This email proposes upgrading the llhttp package in EPEL9 from 6.0.10 to
8.1.1, which would break the ABI and bump the SONAME version, under the
EPEL Incompatible Upgrades Policy[1].
The llhttp package is a C library (transpiled from TypeScript) that
provides the low-level HTTP support for NodeJS and for python-aiohttp.
Currently, only python-aiohttp depends on the llhttp package in EPEL9.
Versions of llhttp prior to 8.1.1 are affected by CVE-2023-30589[2], an
HTTP request smuggling vulnerability rated 7.7 HIGH in CVSS v3 and rated
Moderate by Red Hat. The GitHub advisory for llhttp is
GHSA-cggh-pq45-6h9x[3]; the advisory for python-aiohttp is
GHSA-45c4-8wx5-qw6w[4]. Upstream for python-aiohttp fixed this by
updating llhttp (which they bundle, but we unbundle) in release 3.8.5.
I am not comfortable attempting to backport the fix to an older release
of llhttp. My preferred solution would be to update llhttp to 8.1.1[5]
and (in the same side tag) update python-aiohttp to 3.8.5[6]. The ABI
break in llhttp would only affect python-aiohttp; the python-aiohttp
update itself is compatible (by upstream intent, and verified in
COPR[7]); and a number of packages that depend on python-aiohttp would
benefit from the fix.
If this exception request is not approved, my fallback plan is to
propose rebuilding python-aiohttp in EPEL9 with AIOHTTP_NO_EXTENSIONS=1,
which would convert it to a pure-Python package. This is a documented
mitigation, but comes with potentially serious performance regressions,
again affecting a number of dependent packages. The llhttp package would
become a leaf package and would remain unpatched.
The same incompatible update was approved by FESCo for Fedora 37[8].
The purpose of this email is to document and explain the proposed
update, to begin the minimum one-week discussion period mandated by the
EPEL Incompatible Upgrades Policy, and to request that the update be
added to the agenda for an upcoming EPEL meeting.
[1]
https://docs.fedoraproject.org/en-US/epel/epel-policy-incompatible-upgrades…
[2] https://access.redhat.com/security/cve/CVE-2023-30589
[3] https://github.com/advisories/GHSA-cggh-pq45-6h9x
[4]
https://github.com/aio-libs/aiohttp/security/advisories/GHSA-45c4-8wx5-qw6w
[5] https://src.fedoraproject.org/rpms/llhttp/pull-request/14
[6] https://src.fedoraproject.org/rpms/python-aiohttp/pull-request/26
[7] https://copr.fedorainfracloud.org/coprs/music/aiohttp-epel9/packages/
[8] https://pagure.io/fesco/issue/3049
The following builds have been pushed to Fedora EPEL 8 updates-testing
gcc-epel-8.5.0-21.el8
Details about builds:
================================================================================
gcc-epel-8.5.0-21.el8 (FEDORA-EPEL-2023-2462751ea6)
Various compilers (C, C++, Objective-C, ...)
