The following Fedora 35 Security updates need testing:
Age URL
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-486b697217
libjpeg-turbo-2.1.0-3.fc35
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-68713440cb
rust-addr2line-0.16.0-1.fc35 rust-backtrace-0.3.61-1.fc35
rust-cranelift-bforest-0.77.0-1.fc35 rust-cranelift-codegen-0.77.0-1.fc35
rust-cranelift-codegen-meta-0.77.0-1.fc35 rust-cranelift-codegen-shared-0.77.0-1.fc35
rust-cranelift-entity-0.77.0-1.fc35 rust-cranelift-frontend-0.77.0-1.fc35
rust-cranelift-native-0.77.0-1.fc35 rust-cranelift-wasm-0.77.0-1.fc35
rust-gimli-0.25.0-1.fc35 rust-object-0.26.2-1.fc35 rust-wasmparser-0.80.1-1.fc35
rust-wasmtime-cache-0.30.0-1.fc35 rust-wasmtime-environ-0.30.0-1.fc35
rust-wasmtime-fiber-0.30.0-1.fc35 rust-wasmtime-types-0.30.0-2.fc35
rust-wast-38.0.0-2.fc35 rust-wat-1.0.40-1.fc35
The following Fedora 35 Critical Path updates have yet to be approved:
Age URL
20
https://bodhi.fedoraproject.org/updates/FEDORA-2021-2b44db1c20
libtirpc-1.3.2-1.rc1.fc35
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4521e59508 qt3-3.3.8b-88.fc35
qtwebkit-2.3.4-35.fc35
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a38add0927 pungi-4.3.0-1.fc35
7
https://bodhi.fedoraproject.org/updates/FEDORA-2021-342f80f045
Thunar-4.16.10-1.fc35 xfconf-4.16.0-5.fc35
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-1058771386
libguestfs-1.46.0-1.fc35
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-5945df5d64
dnsmasq-2.86-2.fc35
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-486b697217
libjpeg-turbo-2.1.0-3.fc35
The following builds have been pushed to Fedora 35 updates-testing
SDL2-2.0.16-3.fc35
apache-cloudstack-cloudmonkey-6.2.0-1.fc35
arbor-0.5.2-4.fc35
cairomm-1.14.2-14.fc35
cairomm1.16-1.16.1-10.fc35
cryptopp-8.6.0-1.fc35
gnote-41.0-1.fc35
golang-github-dpotapov-spnego-0-6.20210926git298b63a.fc35
golang-github-tdewolff-parse-2.5.21-1.fc35
gplugin-0.34.1-1.fc35
libyui-mga-ncurses-1.1.0-4.fc35
libyui-ncurses-2.55.0-5.fc35
mingw-json-glib-1.6.6-1.fc35
mmapper-21.09.0-1.fc35
nispor-1.1.1-1.fc35
ocrmypdf-12.5.0-1.fc35
pipx-0.16.5-1.fc35
python-EvoPreprocess-0.4.2-5.fc35
python-dask-2021.9.1-1.fc35~bootstrap
rdma-core-37.0-1.fc35
tzdata-2021b-1.fc35
video-downloader-0.8.7-1.fc35
Details about builds:
================================================================================
SDL2-2.0.16-3.fc35 (FEDORA-2021-bdb5f837c9)
Cross-platform multimedia library
--------------------------------------------------------------------------------
Update Information:
Backport fixes for Wayland support
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Neal Gompa <ngompa(a)fedoraproject.org> - 2.0.16-3
- Backport select fixes from upstream
+ Support legacy 'pulse' alias for PulseAudio driver
+ Fix handling of Ctrl key on Wayland
+ Add support for HiDPI cursors on Wayland
+ Fix keymap support on Wayland (rhbz#2007969)
+ Use EGL_EXT_present_opaque when available on Wayland
+ Expose xdg_toplevel to SysWM on Wayland
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2007969 - Update to 2.0.16 broke select keyboard keys under Wayland
https://bugzilla.redhat.com/show_bug.cgi?id=2007969
--------------------------------------------------------------------------------
================================================================================
apache-cloudstack-cloudmonkey-6.2.0-1.fc35 (FEDORA-2021-c93e6832ee)
Apache Cloudstack Cloudmonkey
--------------------------------------------------------------------------------
Update Information:
Update to upstream 6.2.0 (fixes rhbz#2007649)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 25 2021 Olivier Lemasle <o.lemasle(a)gmail.com> - 6.2.0-1
- Update to upstream 6.2.0 (fixes rhbz#2007649)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2007649 - apache-cloudstack-cloudmonkey-6.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2007649
--------------------------------------------------------------------------------
================================================================================
arbor-0.5.2-4.fc35 (FEDORA-2021-e8024c7aee)
Multi-compartment neural network simulation library
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 25 2021 Ankur Sinha (Ankur Sinha Gmail) <sanjay.ankur(a)gmail.com> 0.5.2-4
- chore: remove second unneeded patch
* Sat Sep 25 2021 Ankur Sinha (Ankur Sinha Gmail) <sanjay.ankur(a)gmail.com> 0.5.2-3
- feat: correct flags for s390 builds
* Sat Sep 25 2021 Ankur Sinha (Ankur Sinha Gmail) <sanjay.ankur(a)gmail.com> 0.5.2-2
- chore: remove unused patch
* Sat Sep 25 2021 Ankur Sinha (Ankur Sinha Gmail) <sanjay.ankur(a)gmail.com> 0.5.2-1
- feat: update to 0.5.2
* Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> 0.3-13
