The following Fedora 36 Security updates need testing: Age URL 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ea3ebeff3d libtiff-4.4.0-1.fc36 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9da5703d22 python3-docs-3.10.5-1.fc36 python3.10-3.10.5-2.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-0142d562ca collectd-5.12.0-16.fc36 qemu-6.2.0-12.fc36 xen-4.16.1-2.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-61cf1c64f6 uboot-tools-2022.04-2.fc36 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-cc9a173168 python-bottle-0.12.21-2.fc36 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b651cb69e6 openssl1.1-1.1.1o-1.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-185697ef56 golang-github-emicklei-restful-3.8.0-1.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-23adf3d425 ghex-42.3-1.fc36 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-69bc42d6cf mediawiki-1.37.2-1.fc36 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4a69d20cf4 python2.7-2.7.18-22.fc36 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-a14a16369d dotnet6.0-6.0.106-1.fc36
The following Fedora 36 Critical Path updates have yet to be approved: Age URL 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ea3ebeff3d libtiff-4.4.0-1.fc36 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4300e4c941 binutils-2.37-31.fc36 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9da5703d22 python3-docs-3.10.5-1.fc36 python3.10-3.10.5-2.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-61cf1c64f6 uboot-tools-2022.04-2.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-0142d562ca collectd-5.12.0-16.fc36 qemu-6.2.0-12.fc36 xen-4.16.1-2.fc36 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dc399204c9 libldb-2.5.1-1.fc36 libtalloc-2.3.4-1.fc36 libtdb-1.4.7-1.fc36 libtevent-0.12.1-1.fc36 samba-4.16.2-0.fc36 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b651cb69e6 openssl1.1-1.1.1o-1.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-071c62ce61 annobin-10.76-1.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-50f2417a83 nettle-3.8-1.fc36 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-57298034d1 exo-4.16.4-1.fc36 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-042ee3d97e livecd-tools-31.0-1.fc36 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-455215febb pungi-4.3.5-1.fc36 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-5e0e580b9d gupnp-av-0.14.1-1.fc36 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d633137ca8 rygel-0.40.4-1.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-bfa1449ae9 mesa-22.1.2-1.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-14cdccf86b libxslt-1.1.35-2.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-f277d02a73 krb5-1.19.2-11.fc36 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-5db11a5bfe alsa-lib-1.2.7.1-1.fc36 alsa-plugins-1.2.7.1-1.fc36 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-2400ac51cb gnome-software-42.2-4.fc36 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-12673da823 dnsmasq-2.86-9.fc36
The following builds have been pushed to Fedora 36 updates-testing
bettercap-2.32.0-3.fc36 bubblemail-1.8-1.fc36 deepin-calculator-5.7.20-1.fc36 deepin-editor-5.10.18-1.fc36 deepin-picker-5.0.28-1.fc36 dkms-3.0.4-1.fc36 dmlite-1.15.2-7.fc36 dtkcommon-5.5.22-1.fc36 dtkcore-5.5.30-1.fc36 fish-3.5.0-1.fc36 gajim-1.4.4-1.fc36 gearhead1-1.310-9.fc36 golang-github-google-cel-0.11.4-2.fc36 ipe-7.2.24-5.fc36 mold-1.3.0-1.fc36 python-rnc2rng-2.6.6-1.fc36 python-scikit-uplift-0.4.1-1.fc36 thc-ipv6-3.8-1.fc36 unrealircd-6.0.4-1.fc36
Details about builds:
================================================================================ bettercap-2.32.0-3.fc36 (FEDORA-2022-3c036078d5) Tool for 802.11, BLE and Ethernet reconnaissance and MITM attacks -------------------------------------------------------------------------------- Update Information:
Disable package_note on arm too -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robert-Andr�� Mauchin zebob.m@gmail.com 2.32.0-3 - Disable package_note on arm too * Sat Jun 18 2022 Robert-Andr�� Mauchin zebob.m@gmail.com 2.32.0-2 - Add workaround for package_note error * Sat Jun 18 2022 Robert-Andr�� Mauchin zebob.m@gmail.com 2.32.0-1 - Update to 2.32.0 Close: rhbz#1918319 * Fri Jun 17 2022 Robert-Andr�� Mauchin zebob.m@gmail.com - 2.28-10 - Rebuilt for CVE-2022-1996, CVE-2022-24675, CVE-2022-28327, CVE-2022-27191, CVE-2022-29526, CVE-2022-30629 --------------------------------------------------------------------------------
