The following Fedora 32 Security updates need testing: Age URL 53 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4c8458e373 containernetworking-plugins-0.9.1-1.fc32 49 https://bodhi.fedoraproject.org/updates/FEDORA-2021-16d1596c42 buildah-1.19.4-1.fc32 38 https://bodhi.fedoraproject.org/updates/FEDORA-2021-88d9d29680 python3-3.8.8-1.fc32 7 https://bodhi.fedoraproject.org/updates/FEDORA-2021-662680e477 rpm-4.15.1.1-1.fc32.1 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-89cb264e4d exim-4.94-2.fc32 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-dc534847b2 atasm-1.09-1.fc32 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c93a3a5d3f libldb-2.1.5-1.fc32 samba-4.12.14-0.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-5a4377797c spamassassin-3.4.5-1.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-619711d709 webkit2gtk3-2.30.6-1.fc32 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-141d8640ce chromium-89.0.4389.90-3.fc32
The following Fedora 32 Critical Path updates have yet to be approved: Age URL 110 https://bodhi.fedoraproject.org/updates/FEDORA-2020-345d2fd2aa iproute-5.9.0-1.fc32 86 https://bodhi.fedoraproject.org/updates/FEDORA-2021-50c22ae8fd lua-socket-3.0-0.27.rc1.fc32 38 https://bodhi.fedoraproject.org/updates/FEDORA-2021-88d9d29680 python3-3.8.8-1.fc32 29 https://bodhi.fedoraproject.org/updates/FEDORA-2021-5cf5afe520 hwdata-0.345-1.fc32 19 https://bodhi.fedoraproject.org/updates/FEDORA-2021-ef4aa8623e gdisk-1.0.7-1.fc32 18 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b55547281d osinfo-db-20210312-1.fc32 12 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e33f35a999 thunderbird-78.8.1-1.fc32 12 https://bodhi.fedoraproject.org/updates/FEDORA-2021-6540e26fc2 quota-4.05-10.fc32 7 https://bodhi.fedoraproject.org/updates/FEDORA-2021-662680e477 rpm-4.15.1.1-1.fc32.1 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c93a3a5d3f libldb-2.1.5-1.fc32 samba-4.12.14-0.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-275679ee22 gtk3-3.24.28-1.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-619711d709 webkit2gtk3-2.30.6-1.fc32 3 https://bodhi.fedoraproject.org/updates/FEDORA-2021-dd636b1e54 libgweather-3.36.2-1.fc32 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-a51c0106f6 libkcapi-1.2.1-1.fc32 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-71928b0f1d nspr-4.30.0-1.fc32 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-7fa34a0d1f taglib-1.12-4.fc32
The following builds have been pushed to Fedora 32 updates-testing
crypto-1.0.0-2.20210330git837705e.fc32 decnumber-3.68.0-2.20210330gitda66509.fc32 dlib-19.22-1.fc32 dovecot-2.3.14-1.fc32 fedpkg-minimal-1.2.0-1.fc32 gn-1894-4.20210329gitb2e3d862.fc32 kernel-5.11.11-100.fc32 kernel-headers-5.11.11-100.fc32 kernel-tools-5.11.11-100.fc32 openssl-1.1.1k-1.fc32 python-absl-py-0.12.0-4.fc32 remmina-1.4.13-1.fc32 rsms-inter-fonts-3.17-1.fc32 sdl-telnet-1.0.0-2.20210330git2aca101.fc32
Details about builds:
================================================================================ crypto-1.0.0-2.20210330git837705e.fc32 (FEDORA-2021-baee58e653) Simple AES/DES encryption and SHA1/SHA2 hashing library -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1943965 - Review Request: crypto - Simple AES/DES encryption and SHA1/SHA2 hashing library https://bugzilla.redhat.com/show_bug.cgi?id=1943965 --------------------------------------------------------------------------------
================================================================================ decnumber-3.68.0-2.20210330gitda66509.fc32 (FEDORA-2021-775a94312f) ANSI C General Decimal Arithmetic Library -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1943968 - Review Request: decnumber - ANSI C General Decimal Arithmetic Library https://bugzilla.redhat.com/show_bug.cgi?id=1943968 --------------------------------------------------------------------------------
================================================================================ dlib-19.22-1.fc32 (FEDORA-2021-9e320a3ec1) A modern C++ toolkit containing machine learning algorithms -------------------------------------------------------------------------------- Update Information:
New stable release with enabled LAPACK support -------------------------------------------------------------------------------- ChangeLog:
* Mon Mar 29 2021 Luya Tshimbalanga luya@fedoraproject.org - 19.22-1 - Update to 19.22 - Enable BLAS and LAPACK support -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1943942 - dlib-19.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=1943942 --------------------------------------------------------------------------------
================================================================================ dovecot-2.3.14-1.fc32 (FEDORA-2021-d38e8f030c) Secure imap and pop3 server -------------------------------------------------------------------------------- Update Information:
- dovecot updated to 2.3.14, pigeonhole to 0.5.14 - use OpenSSL's implementation of HMAC - Remove autocreate, expire, snarf and mail-filter plugins. - Remove cydir storage driver. - Remove XZ/LZMA write support. Read support will be removed in future release. -------------------------------------------------------------------------------- ChangeLog:
