The following Fedora 35 Security updates need testing: Age URL 119 https://bodhi.fedoraproject.org/updates/FEDORA-2022-2e85e6cfc9 libdxfrw-1.0.1-3.fc35 librecad-2.2.0-0.13.rc3.fc35 111 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dfc6924a11 mysql-connector-java-8.0.28-1.fc35 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ff0188b37c logrotate-3.18.1-4.fc35 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-62c0ec2d98 dotnet3.1-3.1.419-1.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4131ced81a qt5-qtbase-5.15.2-31.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-39e057bc6d cups-2.3.3op2-18.fc35 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3482bd98e6 thunderbird-91.10.0-1.fc35 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-396c568c5e buildah-1.23.4-1.fc35 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-c05acca28d webkit2gtk3-2.36.3-1.fc35
The following Fedora 35 Critical Path updates have yet to be approved: Age URL 14 https://bodhi.fedoraproject.org/updates/FEDORA-2022-eb6c837b39 annobin-10.73-1.fc35 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ffad9aca7a binutils-2.37-19.fc35 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d54fbb6067 whois-5.5.13-1.fc35 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-29305e84f3 libbpf-0.6.1-2.fc35 9 https://bodhi.fedoraproject.org/updates/FEDORA-2022-afb8180724 hicolor-icon-theme-0.17-12.fc35 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-55e3c16100 btrfs-progs-5.18-1.fc35 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4d12669c6b libbytesize-2.7-1.fc35 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-11dae769e4 evolution-data-server-3.42.5-2.fc35 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-c309c88776 guestfs-tools-1.48.2-1.fc35 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f54fea9b5 libguestfs-1.48.3-1.fc35 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ff0188b37c logrotate-3.18.1-4.fc35 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-29f6b40ece dnf-plugins-core-4.2.1-1.fc35 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-8568c6f3ac gnutls-3.7.6-1.fc35 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-c83a57d203 gnome-control-center-41.7-1.fc35 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e79f76c807 koji-1.29.0-1.fc35 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-56dabf46ba gnome-remote-desktop-41.3-1.fc35 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-27db2073b2 gnome-shell-41.7-1.fc35 mutter-41.7-1.fc35 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-bdd6c93ae3 gnome-terminal-3.42.3-1.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d4990ace9c alsa-lib-1.2.7-1.fc35 alsa-utils-1.2.7-1.fc35 python-alsa-1.2.7-1.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4959fb93db glibc-2.34-35.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-39e057bc6d cups-2.3.3op2-18.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-741a6dcb0e tigervnc-1.12.0-6.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4131ced81a qt5-qtbase-5.15.2-31.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-a5f5774997 libdvdread-6.1.3-1.fc35 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d39f3deadf dnf-4.13.0-1.fc35 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3fba3b48c4 libblockdev-2.27-1.fc35 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3482bd98e6 thunderbird-91.10.0-1.fc35 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4b920bda43 hwdata-0.360-1.fc35 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3d8af90f0d gvfs-1.48.2-1.fc35 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-c05acca28d webkit2gtk3-2.36.3-1.fc35 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ab84213c9e sssd-2.7.1-1.fc35
The following builds have been pushed to Fedora 35 updates-testing
borgmatic-1.6.2-2.fc35 firefox-101.0-1.fc35 google-crc32c-1.1.2-3.fc35 magic-8.3.308-1.fc35 powerline-2.8.3-3.fc35 python-google-cloud-storage-2.3.0-2.fc35 rstudio-2022.02.3+492-1.fc35 rubygem-nokogiri-1.13.1-4.fc35 vim-8.2.5052-1.fc35
Details about builds:
================================================================================ borgmatic-1.6.2-2.fc35 (FEDORA-2022-1654971999) Simple Python wrapper script for borgbackup -------------------------------------------------------------------------------- Update Information:
- [#523](https://projects.torsion.org/borgmatic- collective/borgmatic/issues/523): Reduce the default consistency check frequency and support configuring the frequency independently for each check. Also add "borgmatic check --force" flag to ignore configured frequencies. See the documentation for more information: [https://torsion.org/borgmatic/docs/how-to/deal-with-very-large-backups/#chec... frequency](https://torsion.org/borgmatic/docs/how-to/deal-with-very-large- backups/#check-frequency) - [#536](https://projects.torsion.org/borgmatic- collective/borgmatic/issues/536): Fix generate-borgmatic-config to support more complex schema changes like the new Healthchecks configuration options when the "--source" flag is used. - [#538](https://projects.torsion.org/borgmatic-collective/borgmatic/issues/538): Add support for "borgmatic borg debug" command. - [#539](https://projects.torsion.org/borgmatic-collective/borgmatic/issues/539): Add "generate-borgmatic-config --overwrite" flag to replace an existing destination file. - Add Bash completion script so you can tab-complete the borgmatic command-line. See the documentation for more information: [https://torsion.org/borgmatic/docs/how-to/set-up-backups/#shell- completion](https://torsion.org/borgmatic/docs/how-to/set-up-backups/#shell- completion) -------------------------------------------------------------------------------- ChangeLog:
* Wed Jun 1 2022 Felix Kaechele felix@kaechele.ca - 1.6.2-2 - use pyproject rpm macros - drop support for EPEL < 9 * Wed Jun 1 2022 Felix Kaechele felix@kaechele.ca - 1.6.2-1 - update to 1.6.2 - install bash-completion files -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2092067 - borgmatic-1.6.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2092067 --------------------------------------------------------------------------------