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> 0.3-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1806306 - arbor requires Random123 which does not support s390x
https://bugzilla.redhat.com/show_bug.cgi?id=1806306
[ 2 ] Bug #1974843 - arbor-0.5.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1974843
[ 3 ] Bug #1977305 - arbor fails to build with Sphinx 4.0.2
https://bugzilla.redhat.com/show_bug.cgi?id=1977305
--------------------------------------------------------------------------------
================================================================================
cairomm-1.14.2-14.fc35 (FEDORA-2021-f71e801568)
C++ API for the cairo graphics library
--------------------------------------------------------------------------------
Update Information:
Improve documentation packaging
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 25 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 1.14.2-14
- In -doc, unbundle js-jquery and fix License
* Sat Sep 25 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 1.14.2-13
- Reduce macro indirection in spec file
--------------------------------------------------------------------------------
================================================================================
cairomm1.16-1.16.1-10.fc35 (FEDORA-2021-54f0f88c7a)
C++ API for the cairo graphics library
--------------------------------------------------------------------------------
Update Information:
Improve documentation packaging
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 1.16.1-10
- Mention search/search.js
* Sun Sep 26 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 1.16.1-9
- In -doc, unbundle js-jquery and fix License
* Sun Sep 26 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 1.16.1-8
- Use _docdir macro
* Sun Sep 26 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 1.16.1-7
- Reduce macro indirection in the spec file
--------------------------------------------------------------------------------
================================================================================
cryptopp-8.6.0-1.fc35 (FEDORA-2021-8b14da0538)
C++ class library of cryptographic schemes
--------------------------------------------------------------------------------
Update Information:
Update to 8.6.0.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Vasiliy N. Glazov <vascom2(a)gmail.com> 8.6.0-1
- Update to 8.6.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2002831 - CVE-2021-40530 cryptopp: ElGamal implementation allows plaintext
recovery [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2002831
--------------------------------------------------------------------------------
================================================================================
gnote-41.0-1.fc35 (FEDORA-2021-5c69014a91)
Note-taking application
--------------------------------------------------------------------------------
Update Information:
gnote 41.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Kalev Lember <klember(a)redhat.com> - 41.0-1
- Update to 41.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2007964 - gnote-41.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2007964
--------------------------------------------------------------------------------
================================================================================
golang-github-dpotapov-spnego-0-6.20210926git298b63a.fc35 (FEDORA-2021-69109c5998)
Cross-platform HTTP calls with Kerberos authentication
--------------------------------------------------------------------------------
Update Information:
Update to latest commit
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 0-6
- Update to latest commit
--------------------------------------------------------------------------------
================================================================================
golang-github-tdewolff-parse-2.5.21-1.fc35 (FEDORA-2021-8348861da8)
Go parsers for web formats
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 12 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 2.5.21-1
- Update to latest version (#2003317)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2003317 - golang-github-tdewolff-parse-2.5.21 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2003317
--------------------------------------------------------------------------------
================================================================================
gplugin-0.34.1-1.fc35 (FEDORA-2021-c95c9b68c2)
GObject based library that implements a reusable plugin system
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 0.34.1-1
- Update to latest version (#2007868)
* Fri Sep 24 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 0.34.0-1
- Update to latest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2007547 - gplugin-0.34.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2007547