* Mon Mar 22 2021 Michal Hlavinka mhlavink@redhat.com - 1:2.3.14-1 - dovecot updated to 2.3.14, pigeonhole to 0.5.14 - use OpenSSL's implementation of HMAC - Remove autocreate, expire, snarf and mail-filter plugins. - Remove cydir storage driver. - Remove XZ/LZMA write support. Read support will be removed in future release. * Mon Feb 8 2021 Pavel Raiskup praiskup@redhat.com - 1:2.3.13-7 - rebuild for libpq ABI fix rhbz#1908268 * Mon Feb 1 2021 Michal Hlavinka mhlavink@redhat.com - 1:2.3.13-6 - use make macros * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 1:2.3.13-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Mon Jan 18 2021 Michal Hlavinka mhlavink@redhat.com - 1:2.3.13-4 - fix multilib issues * Mon Jan 18 2021 Michal Hlavinka mhlavink@redhat.com - 1:2.3.13-3 - bump release and rebuild --------------------------------------------------------------------------------
================================================================================ fedpkg-minimal-1.2.0-1.fc32 (FEDORA-2021-962c8708a0) Script to allow fedpkg fetch to work -------------------------------------------------------------------------------- Update Information:
A new release that adds some new features including retries and downloads maximum time limits, empty line tolerance, split into `fedpkg` and `fedpkg-stg`. Fixes for example processing 'sources' files without trailing endline character. The following changelog lists all changes since the previous tag despite some of them were available as patches previously. Changelog: - 1.2.0 Release (onosek) - Accept files without trailing new-line - rhbz#1943593 (onosek) - Handle empty lines in sources file (onosek) - Retry stalled downloads after 15 minutes, with the maximum of 5 retries (contyk) - Make a fedpkg-base to distinguish between prod and stg (puiterwijk) - Add a basic set of tests (lsedlar) - Update $baseurl to src.fpo (lsedlar) - Make curl follow redirects (lsedlar) - remove the () in two steps (dennis) - Read BSD formatted sources (lsedlar) -------------------------------------------------------------------------------- ChangeLog:
* Mon Mar 29 2021 Ond��ej Nosek onosek@redhat.com - 1.2.0-1 - 1.2.0 Release (onosek) - Accept files without trailing new-line - rhbz#1943593 (onosek) - Handle empty lines in sources file (onosek) - Retry stalled downloads after 15 minutes, with the maximum of 5 retries (contyk) - Make a fedpkg-base to distinguish between prod and stg (puiterwijk) - Add a basic set of tests (lsedlar) - Update $baseurl to src.fpo (lsedlar) - Make curl follow redirects (lsedlar) - remove the () in two steps (dennis) - Read BSD formatted sources (lsedlar) * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 1.1.0-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Mon Jul 27 2020 Fedora Release Engineering releng@fedoraproject.org - 1.1.0-15 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ gn-1894-4.20210329gitb2e3d862.fc32 (FEDORA-2021-8e2a3312ac) Meta-build system that generates build files for Ninja -------------------------------------------------------------------------------- Update Information:
Update to version 1894 (Add "assert_no_deps" to gn.vim) -------------------------------------------------------------------------------- ChangeLog:
* Mon Mar 29 2021 Benjamin A. Beasley code@musicinmybrain.net - 1894-4.20210329gitb2e3d862 - Update to version 1894 --------------------------------------------------------------------------------
================================================================================ kernel-5.11.11-100.fc32 (FEDORA-2021-6b0f287b8b) The Linux kernel -------------------------------------------------------------------------------- Update Information:
The 5.11.11 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 30 2021 Justin M. Forbes jforbes@fedoraproject.org [5.11.11-100] - Set CONFIG_XEN_MEMORY_HOTPLUG_LIMIT as required by 5.11.11 (Justin M. Forbes) * Tue Mar 30 2021 Justin M. Forbes jforbes@fedoraproject.org [5.11.11-13] - drm/i915: Disable LTTPR support when the DPCD rev < 1.4 (Imre Deak) - drm/i915/dp: Prevent setting the LTTPR LT mode if no LTTPRs are detected (Imre Deak) - drm/i915/ilk-glk: Fix link training on links with LTTPRs (Imre Deak) - redhat/mod-blacklist.sh: Fix floppy blacklisting (Hans de Goede) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1944689 - CVE-2021-29264 kernel: DoS due to negative fragment size calculation in drivers/net/ethernet/freescale/gianfar.c https://bugzilla.redhat.com/show_bug.cgi?id=1944689 --------------------------------------------------------------------------------
================================================================================ kernel-headers-5.11.11-100.fc32 (FEDORA-2021-6b0f287b8b) Header files for the Linux kernel for use by glibc -------------------------------------------------------------------------------- Update Information:
The 5.11.11 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 30 2021 Justin M. Forbes jforbes@fedoraproject.org - 5.11.11-100 - Linux v5.11.11 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1944689 - CVE-2021-29264 kernel: DoS due to negative fragment size calculation in drivers/net/ethernet/freescale/gianfar.c https://bugzilla.redhat.com/show_bug.cgi?id=1944689 --------------------------------------------------------------------------------
