The following Fedora 32 Security updates need testing: Age URL 84 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4c8458e373 containernetworking-plugins-0.9.1-1.fc32 80 https://bodhi.fedoraproject.org/updates/FEDORA-2021-16d1596c42 buildah-1.19.4-1.fc32 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c1116fb75e ansible-2.9.20-1.fc32 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-6d5578e756 libmicrohttpd-0.9.73-1.fc32 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-eb5d6cf9f6 pngcheck-2.4.0-8.fc32 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e3d8833d36 perl-Image-ExifTool-12.16-3.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-3bf9ba59ef java-latest-openjdk-16.0.1.0.9-1.rolling.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-166dfc62b2 python-pygments-2.4.2-9.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-af8c886639 php-7.4.18-1.fc32 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-7026246ea9 samba-4.12.15-0.fc32
The following Fedora 32 Critical Path updates have yet to be approved: Age URL 141 https://bodhi.fedoraproject.org/updates/FEDORA-2020-345d2fd2aa iproute-5.9.0-1.fc32 11 https://bodhi.fedoraproject.org/updates/FEDORA-2021-3f0ce2dede mtools-4.0.27-1.fc32 11 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b5ce87e535 libical-3.0.10-1.fc32 8 https://bodhi.fedoraproject.org/updates/FEDORA-2021-2e33c3908d evolution-data-server-3.36.5-2.fc32 7 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4cc9c81077 gnome-online-accounts-3.36.1-1.fc32 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-426ec216b2 annobin-9.27-3.fc32 gcc-10.3.1-1.fc32 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-ec36847440 osinfo-db-20210426-1.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-a93ccd6502 firefox-88.0-5.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-6efbebaf08 gnome-software-3.36.1-4.fc32 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-a328bc1099 kernel-5.11.17-100.fc32 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-2efb16d06b pungi-4.2.9-1.fc32
The following builds have been pushed to Fedora 32 updates-testing
babel-2.8.0-4.fc32 bind-9.11.31-1.fc32 bind-dyndb-ldap-11.3-5.fc32 copr-backend-1.146-1.fc32 copr-frontend-1.178-1.fc32 cups-2.3.3op2-5.fc32 gucharmap-13.0.7-1.fc32 ignition-2.10.1-1.fc32 lazarus-2.0.12-1.fc32 libopenmpt-0.4.20-1.fc32 libretro-pcsx-rearmed-15-11.20210428git625cc17.fc32 mame-0.231-1.fc32 packit-0.29.0-1.fc32 perl-Graphics-TIFF-12-1.fc32 prunerepo-1.21-1.fc32 python-op1svg-0.1.0-2.20210430git50a3b01.fc32 rpminspect-1.5-1.fc32 rpminspect-data-fedora-1.5-1.fc32 sympa-6.2.62-1.fc32 tmt-1.5.0-1.fc32 video-downloader-0.8.1-1.fc32 xrdp-0.9.16-1.fc32
Details about builds:
================================================================================ babel-2.8.0-4.fc32 (FEDORA-2021-7e2a143808) Tools for internationalizing Python applications -------------------------------------------------------------------------------- Update Information:
backported fix for CVE-2021-20095 from Babel 2.9.1 -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Felix Schwarz fschwarz@fedoraproject.org - 2.8.1-2 - backport fix for CVE-2021-20095 from Babel 2.9.1 --------------------------------------------------------------------------------
================================================================================ bind-9.11.31-1.fc32 (FEDORA-2021-158a237d4a) The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server -------------------------------------------------------------------------------- Update Information:
[Upstream release notes](https://downloads.isc.org/isc/bind9/9.11.31/RELEASE- NOTES-bind-9.11.31.html) -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 29 2021 Petr Men����k pemensik@redhat.com - 32:9.11.31-1 - Update to 9.11.31 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1954897 - CVE-2021-25214 bind: A broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1954897 [ 2 ] Bug #1954903 - CVE-2021-25215 bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1954903 --------------------------------------------------------------------------------
================================================================================ bind-dyndb-ldap-11.3-5.fc32 (FEDORA-2021-158a237d4a) LDAP back-end plug-in for BIND -------------------------------------------------------------------------------- Update Information:
[Upstream release notes](https://downloads.isc.org/isc/bind9/9.11.31/RELEASE- NOTES-bind-9.11.31.html) -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Petr Men����k pemensik@redhat.com - 11.3-5 - Rebuilt for bind 9.11.31 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1954897 - CVE-2021-25214 bind: A broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1954897 [ 2 ] Bug #1954903 - CVE-2021-25215 bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1954903 --------------------------------------------------------------------------------