================================================================================ firefox-101.0-1.fc35 (FEDORA-2022-bf1df71b2a) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information:
- New upstream version (101.0) ---- - Fixed missing popups in some scenarios on Wayland (https://bugzilla.mozilla.org/show_bug.cgi?id=1771104) -------------------------------------------------------------------------------- ChangeLog:
* Mon May 30 2022 Martin Stransky stransky@redhat.com- 101.0-1 - Updated to 101.0 * Wed May 25 2022 Martin Stransky stransky@redhat.com- 100.0.2-2 - Added fix for mzbz#1771104 --------------------------------------------------------------------------------
================================================================================ google-crc32c-1.1.2-3.fc35 (FEDORA-2022-8fd09ca746) CRC32C implementation with support for CPU-specific acceleration instructions -------------------------------------------------------------------------------- Update Information:
Fix %cmake build line -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 3 2022 Major Hayden major@redhat.com 1.1.2-3 - Drop period from cmake line * Tue May 10 2022 Major Hayden major@mhtx.net 1.1.2-1 - Update to 1.1.2 * Thu Jan 20 2022 Fedora Release Engineering releng@fedoraproject.org 1.1.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ magic-8.3.308-1.fc35 (FEDORA-2022-0882b33326) A very capable VLSI layout tool -------------------------------------------------------------------------------- Update Information:
New version 8.3.308 is released. -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 3 2022 Mamoru TASAKA mtasaka@fedoraproject.org - 8.3.308-1 - 8.3.308 --------------------------------------------------------------------------------
================================================================================ powerline-2.8.3-3.fc35 (FEDORA-2022-168b68b066) The ultimate status-line/prompt utility -------------------------------------------------------------------------------- Update Information:
Build `powerline` binary with correct linker flags -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 3 2022 Christoph Erhardt fedora@sicherha.de - 2.8.3-3 - Build `powerline` binary with correct linker flags - Make Fontconfig symlink relative - Change fontconfig dependency to fontpackages-filesystem (#2093167) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2093167 - powerline-fonts shouldn't have a dependency to fontconfig https://bugzilla.redhat.com/show_bug.cgi?id=2093167 --------------------------------------------------------------------------------
================================================================================ python-google-cloud-storage-2.3.0-2.fc35 (FEDORA-2022-9c66e62fcc) Python Client for Google Cloud Storage -------------------------------------------------------------------------------- Update Information:
Update to 2.3.0 -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 3 2022 Major Hayden major@redhat.com 2.3.0-2 - Add import check, remove mock patch * Wed Apr 13 2022 Major Hayden major@mhtx.net 2.3.0-1 - Update to 2.3.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2075158 - python-google-cloud-storage-2.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2075158 --------------------------------------------------------------------------------
================================================================================ rstudio-2022.02.3+492-1.fc35 (FEDORA-2022-a589c9ac55) RStudio base package -------------------------------------------------------------------------------- Update Information:
Update to 2022.02.3+492 -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 3 2022 I��aki ��car iucar@fedoraproject.org - 2022.02.3+492-1 - Update to 2022.02.3+492 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2092852 - rstudio-2022.02.3+492 is available https://bugzilla.redhat.com/show_bug.cgi?id=2092852 --------------------------------------------------------------------------------
================================================================================ rubygem-nokogiri-1.13.1-4.fc35 (FEDORA-2022-34e98b9f22) An HTML, XML, SAX, and Reader parser -------------------------------------------------------------------------------- Update Information:
Make package more compatible with libxml2 2.9.14 -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 3 2022 Mamoru TASAKA mtasaka@fedoraproject.org - 1.13.1-4 - Make test suite pass with libxml2 2.9.14 --------------------------------------------------------------------------------
================================================================================ vim-8.2.5052-1.fc35 (FEDORA-2022-bb2daad935) The VIM editor -------------------------------------------------------------------------------- Update Information:
Security fixes for CVE-2022-1886, CVE-2022-1942 ---- Security fixes for CVE-2022-1851, CVE-2022-1898, CVE-2022-1897, CVE-2022-1927 -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 3 2022 Zdenek Dohnal zdohnal@redhat.com - 2:8.2.5052-1 - patchlevel 5052 * Tue May 31 2022 Zdenek Dohnal zdohnal@redhat.com - 2:8.2.5046-1 - patchlevel 5046 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2091676 - CVE-2022-1851 vim: out-of-bounds read in gchar_cursor() in misc1.c https://bugzilla.redhat.com/show_bug.cgi?id=2091676 [ 2 ] Bug #2091679 - CVE-2022-1898 vim: use-after-free in find_pattern_in_path() in search.c https://bugzilla.redhat.com/show_bug.cgi?id=2091679 [ 3 ] Bug #2091682 - CVE-2022-1897 vim: out-of-bounds write in vim_regsub_both() in regexp.c https://bugzilla.redhat.com/show_bug.cgi?id=2091682 [ 4 ] Bug #2091687 - CVE-2022-1927 vim: buffer over-read in utf_ptr2char() in mbyte.c https://bugzilla.redhat.com/show_bug.cgi?id=2091687 [ 5 ] Bug #2092890 - CVE-2022-1942 vim: out of bounds write in vim_regsub_both() https://bugzilla.redhat.com/show_bug.cgi?id=2092890 [ 6 ] Bug #2092973 - CVE-2022-1886 vim: heap-based buffer overflow in function utf_head_off https://bugzilla.redhat.com/show_bug.cgi?id=2092973 --------------------------------------------------------------------------------