--------------------------------------------------------------------------------
Update Information:
- backport from 8.5.0-21: guard the bit test merging code in if-combine
(RHEL-11483) - backport from 8.5.0-20: fix for TLSLD references (#2213753) -
backport from 8.5.0-20: fix crash in `dynamic_cast<>()` on null pointer (PR
c++/99074, #2211506) - backport from 8.5.0-20: adjust a pattern in `s390.md` (PR
target/87723, #2214847)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Robert Scheck <robert(a)fedoraproject.org> 8.5.0-21
- disable bootstrap mode and rebuild using gcc-epel-8.5.0-20.el8
* Wed Nov 29 2023 Robert Scheck <robert(a)fedoraproject.org> 8.5.0-20
- backport from 8.5.0-21: guard the bit test merging code in if-combine (RHEL-11483)
- backport from 8.5.0-20: fix for TLSLD references (#2213753)
- backport from 8.5.0-20: fix crash in dynamic_cast<>() on null pointer (PR c++/99074, #2211506)
- backport from 8.5.0-20: adjust a pattern in s390.md (PR target/87723, #2214847)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2252062 - gcc-epel out of date compared to gcc
https://bugzilla.redhat.com/show_bug.cgi?id=2252062
--------------------------------------------------------------------------------
The following Fedora EPEL 9 Security updates need testing:
Age URL
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-9a05f8b1eb opendkim-2.11.0-0.36.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
aom-3.7.1-1.el9
plasma-workspace-5.27.6-1.el9.1
rust-addr2line-0.21.0-1.el9
rust-backtrace-0.3.69-1.el9
rust-fallible-iterator-0.3.0-1.el9
rust-gimli-0.28.1-1.el9
rust-object-0.32.1-1.el9
rust-ruzstd-0.5.0-1.el9
rust-test-assembler-0.1.6-4.el9
rust-twox-hash-1.6.3-4.el9
Details about builds:
================================================================================
aom-3.7.1-1.el9 (FEDORA-EPEL-2023-3a7769d603)
Royalty-free next-generation video format
--------------------------------------------------------------------------------
Update Information:
Update to version 3.7.1. Release notes:
https://aomedia.googlesource.com/aom/+/refs/tags/v3.7.1
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Fabio Valentini <decathorpe(a)gmail.com> - 3.7.1-1
- Update to version 3.7.1; Fixes RHBZ#2250720
--------------------------------------------------------------------------------
================================================================================
plasma-workspace-5.27.6-1.el9.1 (FEDORA-EPEL-2023-23d5c0f507)
Plasma workspace, applications and applets
--------------------------------------------------------------------------------
Update Information:
Fix so sddm does not have a blank startup page
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Troy Dawson <tdawson(a)redhat.com> - 5.27.6-1.1
- Requires: desktop-backgrounds-compat for RHEL
--------------------------------------------------------------------------------
================================================================================
rust-addr2line-0.21.0-1.el9 (FEDORA-EPEL-2023-b23efc1127)
Cross-platform symbolication library written in Rust, using gimli
--------------------------------------------------------------------------------
Update Information:
- Update the backtrace crate to version 0.3.69. - Update the addr2line crate to
version 0.21.0. - Update the gimli crate to version 0.28.1. - Update the object
crate to version 0.32.1. - Update the fallible-iterator crate to version 0.3.0.
- Import the packages for the twox-hash and test-assembler crates into EPEL9. -
Initial packaging of the ruzstd crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.21.0-1
- Update to version 0.21.0; Fixes RHBZ#2187037
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.19.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-backtrace-0.3.69-1.el9 (FEDORA-EPEL-2023-b23efc1127)
Library to acquire a stack trace (backtrace) at runtime in a Rust program
--------------------------------------------------------------------------------
Update Information:
- Update the backtrace crate to version 0.3.69. - Update the addr2line crate to
version 0.21.0. - Update the gimli crate to version 0.28.1. - Update the object
crate to version 0.32.1. - Update the fallible-iterator crate to version 0.3.0.
- Import the packages for the twox-hash and test-assembler crates into EPEL9. -
Initial packaging of the ruzstd crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.3.69-1
- Update to version 0.3.69; Fixes RHBZ#2218705
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.67-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-fallible-iterator-0.3.0-1.el9 (FEDORA-EPEL-2023-b23efc1127)
Fallible iterator traits
--------------------------------------------------------------------------------
Update Information:
- Update the backtrace crate to version 0.3.69. - Update the addr2line crate to
version 0.21.0. - Update the gimli crate to version 0.28.1. - Update the object
crate to version 0.32.1. - Update the fallible-iterator crate to version 0.3.0.
- Import the packages for the twox-hash and test-assembler crates into EPEL9. -
Initial packaging of the ruzstd crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.3.0-1
- Update to version 0.3.0
* Wed Nov 29 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.0-14
- Regenerate with rust2rpm v24
--------------------------------------------------------------------------------
================================================================================
rust-gimli-0.28.1-1.el9 (FEDORA-EPEL-2023-b23efc1127)
Library for reading and writing the DWARF debugging format
--------------------------------------------------------------------------------
Update Information:
- Update the backtrace crate to version 0.3.69. - Update the addr2line crate to
version 0.21.0. - Update the gimli crate to version 0.28.1. - Update the object
crate to version 0.32.1. - Update the fallible-iterator crate to version 0.3.0.