================================================================================ kernel-tools-5.11.11-100.fc32 (FEDORA-2021-6b0f287b8b) Assortment of tools for the Linux kernel -------------------------------------------------------------------------------- Update Information:
The 5.11.11 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 30 2021 Justin M. Forbes jforbes@fedoraproject.org - 5.11.11-100 - Linux v5.11.11 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1944689 - CVE-2021-29264 kernel: DoS due to negative fragment size calculation in drivers/net/ethernet/freescale/gianfar.c https://bugzilla.redhat.com/show_bug.cgi?id=1944689 --------------------------------------------------------------------------------
================================================================================ openssl-1.1.1k-1.fc32 (FEDORA-2021-f347d1c866) Utilities from the general purpose cryptography library with TLS implementation -------------------------------------------------------------------------------- Update Information:
update to version 1.1.1k -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 26 2021 Sahana Prasad sahana@redhat.com - 1:1.1.1k-1 - Upgrade to version 1.1.1.k * Tue Feb 23 2021 Sahana Prasad sahana@redhat.com - 1:1.1.1j-1 - Upgrade to version 1.1.1.j * Wed Feb 10 2021 Sahana Prasad sahana@redhat.com - 1:1.1.1i-3 - Fix regression in X509_verify_cert() (bz1916594) * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 1:1.1.1i-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ python-absl-py-0.12.0-4.fc32 (FEDORA-2021-15db46cbe0) Abseil Python Common Libraries -------------------------------------------------------------------------------- Update Information:
Use pyproject-rpm-macros for build and install, too -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 30 2021 Benjamin A. Beasley code@musicinmybrain.net - 0.12.0-4 - Use pyproject-rpm-macros for build and install, too * Tue Mar 16 2021 Benjamin A. Beasley code@musicinmybrain.net - 0.12.0-3 - Drop python3dist(setuptools) BR, redundant with %pyproject_buildrequires --------------------------------------------------------------------------------
================================================================================ remmina-1.4.13-1.fc32 (FEDORA-2021-8b50270e6c) Remote Desktop Client -------------------------------------------------------------------------------- Update Information:
Update to 1.4.13. -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 30 2021 Simone Caronni negativo17@gmail.com - 1.4.13-1 - Update to 1.4.13. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1944578 - remmina-1.4.13 is available https://bugzilla.redhat.com/show_bug.cgi?id=1944578 --------------------------------------------------------------------------------
================================================================================ rsms-inter-fonts-3.17-1.fc32 (FEDORA-2021-6af8f12100) The Inter font family -------------------------------------------------------------------------------- Update Information:
Addresses a major regression in v3.16 where several italic glyphs got messed up due to a Glyphs 3 version upgrade of the source file. This only affected users of v3.16 which was only released for about 12 hours before being replaced with this release v3.17. [#360](https://github.com/rsms/inter/issues/360) ---- * Fixes issues with appearance in Microsoft Word. [#352](https://github.com/rsms/inter/issues/352) (note that [#156](https://github.com/rsms/inter/issues/156) is still unresolved although we have made some progress in v3.16 toward developing workarounds for certain printers.) * Fixes double grave interpolation issue. [#317](https://github.com/rsms/inter/issues/317) * Fixes design issue with glyphs acutedblnosp, dblgravecmb, uni02F6 and uni02F5. [#339](https://github.com/rsms/inter/issues/339) * Fixes missing or incorrect mark anchors in several turn* glyphs. [#336](https://github.com/rsms/inter/issues/336) * Adds Baht currency glyph U+0E3F. [#323](https://github.com/rsms/inter/issues/323) * Improvement to Latin iota (lower and upper case) glyphs. [#340](https://github.com/rsms/inter/issues/340) * Improvement to some numerical fraction glyphs * Adds a dummy DSIG table to address issues with Microsoft Office 2003 and older * Improvements when using Inter with certain older Microsoft products by decomposing any nested components which some of that software has issues with -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 30 2021 Mohamed El Morabity melmorabity@fedoraproject.org - 3.17-1 - Update to 3.17 * Mon Mar 29 2021 Mohamed El Morabity melmorabity@fedoraproject.org - 3.16-1 - Update to 3.16 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1944063 - rsms-inter-fonts-3.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1944063 [ 2 ] Bug #1944479 - rsms-inter-fonts-3.17 is available https://bugzilla.redhat.com/show_bug.cgi?id=1944479 --------------------------------------------------------------------------------
================================================================================ sdl-telnet-1.0.0-2.20210330git2aca101.fc32 (FEDORA-2021-6361409a91) Simple RFC-compliant TELNET implementation -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1943969 - Review Request: sdl-telnet - Simple RFC-compliant TELNET implementation https://bugzilla.redhat.com/show_bug.cgi?id=1943969 --------------------------------------------------------------------------------