================================================================================ bubblemail-1.8-1.fc36 (FEDORA-2022-eebfc5b7b6) Extensible mail notification service -------------------------------------------------------------------------------- Update Information:
Update to v1.8. This version introduces the option to connect to a mail server through a proxy. -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Alexander Ploumistos alexpl@fedoraproject.org - 1.8-1 - Update to 1.8 - Add python3-pysocks dependency for connecting through a proxy -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2098319 - bubblemail-1.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=2098319 --------------------------------------------------------------------------------
================================================================================ deepin-calculator-5.7.20-1.fc36 (FEDORA-2022-d8cac2755c) An easy to use calculator for ordinary users -------------------------------------------------------------------------------- Update Information:
Deepin DE cumulative updates -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robin Lee cheeselee@fedoraproject.org 5.7.20-1 - New release 5.7.20 --------------------------------------------------------------------------------
================================================================================ deepin-editor-5.10.18-1.fc36 (FEDORA-2022-d8cac2755c) Simple editor for Linux Deepin -------------------------------------------------------------------------------- Update Information:
Deepin DE cumulative updates -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robin Lee cheeselee@fedoraproject.org 5.10.18-1 - New release 5.10.18 * Thu May 19 2022 Jan Grulich jgrulich@redhat.com 5.10.14-3 - Fix KF5 includes * Tue May 17 2022 Jan Grulich jgrulich@redhat.com 5.10.14-2 - Rebuild (qt5) --------------------------------------------------------------------------------
================================================================================ deepin-picker-5.0.28-1.fc36 (FEDORA-2022-d8cac2755c) A color picker tool for deepin -------------------------------------------------------------------------------- Update Information:
Deepin DE cumulative updates -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robin Lee cheeselee@fedoraproject.org 5.0.28-1 - New release 5.0.28 --------------------------------------------------------------------------------
================================================================================ dkms-3.0.4-1.fc36 (FEDORA-2022-b82248f5b5) Dynamic Kernel Module Support Framework -------------------------------------------------------------------------------- Update Information:
Various bugfixes. -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Simone Caronni negativo17@gmail.com - 3.0.4-1 - Update to 3.0.4. --------------------------------------------------------------------------------
================================================================================ dmlite-1.15.2-7.fc36 (FEDORA-2022-90ab11e80c) Lcgdm grid data management and storage framework -------------------------------------------------------------------------------- Update Information:
- Added new dependency on xrootd-voms - Fixed BDII ldif generation by new python ldap3 module - Fixed main dCache config template -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Petr Vokac petr.vokac@cern.ch - 1.15.2-7 - Added new dependency on xrootd-voms - Fixed BDII ldif generation by new python ldap3 module - Fixed main dCache config template * Mon Jun 13 2022 Python Maint python-maint@redhat.com - 1.15.2-6 - Rebuilt for Python 3.11 --------------------------------------------------------------------------------
================================================================================ dtkcommon-5.5.22-1.fc36 (FEDORA-2022-d8cac2755c) DTK common files -------------------------------------------------------------------------------- Update Information:
Deepin DE cumulative updates -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robin Lee cheeselee@fedoraproject.org 5.5.22-1 - New release 5.5.22 --------------------------------------------------------------------------------
================================================================================ dtkcore-5.5.30-1.fc36 (FEDORA-2022-d8cac2755c) Deepin tool kit core modules -------------------------------------------------------------------------------- Update Information:
Deepin DE cumulative updates -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robin Lee cheeselee@fedoraproject.org 5.5.30-1 - New release 5.5.30 * Tue May 17 2022 Jan Grulich jgrulich@redhat.com 5.5.27-2 - Rebuild (qt5) --------------------------------------------------------------------------------