- Import the packages for the twox-hash and test-assembler crates into EPEL9. -
Initial packaging of the ruzstd crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.28.1-1
- Update to version 0.28.1; Fixes RHBZ#2231677
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.27.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-object-0.32.1-1.el9 (FEDORA-EPEL-2023-b23efc1127)
Unified interface for reading and writing object file formats
--------------------------------------------------------------------------------
Update Information:
- Update the backtrace crate to version 0.3.69. - Update the addr2line crate to
version 0.21.0. - Update the gimli crate to version 0.28.1. - Update the object
crate to version 0.32.1. - Update the fallible-iterator crate to version 0.3.0.
- Import the packages for the twox-hash and test-assembler crates into EPEL9. -
Initial packaging of the ruzstd crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.32.1-1
- Update to version 0.32.1; Fixes RHBZ#2186956
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.30.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-ruzstd-0.5.0-1.el9 (FEDORA-EPEL-2023-b23efc1127)
Decoder for the zstd compression format
--------------------------------------------------------------------------------
Update Information:
- Update the backtrace crate to version 0.3.69. - Update the addr2line crate to
version 0.21.0. - Update the gimli crate to version 0.28.1. - Update the object
crate to version 0.32.1. - Update the fallible-iterator crate to version 0.3.0.
- Import the packages for the twox-hash and test-assembler crates into EPEL9. -
Initial packaging of the ruzstd crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 29 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.5.0-1
- Initial import (#2252142)
--------------------------------------------------------------------------------
================================================================================
rust-test-assembler-0.1.6-4.el9 (FEDORA-EPEL-2023-b23efc1127)
Set of types for building complex binary streams
--------------------------------------------------------------------------------
Update Information:
- Update the backtrace crate to version 0.3.69. - Update the addr2line crate to
version 0.21.0. - Update the gimli crate to version 0.28.1. - Update the object
crate to version 0.32.1. - Update the fallible-iterator crate to version 0.3.0.
- Import the packages for the twox-hash and test-assembler crates into EPEL9. -
Initial packaging of the ruzstd crate.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.6-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.6-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.6-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Tue Nov 9 2021 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.6-1
- Update to version 0.1.6; Fixes RHBZ#2002688
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.5-12
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.5-11
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-twox-hash-1.6.3-4.el9 (FEDORA-EPEL-2023-b23efc1127)
Rust implementation of the XXHash and XXH3 algorithms
--------------------------------------------------------------------------------
Update Information:
- Update the backtrace crate to version 0.3.69. - Update the addr2line crate to
version 0.21.0. - Update the gimli crate to version 0.28.1. - Update the object
crate to version 0.32.1. - Update the fallible-iterator crate to version 0.3.0.
- Import the packages for the twox-hash and test-assembler crates into EPEL9. -
Initial packaging of the ruzstd crate.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Feb 5 2023 Fabio Valentini <decathorpe(a)gmail.com> - 1.6.3-4
- Prevent useless example binary from being installed
* Sat Jan 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Wed May 4 2022 Aleksei Bavshin <alebastr(a)fedoraproject.org> - 1.6.3-1
- Update to 1.6.3 (#2081798)
* Tue Apr 5 2022 Aleksei Bavshin <alebastr(a)fedoraproject.org> - 1.6.2-1
- Initial import (#2064142)
--------------------------------------------------------------------------------
Hi,
Lasso, as provided in EL7, EL8 and EL9, doesn't have a perl-lasso
sub-package, which provides the perl bindings. It is not built for EL7,
and is built but not shipped for both EL8 and EL9.
Quite some time ago, I have filed a ticket requesting that the perl and
python bindings be shipped in EL8 and EL9 [1]. python was just a guess,
but it turned out to be correct. It was granted for python, as epsilon
as a need for it, but was not for perl. I have since re-opened the
ticket, as the software I need the perl bindings for is now available in
Fedora, which does have the perl sub-package and thus has SAML support,
and also in EPEL, where SAML support is indeed missing [2].