================================================================================ copr-backend-1.146-1.fc32 (FEDORA-2021-66e4c88301) Backend for Copr -------------------------------------------------------------------------------- Update Information:
Bugfixes after the last major release -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Pavel Raiskup praiskup@redhat.com 1.146-1 - better fixes for the appstream-builder generated files - new helper script named /bin/copr-assure-permissions - do not rsync-copy permissions from the builder - log the partial "prunerepo" effects into resultdir - better, more verbose call_copr_repo logging * Tue Apr 27 2021 Jakub Kadlcik frostyx@email.cz 1.145-1 - backend: make the walk_limited test not dependend on its output order, pt2 * Tue Apr 27 2021 Jakub Kadlcik frostyx@email.cz 1.144-1 - backend: make the walk_limited test not dependend on its output order * Tue Apr 27 2021 Jakub Kadlcik frostyx@email.cz 1.143-1 - backend: fix copr_prune_results logging once more - backend: better logging in prunerepo - backend: prunerepo: don't re-createrepo when no rpm is removed - backend: catch correct client exceptions in copr_prune_results - test: backend: change prunerepo logic, use get_rpms_to_remove from prunerepo - backend: new fixture for testing prunerepo - backend: use safe defaults if APIv3 result doesn't contain what it should - backend: migrate to APIv3 - backend: better how-to-redirect logs comment - backend, frontend, keygen, distgit: keep cca 3 months of logs - backend: don't createrepo in srpm-builds on delete - backend: test walk_limited function from helpers --------------------------------------------------------------------------------
================================================================================ copr-frontend-1.178-1.fc32 (FEDORA-2021-66e4c88301) Frontend for Copr -------------------------------------------------------------------------------- Update Information:
Bugfixes after the last major release -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Jakub Kadlcik frostyx@email.cz 1.178-1 - frontend: oops, forgot to change these two instances - frontend: show deletion tooltip in project overview * Fri Apr 30 2021 Pavel Raiskup praiskup@redhat.com 1.177-1 - fix chroot disabling in project settings - not display EOL warning for per-project disabled chroots * Tue Apr 27 2021 Jakub Kadlcik frostyx@email.cz 1.176-1 - frontend: fix tests that fail in Fedora Rawhide chroots - frontend: create project for Fedora Review - frontend: memory_analyzer route module - frontend: fix unrelated pylint warnings - frontend: use correct auto_prune default when creating via API - frontend: better test the branch-fedora command - frontend: print forking stats for rawhide-to-release - frontend: rawhide-to-release fix for deactivated chroots - frontend: clone all CoprChroot attributes when forking - frontend: simplified Build.state logic, and better log - frontend: avoid NULLed source_status - frontend: don't create builds if there are no active chroots - frontend: hide deactivated chroots in the project overview - frontend: traceback for outdated-chroots flash message - frontend: make the [modified] chroot clickable - frontend: fix Jinja traceback on nulled buildroot_pkgs - frontend: catch tracebacks when rendering invalid modules - frontend: update FAS links to use the new site - frontend: fix unrelated pylint warnings - frontend: introduce ChrootDeletionStatus - frontend: delete data for unclicked chroots after few days - frontend: assure unique Copr name for group/user in DB - frontend: test that we can set these options via API - frontend: drop an unused pagure_events.py knob - GitLab moved their webhook settings to a different page. - frontend: fix createrepo scope for chroot enable - frontend: fix already defined method name - frontend: add base form for creating and modifying projects - frontend: move tests to proper class - frontend: explain what actions are - frontend: use Builds instead of Tasks in stats/ - backend, frontend, keygen, distgit: keep cca 3 months of logs - frontend: test API for 'copr modify' - fronted: stats - sort chroots by name --------------------------------------------------------------------------------
================================================================================ cups-2.3.3op2-5.fc32 (FEDORA-2021-be95e017e7) CUPS printing system -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2021-25317 -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Zdenek Dohnal zdohnal@redhat.com - 1:2.3.3op2-5 - 1955090 - CVE-2021-25317 cups: insecure permissions of /var/log/cups allows for symlink attack -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1949119 - CVE-2021-25317 cups: insecure permissions of /var/log/cups allows for symlink attacks https://bugzilla.redhat.com/show_bug.cgi?id=1949119 --------------------------------------------------------------------------------