[ 2 ] Bug #2007868 - gplugin-0.34.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2007868
--------------------------------------------------------------------------------
================================================================================
libyui-mga-ncurses-1.1.0-4.fc35 (FEDORA-2021-117b32eafe)
Libyui-Ncurses extensions for Mageia tools
--------------------------------------------------------------------------------
Update Information:
Workaround FTFBS caused by `ncurses-6.2-8.20210508`
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Neal Gompa <ngompa(a)fedoraproject.org> - 1.1.0-4
- Add workaround to fix FTBFS with ncurses-6.2-8.20210508 (#1987669)
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1987669 - libyui-mga-ncurses: FTBFS in Fedora rawhide/f35
https://bugzilla.redhat.com/show_bug.cgi?id=1987669
[ 2 ] Bug #1987670 - libyui-ncurses: FTBFS in Fedora rawhide/f35
https://bugzilla.redhat.com/show_bug.cgi?id=1987670
--------------------------------------------------------------------------------
================================================================================
libyui-ncurses-2.55.0-5.fc35 (FEDORA-2021-117b32eafe)
Character Based User Interface for libyui
--------------------------------------------------------------------------------
Update Information:
Workaround FTFBS caused by `ncurses-6.2-8.20210508`
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Neal Gompa <ngompa(a)fedoraproject.org> - 2.55.0-5
- Add workaround to fix FTBFS with ncurses-6.2-8.20210508 (#1987670)
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.55.0-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1987669 - libyui-mga-ncurses: FTBFS in Fedora rawhide/f35
https://bugzilla.redhat.com/show_bug.cgi?id=1987669
[ 2 ] Bug #1987670 - libyui-ncurses: FTBFS in Fedora rawhide/f35
https://bugzilla.redhat.com/show_bug.cgi?id=1987670
--------------------------------------------------------------------------------
================================================================================
mingw-json-glib-1.6.6-1.fc35 (FEDORA-2021-443fa530c2)
MinGW compiled library for JavaScript Object Notation format
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 1.6.6-1
- Update to latest version (#1996889)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1996889 - mingw-json-glib-1.6.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1996889
--------------------------------------------------------------------------------
================================================================================
mmapper-21.09.0-1.fc35 (FEDORA-2021-62c28006c6)
Graphical MUME mapper
--------------------------------------------------------------------------------
Update Information:
mmapper 21.09.0 release. For details, see
https://github.com/MUME/MMapper/releases/tag/v21.09.0
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Kalev Lember <klember(a)redhat.com> - 21.09.0-1
- Update to 21.09.0
* Tue Sep 14 2021 Sahana Prasad <sahana(a)redhat.com> - 21.08.0-2
- Rebuilt with OpenSSL 3.0.0
--------------------------------------------------------------------------------
================================================================================
nispor-1.1.1-1.fc35 (FEDORA-2021-e3db66a045)
Unified interface for Linux network state querying
--------------------------------------------------------------------------------
Update Information:
This is fixing the nmstate installation and also the nispor installation.
https://bugzilla.redhat.com/show_bug.cgi?id=1993329
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 10 2021 Fernando Fernandez Mancera <ffmancera(a)riseup.net> - 1.1.1-1
- Upgrade to 1.1.1
--------------------------------------------------------------------------------
================================================================================
ocrmypdf-12.5.0-1.fc35 (FEDORA-2021-123c2bfb4d)
Add an OCR text layer to scanned PDF files
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 12.5.0-1
- Update to latest version (#2000053)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2000053 - ocrmypdf-12.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2000053
--------------------------------------------------------------------------------
================================================================================
pipx-0.16.5-1.fc35 (FEDORA-2021-554d2a1fda)
Install and run Python applications in isolated environments
--------------------------------------------------------------------------------
Update Information:
**0.16.5** - Fixed `pipx list` output phrasing to convey that python version
displayed is the one with which package was installed. - Fixed `pipx install`
to provide return code 0 if venv already exists, similar to pip���s behavior.