I have prepared a perl-lasso-epel spec file to add missing perl bindings
support to EL releases and as this is the first time I go this route,
although the EPEL guidelines states this is a review request exception
[3], I would like the package to be looked at by people with more
experience on the matter [4].
Thanks,
Xavier
[1] https://bugzilla.redhat.com/show_bug.cgi?id=2041941
[2] https://src.fedoraproject.org/rpms/lemonldap-ng
[3]
https://docs.fedoraproject.org/en-US/epel/epel-policy-missing-sub-packages/
[4] https://bugzilla.redhat.com/show_bug.cgi?id=2251952
The following Fedora EPEL 7 Security updates need testing:
Age URL
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-1c906d04ee golang-1.20.10-3.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-a371f42add openssl11-1.1.1k-6.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
anope-2.1.0-2.el7
Details about builds:
================================================================================
anope-2.1.0-2.el7 (FEDORA-EPEL-2023-1a96479505)
IRC services designed for flexibility and ease of use
--------------------------------------------------------------------------------
Update Information:
# Anope 2.1.0 - Added `nickserv:minpasslen` for configuring the minimum
password length - Added support for access list entry descriptions. - Added
support for linking over a UNIX socket. - Added support for server-initiated
logins and logouts on UnrealIRCd - Added support for server-initiated logouts
on InspIRCd - Added support for the `ANONYMOUS SASL` mechanism - Allowed
users to opt-out of being added to channel access lists - Cleaned up the
codebase to use Modern C++17 - Modernized the build system to use a modern
version of CMake - Removed `nickserv:strictpasswords` as it is obsolete now
`nickserv:minpasslen` exists - Removed support for using insecure encryption
methods as the primary method - Removed the Windows-only `anopesmtp` tool -
Removed the `inspircd12` and `inspircd20` modules (use `inspircd` instead) -
Removed the `ns_getpass` module (no supported encryption modules) - Removed
the `os_oline` module (no supported IRCds) - Removed the two day X-line cap
- Removed the `unreal` module (use `unrealircd` instead) - Renamed
`nickserv:passlen` to `nickserv:maxpasslen` - Renamed the `charybdis` module
to `solanum` - Renamed the `inspircd3` module to `inspircd` - Renamed the
`unreal4` module to `unrealircd` - Replaced `uplink:ipv6` with
`uplink:protocol` - Updated all references to IRCServices to refer to Anope
instead
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 27 2023 Robert Scheck <robert(a)fedoraproject.org> 2.1.0-2
- Reflect upstream configuration file changes and renamings
* Sun Nov 26 2023 Robert Scheck <robert(a)fedoraproject.org> 2.1.0-1
- Upgrade to 2.1.0 (#2251530)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2251530 - anope-2.1.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2251530
--------------------------------------------------------------------------------
The following Fedora EPEL 8 Security updates need testing:
Age URL
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-330054b0a8 dbus-broker-28-4.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
anope-2.1.0-2.el8
bitcoin-core-selinux-0-11.20231127git4505616.el8
Details about builds:
================================================================================
anope-2.1.0-2.el8 (FEDORA-EPEL-2023-f67d8ae3e9)
IRC services designed for flexibility and ease of use
--------------------------------------------------------------------------------
Update Information:
# Anope 2.1.0 - Added `nickserv:minpasslen` for configuring the minimum
password length - Added support for access list entry descriptions. - Added
support for linking over a UNIX socket. - Added support for server-initiated
logins and logouts on UnrealIRCd - Added support for server-initiated logouts
on InspIRCd - Added support for the `ANONYMOUS SASL` mechanism - Allowed
users to opt-out of being added to channel access lists - Cleaned up the
codebase to use Modern C++17 - Modernized the build system to use a modern
version of CMake - Removed `nickserv:strictpasswords` as it is obsolete now
`nickserv:minpasslen` exists - Removed support for using insecure encryption
methods as the primary method - Removed the Windows-only `anopesmtp` tool -
Removed the `inspircd12` and `inspircd20` modules (use `inspircd` instead) -
Removed the `ns_getpass` module (no supported encryption modules) - Removed
the `os_oline` module (no supported IRCds) - Removed the two day X-line cap
- Removed the `unreal` module (use `unrealircd` instead) - Renamed
`nickserv:passlen` to `nickserv:maxpasslen` - Renamed the `charybdis` module