================================================================================ gucharmap-13.0.7-1.fc32 (FEDORA-2021-6e0b2be3e2) Unicode character picker and font browser -------------------------------------------------------------------------------- Update Information:
Updated Basque and Dutch translations. -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Alexander Ploumistos alexpl@fedoraproject.org - 13.0.7-1 - Update to 13.0.7 (#1955706) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1955706 - gucharmap-13.0.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1955706 --------------------------------------------------------------------------------
================================================================================ ignition-2.10.1-1.fc32 (FEDORA-2021-688e563b9f) First boot installer and configuration tool -------------------------------------------------------------------------------- Update Information:
New upstream release. See release notes at https://github.com/coreos/ignition/blob/v2.10.1/NEWS -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 29 2021 Stephen Lowrie slowrie@redhat.com - 2.10.1-1 - New release --------------------------------------------------------------------------------
================================================================================ lazarus-2.0.12-1.fc32 (FEDORA-2021-6d31878207) Lazarus Component Library and IDE for Freepascal -------------------------------------------------------------------------------- Update Information:
Update to 2.0.12 -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Artur Frenszek-Iwicki fedora@svgames.pl - 2.0.12-1 - Update to 2.0.12 - Use baserelease macro to fix the rpmdev-bumspec issues -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1946343 - Lazarus 2.0.12 is available https://bugzilla.redhat.com/show_bug.cgi?id=1946343 --------------------------------------------------------------------------------
================================================================================ libopenmpt-0.4.20-1.fc32 (FEDORA-2021-57540ff4ad) C/C++ library to decode tracker music module (MOD) files -------------------------------------------------------------------------------- Update Information:
Update to latest bug-fix release including security fixes: https://lib.openmpt.org/libopenmpt/2021/04/11/security- updates-0.5.8-0.4.20-0.3.29/ -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Michael Schwendt mschwendt@fedoraproject.org - 0.4.20-1 - update to 0.4.20 (security release for the 0.4 series) --------------------------------------------------------------------------------
================================================================================ libretro-pcsx-rearmed-15-11.20210428git625cc17.fc32 (FEDORA-2021-034a8c9c7f) ARM optimized PCSX fork -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Artem Polishchuk ego.cordatus@gmail.com - 15-11.20210428git625cc17 - build(update): Latest git snapshot * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 15-10.20200806gitddd39f2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ mame-0.231-1.fc32 (FEDORA-2021-98fa0ed663) Multiple Arcade Machine Emulator -------------------------------------------------------------------------------- Update Information:
An update to the latest upstream release: * https://www.mamedev.org/?p=498 -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 29 2021 Julian Sikorski belegdol@fedoraproject.org - 0.231-1 - Update to 0.231 --------------------------------------------------------------------------------
================================================================================ packit-0.29.0-1.fc32 (FEDORA-2021-7821998cfc) A tool for integrating upstream projects with Fedora operating system -------------------------------------------------------------------------------- Update Information:
New upstream release. -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Jiri Popelka jpopelka@redhat.com - 0.29.0-1 - Source-git: add info about sources to packit.yaml when initiating a new source-git repo and don't commit dist-git sources from the lookaside cache. (#1208, #1216) - Source-git: fix SRPM creation failing with duplicate Patch IDs. (#1206) - Support git repository cache. (#1214) - Reflect removed COPR chroots in a COPR project. (#1197) - Deprecate current_version_command and create_tarball_command. (#1212) - Fix crashing push-updates command. (#1170) - Improve fmf/tmt tests configuration. (#1192) --------------------------------------------------------------------------------
