-44.20140621git152f8964c - Dropped Ruby language bindings. - Added patch to build Java and Python bindings with current Swig version. - Fixed installation path of Python module. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1691112 - Installation failure https://bugzilla.redhat.com/show_bug.cgi?id=1691112 --------------------------------------------------------------------------------