(#736) **0.16.4** - Fix to `pipx ensurepath` to fix behavior in user locales
other than UTF-8, to fix #644. The internal change is to use userpath v1.6.0 or
greater. (#700) - Fix virtual environment inspection for Python releases that
uses an int for its release serial number. (#706) - Fix PermissionError in
windows when pipx manages itself. (#718)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.16.5-1
- Update to 0.16.5 (close RHBZ#2007950)
* Sun Sep 26 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.16.3-13
- Drop mkdocs support from the spec file completely
* Wed Sep 15 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.16.3-12
- Add a ���smoke test��� since it is impractical to run the upstream tests
* Wed Sep 15 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.16.3-11
- Update comment about shell completion directories
* Wed Sep 15 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.16.3-10
- Do not patch mkdocs.yml when we are not building documentation
* Sun Sep 12 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.16.3-9
- Let pyproject-rpm-macros handle the license file
* Sun Sep 12 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.16.3-8
- Drop BR on pyproject-rpm-macros, now implied by python3-devel
* Sun Sep 12 2021 Benjamin A. Beasley <code(a)musicinmybrain.net> 0.16.3-7
- Reduce macro indirection in the spec file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2007950 - pipx-0.16.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2007950
--------------------------------------------------------------------------------
================================================================================
python-EvoPreprocess-0.4.2-5.fc35 (FEDORA-2021-e2f594fcb0)
A Python Toolkit for Data Preprocessing
--------------------------------------------------------------------------------
Update Information:
Update
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.4.2-5
- Remove patch
* Sat Sep 25 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.4.2-4
- Use python rpm macros
--------------------------------------------------------------------------------
================================================================================
python-dask-2021.9.1-1.fc35~bootstrap (FEDORA-2021-a1122b827f)
Parallel PyData with Task Scheduling
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 22 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 2021.9.1-1
- Update to latest version (#2006577)
* Sat Sep 4 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 2021.9.0-1
- Update to latest version (#2001121)
* Sat Aug 21 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 2021.8.1-1
- Update to latest version (#1993560)
* Sat Aug 21 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 2021.8.0-3
- Add missing diagnostics subpackage.
* Sat Aug 21 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 2021.8.0-2
- Switch to latest Python macros.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2006577 - python-dask-2021.9.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2006577
--------------------------------------------------------------------------------
================================================================================
rdma-core-37.0-1.fc35 (FEDORA-2021-6ea7f45e8e)
RDMA core userspace libraries and daemons
--------------------------------------------------------------------------------
Update Information:
Rebase to upstream release rdma-core-37.0
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Honggang Li <honli(a)redhat.com> - 37.0-1
- Rebase to upstream release v37.0
--------------------------------------------------------------------------------
================================================================================
tzdata-2021b-1.fc35 (FEDORA-2021-67b2983add)
Timezone data
--------------------------------------------------------------------------------
Update Information:
Rebase to tzdata-2021b - Jordan now starts DST on February's last Thursday.
- Samoa no longer observes DST. - Merge more location-based Zones whose
timestamps agree since 1970. - Move some backward-compatibility links to
'backward'. - Rename Pacific/Enderbury to Pacific/Kanton. - Correct many
pre-1993 transitions in Malawi, Portugal, etc. - zic now creates each output
file or link atomically. - zic -L no longer omits the POSIX TZ string in its
output. - zic fixes for truncation and leap second table expiration. -
zic now follows POSIX for TZ strings using all-year DST. - Fix some
localtime crashes and bugs in obscure cases. - zdump -v now outputs more-
useful boundary cases. - tzfile.5 better matches a draft successor to RFC
8536.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 25 2021 Patsy Griffin <patsy(a)redhat.com> - 2021b-1
- Rebase to tzdata-2021b
- Jordan now starts DST on February's last Thursday.
- Samoa no longer observes DST.
- Merge more location-based Zones whose timestamps agree since 1970.
- Move some backward-compatibility links to 'backward'.
- Rename Pacific/Enderbury to Pacific/Kanton.
- Correct many pre-1993 transitions in Malawi, Portugal, etc.
- zic now creates each output file or link atomically.
- zic -L no longer omits the POSIX TZ string in its output.
- zic fixes for truncation and leap second table expiration.
- zic now follows POSIX for TZ strings using all-year DST.
- Fix some localtime crashes and bugs in obscure cases.
- zdump -v now outputs more-useful boundary cases.
- tzfile.5 better matches a draft successor to RFC 8536.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2007807 - tzdata-2021b is available
https://bugzilla.redhat.com/show_bug.cgi?id=2007807
--------------------------------------------------------------------------------
================================================================================
video-downloader-0.8.7-1.fc35 (FEDORA-2021-05e9bb9e81)
Download videos from websites like YouTube and many others
--------------------------------------------------------------------------------
Update Information:
Update to 0.8.7
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 26 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.8.7-1
- build(update): 0.8.7
--------------------------------------------------------------------------------