================================================================================ perl-Graphics-TIFF-12-1.fc32 (FEDORA-2021-f7210bb6b5) Perl extension for the LibTIFF library -------------------------------------------------------------------------------- Update Information:
This release improves the tests. We deliver it mainly to provide an up-to-date version string. ---- This release addapts to changes in libtiff 4.3.0. We deliver it mainly to provide an up-to-date version string. -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Petr Pisar ppisar@redhat.com - 12-1 - 12 version bump * Tue Apr 27 2021 Petr Pisar ppisar@redhat.com - 11-1 - 11 version bump * Tue Apr 27 2021 Petr Pisar ppisar@redhat.com - 10-2 - Adjust tests to libtiff-4.3.0 (CPAN RT#135330) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1953981 - perl-Graphics-TIFF-11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1953981 [ 2 ] Bug #1955258 - perl-Graphics-TIFF-12 is available https://bugzilla.redhat.com/show_bug.cgi?id=1955258 --------------------------------------------------------------------------------
================================================================================ prunerepo-1.21-1.fc32 (FEDORA-2021-4819831a87) Remove old packages from rpm-md repository -------------------------------------------------------------------------------- Update Information:
Move the stderr output to log, don't sys.exit() from library function. -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Pavel Raiskup praiskup@redhat.com 1.21-1 - Don't leak descriptors in Python API call - fix misleading /bin/prunerepo message when no rpms are to be removed * Tue Apr 27 2021 Pavel Raiskup praiskup@redhat.com 1.20-1 - Move the stderr output to log - Don't sys.exit() from library function --------------------------------------------------------------------------------
================================================================================ python-op1svg-0.1.0-2.20210430git50a3b01.fc32 (FEDORA-2021-911a407460) Normalize SVG files so that the OP-1 understands them -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1953226 - Review Request: python-op1svg - Normalize SVG files so that the OP-1 understands them https://bugzilla.redhat.com/show_bug.cgi?id=1953226 --------------------------------------------------------------------------------
================================================================================ rpminspect-1.5-1.fc32 (FEDORA-2021-84868cb260) Build deviation compliance tool -------------------------------------------------------------------------------- Update Information:
Upgrade to rpminspect-1.5 -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 David Cantrell dcantrell@redhat.com - 1.5-1 - Begin work on version 1.5 - Use llabs() instead of labs() in the filesize inspection - Improve has invalid execstack flags reporting - Use long unsigned int to report size changes in patches - Fix some errors in the changedfiles inspection - Update the changedfiles test cases - Check DT_SONAME in is_elf_shared_library() - Skip debuginfo and debugsource files in abidiff - Make sure abidiff test cases add a DT_SONAME to the test lib - Report INFO level for patches findings by default - Python black fixes in test/test_abidiff.py - Update the test/test_patches.py cases for patches changes - Generate regular changelog in utils/srpm.h - Skip branches without targets in submit-koji-builds.sh - Fedora and CentOS systems in ci need diffstat - opensuse-leap CI job requires diffstat - Fix the Debian CI jobs in GitHub Actions - Fix and enable the Ubuntu extra-ci job in GitHub Actions - Use pip instead of pip3 for the Ubuntu command - Use apt-get -y install in - Enable the opensuse-tumbleweed GHA job again - Make sure the Gentoo GHA job has diffstat - Get the Arch Linux GHA job working again - Use ubuntu:latest for the ubuntu GHA image - Simplify the utils/determine-os.sh script - Update license table in README.md - Allow any number of builds specified for fetch only mode - Handle old or broken versions of libmagic in changedfiles - Update GitHub Action status badges in README.md - Fix $(OS) check in the Makefile - Fix the ubuntu GitHub Actions extra-ci job - Make sure the centos8 job has git available before cloning - Change strappend() to work as a variadic function - Use json_tokener_parse_ex() to get better error reporting - Fix reading of the javabytecode block in the config file - Catch missing/losing -fPIC correctly on .a ELF objects (#352) - Refactor elf_archive_tests() and its helper functions - Followup fix for find_no_pic, find_pic, and find_all - Install cpp-coveralls using pacman on Arch Linux - Install cpp-coveralls using pip on Arch Linux - Install cpp-coveralls in pre.sh on Arch Linux - Install required Python modules in pre.sh on Arch Linux - Do not upgrade pip on Arch Linux, go back to using pip.txt - Drop DEBUG_PRINT