================================================================================ fish-3.5.0-1.fc36 (FEDORA-2022-6ad9f82aba) Friendly interactive shell -------------------------------------------------------------------------------- Update Information:
Update to 3.5.0 -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 17 2022 Siteshwar Vashisht svashisht@redhat.com 3.5.0-1 - Update to 3.5.0 --------------------------------------------------------------------------------
================================================================================ gajim-1.4.4-1.fc36 (FEDORA-2022-7216994a4e) Jabber client written in PyGTK -------------------------------------------------------------------------------- Update Information:
Update to 1.4.4 ---- Add (weak) dependencies for OMEMO plugin -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Michael Kuhn suraia@fedoraproject.org - 1.4.4-1 - Update to 1.4.4 * Sun Jun 12 2022 Michael Kuhn suraia@fedoraproject.org - 1.4.3-2 - Add (weak) dependencies for OMEMO plugin -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2098334 - gajim-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2098334 --------------------------------------------------------------------------------
================================================================================ gearhead1-1.310-9.fc36 (FEDORA-2022-57fa50acd9) Roguelike mecha role-playing game -------------------------------------------------------------------------------- Update Information:
Fix installing doc files, get rid of wrapper scripts -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Artur Frenszek-Iwicki fedora@svgames.pl - 1.310-9 - Add a patch to change program data paths, instead of using a wrapper script - Fix installing documentation (it is used by program at run-time) --------------------------------------------------------------------------------
================================================================================ golang-github-google-cel-0.11.4-2.fc36 (FEDORA-2022-1b119ea914) Fast, portable, non-Turing complete expression evaluation -------------------------------------------------------------------------------- Update Information:
Disable common/types/int_test.go for ARM too -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robert-Andr�� Mauchin zebob.m@gmail.com 0.11.4-2 - Disable common/types/int_test.go for ARM too * Fri Jun 10 2022 Mikel Olasagasti Uranga mikel@olasagasti.info 0.11.4-1 - Update to 0.11.4 - Closes rhbz#1963633 rhbz#2045513 * Fri Jun 10 2022 Jerry James loganjerry@gmail.com - 0.7.0-4 - Generate the ANTLR parser from source * Thu Jan 20 2022 Fedora Release Engineering releng@fedoraproject.org - 0.7.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ ipe-7.2.24-5.fc36 (FEDORA-2022-2117b78346) Drawing editor for creating figures in PDF or PostScript formats -------------------------------------------------------------------------------- Update Information:
- fix crashes on startup -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Mukundan Ragavan nonamedotc@fedoraproject.org - 7.2.24-5 - Add patch to fix crash on startup (Fixes rhbz#2088015) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2088015 - ipe crashes on startup https://bugzilla.redhat.com/show_bug.cgi?id=2088015 --------------------------------------------------------------------------------
================================================================================ mold-1.3.0-1.fc36 (FEDORA-2022-606bb9edd7) A Modern Linker -------------------------------------------------------------------------------- Update Information:
Bump version to 1.3.0 (#2098316) -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Christoph Erhardt fedora@sicherha.de - 1.3.0-1 - Bump version to 1.3.0 (#2098316) - Drop upstreamed patches -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2098316 - mold-1.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2098316 --------------------------------------------------------------------------------
================================================================================ python-rnc2rng-2.6.6-1.fc36 (FEDORA-2022-5c2e282ce8) RELAX NG Compact to regular syntax conversion library -------------------------------------------------------------------------------- Update Information:
Update to 2.6.6 -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 2.6.6-1 - Update to 2.6.6 - Remove obsolete macro * Mon Jun 13 2022 Python Maint python-maint@redhat.com - 2.6.1-13 - Rebuilt for Python 3.11 * Fri Jan 21 2022 Fedora Release Engineering releng@fedoraproject.org - 2.6.1-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1821557 - python-rnc2rng-2.6.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1821557 [ 2 ] Bug #2019081 - python-rnc2rng: FTBFS in Fedora Rawhide, 2to3 removed in setuptools 58+ https://bugzilla.redhat.com/show_bug.cgi?id=2019081 --------------------------------------------------------------------------------
================================================================================ python-scikit-uplift-0.4.1-1.fc36 (FEDORA-2022-a7796803ee) Uplift modeling in scikit-learn style in python -------------------------------------------------------------------------------- Update Information:
Update to 0.4.1 -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.4.1-1 - Update to 0.4.1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2098201 - python-scikit-uplift-0.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2098201 --------------------------------------------------------------------------------
================================================================================ thc-ipv6-3.8-1.fc36 (FEDORA-2022-8552604ce9) Toolkit for attacking the IPv6 protocol suite -------------------------------------------------------------------------------- Update Information:
# THC IPv6 attack toolkit v3.8 * Fixed crash in `thcping6` with `-n 0` or larger values * Fixed minor issues * Honors now `CC` and `CLAGS` environment variables and compiles with `clang` * Fixed various issues * New code indention # THC IPv6 attack toolkit v3.6 * Long interface names are now supported * Added error check for openssl `BN_` functions * Added support for global destinations for `dump_dhcp6` * Added new tool: `connect6`, useful for tcp6 connect pings * Added `-i` microseconds interval option for `smurf6` and `thcsyn6` * Added `-w` timeout option to `thcping6` -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robert Scheck robert@fedoraproject.org - 3.8-1 - Upgrade to 3.8 (#1902857) - Spec file modernization including support for RHEL/CentOS 7 - Remove perl(Socket6) dependency (thanks to Michal Josef ��pa��ek) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1902857 - thc-ipv6-3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1902857 --------------------------------------------------------------------------------
================================================================================ unrealircd-6.0.4-1.fc36 (FEDORA-2022-68e67ecd28) Open Source IRC server -------------------------------------------------------------------------------- Update Information:
# UnrealIRCd 6.0.4 This release comes with lots of features and enhancements. In particular, security groups and mask items now allow you to write cleaner and more flexible configuration files. There are also JSON logging enhancements and several bug fixes. ## Enhancements * Show security groups in `WHOIS` * The [security-group](https://www.unrealircd.org/docs/Security-group_block) block has been expanded and the same functionality is now available in [mask items](https://www.unrealircd.org/docs/Mask_item) too: * This means the existing options like `identified`, `webirc`, `tls` and `reputation-score` can be used in `allow::mask` etc. * New options (in both security-group and mask) are: * `connect-time`: time a user is connected to IRC * `security-group`: to check another security group * `account`: services account name * `country`: country code, as found by GeoIP * `realname`: realname (gecos) of the user * `certfp`: certificate fingerprint * Every option also has an exclude- variant, e.g. `exclude- country`. If a user matches any `exclude-` option then it is considered not a match. * The modules [connthrottle](https://www.unrealircd.org/docs/Connthrottle), [restrict- commands](https://www.unrealircd.org/docs/Set_block#set::restrict-commands) and [antirandom](https://www.unrealircd.org/docs/Set_block#set::antirandom) now use the new `except` sub-block which is a mask item. The old syntax (e.g. `set::antirandom::except-webirc`) is still accepted by UnrealIRCd and converted to the appropriate new setting behind the scenes (`set::antirandom::except::webirc`). * The modules [blacklist](https://www.unrealircd.org/docs/Blacklist_block) and [antimixedutf8](https://www.unrealircd.org/docs/Set_block#set::antimixedutf8) now also support the `except` block (a mask item). * Other than that the extended functionality is available in these blocks: `allow`, `oper`, `tld`, `vhost`, `deny channel`, `allow channel`. * Example of direct use in a ::mask item: ``` /* Spanish MOTD for Spanish speaking countries */ tld { mask { country { ES; AR; BO; CL; CO; CR; DO; EC; SV; GT; HN; MX; NI; PA; PY; PE; PR; UY; VE; } } motd "motd.es.txt"; rules "rules.es.txt"; } ``` * Example of defining a security group and using it in a mask item later: ``` security-group irccloud { mask { ip1; ip2; ip3; ip4; } } allow { mask { security-group irccloud; } class clients; maxperip 128; } except ban { mask { security-group irccloud; } type { blacklist; connect-flood; handshake-data-flood; } } ``` * Because the mask item is so powerful now, the `password` in the [oper block](https://www.unrealircd.org/docs/Oper_block) is optional now. * We now support `oper::auto-login`, which means the user will become IRCOp automatically if they match the conditions on-connect. This can be used in combination with [certificate fingerprint](https://www.unrealircd.org/docs/Certificate_fingerprint) authentication for example: ``` security-group Syzop { certfp "1234etc."; } oper Syzop { auto-login yes; mask { security-group Syzop; } operclass netadmin-with-override; class opers; } except ban { mask { security- group Syzop; } type all; } ``` * For [JSON logging](https://www.unrealircd.org/docs/JSON_logging) a number of fields were added when a client is expanded: * `geoip`: with subitem `country_code` (e.g. NL) * `tls`: with subitems `cipher` and `certfp` * Under subitem `users`: * `vhost`: if the visible host differs from the realhost then this is set (thus for both vhost and cloaked host) * `cloakedhost`: this is always set (except for e.g. services users), even if the user is not cloaked so you can easily search on a cloaked host. * `idle_since`: last time the user has spoken (local clients only) * `channels`: list of channels (array), with a maximum of 384 chars. * The JSON logging now also strips ASCII below 32, so color- and control codes. * Support IRCv3 `+draft/channel- context` * Add `example.es.conf` (Spanish example configuration file) * The country of users is now communicated in the [message- tag](https://www.unrealircd.org/docs/Message_tags) `unrealircd.org/geoip` (only to IRCOps). * Add support for linking servers via UNIX domain sockets (`link::outgoing::file`). ## Fixes * Crash in `except ban` with `~security- group:xyz` * Crash if hideserver module was loaded but `LINKS` was not blocked. * Infinite loop if one security-group referred to another. * Duplicate entries in the `+beI` lists of `+P` channels. * Regular users were able to `-o` a service bot (that has umode `+S`) * Module manager did not stop on compile error * [`set::modes-on- join`](https://www.unrealircd.org/docs/Set_block#set::modes-on-join) did not work with `+f` + timed bans properly, e.g. `[3t#b1]:10` * Several log messages were missing some information. * Reputation syncing across servers had a small glitch. Fix is mostly useful for servers that were not linked to the network for days or weeks. ## Changes * Clarified that UnrealIRCd is licensed as "GPLv2 or later" * Fix use of variables in [`set::reject- message`](https://www.unrealircd.org/docs/Set_block#set::reject-message) and in [`blacklist::reason`](https://www.unrealircd.org/docs/Blacklist_block): previously short forms of variables were (unintentionally) expanded as well, such as `$serv` for `$server`. This is no longer supported, you need to use the correct full variable names. ## Developers and protocol * The `creationtime` is now communicated of users. Until now this information was only known locally (the thing that was communicated that came close was "last nick change" but that is not the same). This is synced via (early) moddata across servers. Module coders can use `get_connected_time()`. * The `RPL_HOSTHIDDEN` is now sent from `userhost_changed()` so you don't explicitly send it yourself anymore. * The `SVSO` command is back, so services can make people IRCOp again. See `HELPOP SVSO` or [the commit](https://github.com/unrealircd/unrealircd/commit/50e5d91c79 8e7d07ca0c68d9fca302a6b6610786) for more information. * Due to last change the `HOOKTYPE_LOCAL_OPER` parameters were changed. * Module coders can enhance the [JSON logging](https://www.unrealircd.org/docs/JSON_logging) expansion items for clients and channels via new hooks like `HOOKTYPE_JSON_EXPAND_CLIENT`. This is used by the geoip and tls modules. -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 18 2022 Robert Scheck robert@fedoraproject.org 6.0.4-1 - Upgrade to 6.0.4 (#2090417) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2090417 - unrealircd-6.0.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2090417 --------------------------------------------------------------------------------