from source generated by pic_bits.sh - Do not run apt-get update as a second time on Debians systems - The lost PIC tests need to invoke gcc with -fno-PIC - Update the OpenSUSE Tumbleweed files, but disable it anyway - Define inspection_ignores in struct rpminspect - Clean up the config file section reading code - Add add_ignore() to init.c - Fix fetch only mode download directory - Stub out libcurl download progress callback function - Perform symbolic owner and group matching in ownership (#364) - Restrict download_progress() to systems with CURLOPT_XFERINFOFUNCTION - Read per-inspection ignore lists from the config file. - Add commented out per-inspection ignore blocks - Implement per-inspection path ignore support (#351) - Report annocheck failures correctly in librpminspect. - Note all regular expression settings use regex(7) syntax - Allow size_threshold: info in the config file (#261) - Check ignore list in files for path prefixes to ignore (#360) - Support a list of expected empty RPMs in the config file (#355) - Call mparse_reset() before mparse_readfd() - Do not crash with the -c option specifies a non-existent file - Update TODO list - Make sure brp-compress is disabled in test_manpage.py - Require/Recommend /usr/bin/annocheck - Note size_threshold can be the keyword info - Ensure ctxt->lastError.message is not NULL before strdup (#382) - Handle corrupt compressed files in changedfiles (#382) - Disable debugging output for the ignore lists in init.c - Drop debugging output in the xml inspection - Remove what working directories we can - Correctly find icons for desktop files in subpackages (#367) - Followup to the Icon= check in the desktop inspection (#367) - BuildRequires libmandoc-devel >= 1.14.5 - Manually install mandoc on centos7 for now --------------------------------------------------------------------------------
================================================================================ rpminspect-data-fedora-1.5-1.fc32 (FEDORA-2021-192f1c1bba) Build deviation compliance tool data files -------------------------------------------------------------------------------- Update Information:
Upgrade to rpminspect-1.5 -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 David Cantrell dcantrell@redhat.com - 1.5-1 - Add a 'rawhide' profile to disable a lot of inspections - Add missing ID value to the npsl license entry - /usr/lib/dracut and /usr/lib/udev are valid paths - Update fedora.yaml with all current configuration file changes - Explain size_threshold can be 'info' * Wed Feb 24 2021 David Cantrell dcantrell@redhat.com - 1.4-1 - Increment the development tree version to 1.4. - Document the release process and add another helper target to the Makefile - 'make koji' skips branches that lack Koji build targets - Set VENDORBLD to the vendor build too in submit-koji-builds.sh - Add NPSL - Update fedora.yaml for the new 'badfuncs' inspection. - The badfuncs inspection is in rpminspect >= 1.3, update spec file - Add MIT-0 license - Add runpath section to fedora.yaml --------------------------------------------------------------------------------
================================================================================ sympa-6.2.62-1.fc32 (FEDORA-2021-aa993dd633) Powerful multilingual List Manager -------------------------------------------------------------------------------- Update Information:
- Update to 6.2.62. See upstream release notes : https://github.com/sympa- community/sympa/blob/6.2.62/NEWS.md - Fixes CVE-2020-26880. -------------------------------------------------------------------------------- ChangeLog:
* Tue Apr 27 2021 Xavier Bachelot xavier@bachelot.org 6.2.62-1 - Update to 6.2.62 - Fixes CVE-2020-26880 (RHBZ#1886232 - RHBZ#1886233) - Unbundle jquery-ui - Unbundle jquery on EL8 * Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 6.2.60-2.1 - Rebuilt for updated systemd-rpm-macros See https://pagure.io/fesco/issue/2583. * Wed Feb 17 2021 Xavier Bachelot xavier@bachelot.org 6.2.60-2 - Prepare for jquery-ui retirement in F34 - Remove conditionals for F31 * Wed Jan 27 2021 Fedora Release Engineering releng@fedoraproject.org - 6.2.60-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1886232 - CVE-2020-26880 sympa: local privilege escalation by modifying sympa.conf configuration file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1886232 [ 2 ] Bug #1886233 - CVE-2020-26880 sympa: local privilege escalation by modifying sympa.conf configuration file [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1886233 --------------------------------------------------------------------------------
================================================================================ tmt-1.5.0-1.fc32 (FEDORA-2021-75b42ff67a) Test Management Tool -------------------------------------------------------------------------------- Update Information:
Run progress, tmt clean, docs enhancements... -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 30 2021 Petr ��pl��chal psplicha@redhat.com - 1.5.0-1 - Enable and document `pre-commit` and `autopep8` - Reorganize feature stories, fix title duplication - Prepare/install story for package development. - Add package preparation scenarios from Fedora CI - Prepare/install story for released packages - Add new stories related to package preparation - Fix login not working for cloud images - Work around a seccomp podman issue on centos-8 - Tag multihost tests during import from Makefile - Adjust the simple test for ansible prepare - Remove hardcoded ansible_python_interpreter=auto - Fix lint and use it on the tmt repo itself - Obsolete the minute provision plugin - Update the documentation for contributors - Do not assert installed packages for recommend - Show link to the full debug log in the html report - Implement tmt clean command - Require a newer fmf which supports storing data - Allow to specify port in provision.connect - Surround classes and functions with 2 blank lines - Fix order of imports, sort them alphabetically - Update the provision step hardware specification - Fix tmt plan lint for multiple configurations - Add tmt status examples section - Add a context adjust example for the prepare step - Adjust the git suffix stripping for known forges - Strip git suffix from pagure/gitlab/github repos - Enable install plans for pull request testing - Adjust the essential attributes description - Document the essential class attributes - Improve the prepare step documentation - Correctly convert relevancy with the `!=` operator - Print note in report.html if it exists - Add note about error for beakerlib results - Adjust progress bar for the internal executor - Add test progress bar to non-verbose mode - Adjust the attribute linting for tests - Lint attribute names for test - Human friendly names for VMs --------------------------------------------------------------------------------
================================================================================ video-downloader-0.8.1-1.fc32 (FEDORA-2021-b02691b8ee) Download videos from websites like YouTube and many others -------------------------------------------------------------------------------- Update Information:
Update to 0.8.1 -------------------------------------------------------------------------------- ChangeLog:
* Sat May 1 2021 Artem Polishchuk ego.cordatus@gmail.com - 0.8.1-1 - build(update): 0.8.1 --------------------------------------------------------------------------------
================================================================================ xrdp-0.9.16-1.fc32 (FEDORA-2021-619398ec9d) Open source remote desktop protocol (RDP) server -------------------------------------------------------------------------------- Update Information:
Release notes for xrdp v0.9.15 (2020/12/28) New features - Allow token sign in without autologon for SSO (#1667 #1668) - Norwegian keyboard support (#1675) - Improved config support for chansrv (#1635) - Unified chansrv, sesman and libxrdp logging (#1633 #1708 #1738) - thanks to @aquesnel - Support SUSE move to /usr/etc (#1702) - Parameters may now be specified for user-specified shell (#1270 #1695) - xrdp executables now allow alternative config files to be specified with -c (#1588 #1650 #1651) - sesrun improvements (#1741) - Drive redirection location can now be specified (#1048) - Now compiles on RISC-V (#1761) Bug fixes - Additional buffer overflow checks (#1662) - FUSE support now builds on 32-bit platforms (#1682) - genkeymap array size conflict fixed (#1691) - Buffering issue with neutrinordp over a slow link fixed (#1608 1634) - Various documentation fixes (#1704 #1741 #1755 #1759) - Prevent PAM info message from causing authentication failure (#1727) - Cosmetic fixes for minor issues (#1751 #1755 #1749) - Try harder to clean up socket files on session exit (#1740 #1756) - xrdp-chansrv become defunct in docker while file copy (#1658) Internal changes - Compilation warnings with newer compilers (#1659 #1680) - Continuation Integration checks on 32-bit platforms now include FUSE support (#1682) - Continuation Integration builds now default to the Ubuntu Focal platform (#1666) - FUSE type tidy-ups (#1686) - Switch from Travis CI to GitHub Actions (#1728 #1732) - Easier to set up console logging for utilities (#1711) -------------------------------------------------------------------------------- ChangeLog:
* Sat May 1 2021 Bojan Smojver bojan@rexurive.com - 1:0.9.16-1 - Bump up to 0.9.16 * Thu Jan 28 2021 Fedora Release Engineering releng@fedoraproject.org - 1:0.9.15-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild --------------------------------------------------------------------------------