to `solanum` - Renamed the `inspircd3` module to `inspircd` - Renamed the
`unreal4` module to `unrealircd` - Replaced `uplink:ipv6` with
`uplink:protocol` - Updated all references to IRCServices to refer to Anope
instead
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 27 2023 Robert Scheck <robert(a)fedoraproject.org> 2.1.0-2
- Reflect upstream configuration file changes and renamings
* Sun Nov 26 2023 Robert Scheck <robert(a)fedoraproject.org> 2.1.0-1
- Upgrade to 2.1.0 (#2251530)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2251530 - anope-2.1.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2251530
--------------------------------------------------------------------------------
================================================================================
bitcoin-core-selinux-0-11.20231127git4505616.el8 (FEDORA-EPEL-2023-c3a0dc1d80)
Bitcoin Core SELinux policy
--------------------------------------------------------------------------------
Update Information:
Fix policies for daemon case.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 27 2023 Simone Caronni <negativo17(a)gmail.com> - 0-11.20231127git4505616
- Update policies (#2246255).
* Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0-10.20210312giteaa9a04
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Wed Jan 18 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0-9.20210312giteaa9a04
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0-8.20210312giteaa9a04
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2246255 - SELinux denial of bitcoind reading /etc/bitcoin/bitcoin.conf
https://bugzilla.redhat.com/show_bug.cgi?id=2246255
--------------------------------------------------------------------------------
The following Fedora EPEL 9 Security updates need testing:
Age URL
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-03f6b44faf chromium-119.0.6045.159-2.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
anope-2.1.0-2.el9
bitcoin-core-selinux-0-11.20231127git4505616.el9
fapolicy-analyzer-1.2.1-1.el9
gi-docgen-2023.3-1.el9
kronosnet-epel-1.25-2.el9
opendkim-2.11.0-0.36.el9
python-glymur-0.12.9-2.el9
qm-0.6.0-1.el9
Details about builds:
================================================================================
anope-2.1.0-2.el9 (FEDORA-EPEL-2023-be9892be96)
IRC services designed for flexibility and ease of use
--------------------------------------------------------------------------------
Update Information:
# Anope 2.1.0 - Added `nickserv:minpasslen` for configuring the minimum
password length - Added support for access list entry descriptions. - Added
support for linking over a UNIX socket. - Added support for server-initiated
logins and logouts on UnrealIRCd - Added support for server-initiated logouts
on InspIRCd - Added support for the `ANONYMOUS SASL` mechanism - Allowed
users to opt-out of being added to channel access lists - Cleaned up the
codebase to use Modern C++17 - Modernized the build system to use a modern
version of CMake - Removed `nickserv:strictpasswords` as it is obsolete now
`nickserv:minpasslen` exists - Removed support for using insecure encryption
methods as the primary method - Removed the Windows-only `anopesmtp` tool -
Removed the `inspircd12` and `inspircd20` modules (use `inspircd` instead) -
Removed the `ns_getpass` module (no supported encryption modules) - Removed
the `os_oline` module (no supported IRCds) - Removed the two day X-line cap
- Removed the `unreal` module (use `unrealircd` instead) - Renamed
`nickserv:passlen` to `nickserv:maxpasslen` - Renamed the `charybdis` module
to `solanum` - Renamed the `inspircd3` module to `inspircd` - Renamed the
`unreal4` module to `unrealircd` - Replaced `uplink:ipv6` with
`uplink:protocol` - Updated all references to IRCServices to refer to Anope
instead
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 27 2023 Robert Scheck <robert(a)fedoraproject.org> 2.1.0-2
- Reflect upstream configuration file changes and renamings
* Sun Nov 26 2023 Robert Scheck <robert(a)fedoraproject.org> 2.1.0-1
- Upgrade to 2.1.0 (#2251530)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2251530 - anope-2.1.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2251530
--------------------------------------------------------------------------------
================================================================================
bitcoin-core-selinux-0-11.20231127git4505616.el9 (FEDORA-EPEL-2023-9285d6ee02)
Bitcoin Core SELinux policy
--------------------------------------------------------------------------------
Update Information:
Fix policies for daemon case.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 27 2023 Simone Caronni <negativo17(a)gmail.com> - 0-11.20231127git4505616
- Update policies (#2246255).
* Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0-10.20210312giteaa9a04
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Wed Jan 18 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0-9.20210312giteaa9a04
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0-8.20210312giteaa9a04
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2246255 - SELinux denial of bitcoind reading /etc/bitcoin/bitcoin.conf
https://bugzilla.redhat.com/show_bug.cgi?id=2246255
--------------------------------------------------------------------------------
================================================================================
fapolicy-analyzer-1.2.1-1.el9 (FEDORA-EPEL-2023-1d3a960bd8)
File Access Policy Analyzer
--------------------------------------------------------------------------------
Update Information:
Release v1.2.1 for additional details please see the [User
Guide](https://github.com/ctc-oss/fapolicy-analyzer/wiki/User-Guide)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Nov 17 2023 John Wass <jwass3(a)gmail.com> 1.2.1-1
- Release v1.2.1
--------------------------------------------------------------------------------
================================================================================
gi-docgen-2023.3-1.el9 (FEDORA-EPEL-2023-6a56ab97bc)
Documentation tool for GObject-based libraries
--------------------------------------------------------------------------------
Update Information:
## 2023.3 - 2023-11-25 ### Fixed - Add missing dependency - Add missing test
data to the source archive ## 2023.2 - 2023-11-24 ### Added - Use packaging
module to properly compare versions - Add "implements" in class definition
pseudocode - Ignore the first class instance struct field - Parse default-value
attribute - Test the gtk-doc sigil parsing - Support admonitions in docblocks -
Add link to the extra content files location in the source repository - Search
for GIR XML in `$GI_GIR_PATH` and `/usr/share/gir-1.0` - Add fallback for
missing "since" ### Changed - Redesign the search results - Redesign the index
for enumeration types ### Fixed - Match dependencies list in the index and
sidebar - Use KeyboardEvent.key to focus search input - Build fixes for
subproject use - Remove display:flex from headings - Split transfer notes based
on direction - Clarify signal flags - Hide build section if empty - Always
explicitely use utf-8 when reading/writing files - use `color-scheme: dark` when
in dark mode
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 26 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 2023.3-1
- Update to 2023.3 (close RHBZ#2251397)
* Sun Nov 26 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 2023.1-6
- Package LICENSES/ as a directory
* Sun Nov 26 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 2023.1-2
- Don���t assume %_smp_mflags is -j%_smp_build_ncpus
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2251397 - gi-docgen-2023.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2251397
--------------------------------------------------------------------------------
================================================================================
kronosnet-epel-1.25-2.el9 (FEDORA-EPEL-2023-b37cb1cb2b)
Multipoint-to-Multipoint VPN daemon
--------------------------------------------------------------------------------
Update Information:
Sync kronosnet package version with el9 and merge upstream changes
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 27 2023 Davide Cavalca <dcavalca(a)fedoraproject.org> - 1.25-2
- Sync kronosnet package version with el9 and merge upstream changes
--------------------------------------------------------------------------------
================================================================================
opendkim-2.11.0-0.36.el9 (FEDORA-EPEL-2023-9a05f8b1eb)
A DomainKeys Identified Mail (DKIM) milter to sign and/or verify mail
--------------------------------------------------------------------------------
Update Information:
Add upstream PR that filters Authentication-Results headers correctly to fix
CVE-2022-48521.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 15 2023 Diego Herrera <dherrera(a)redhat.com> - 2.11.0-0.36
- Add upstream PR that filters Authentication-Results headers correctly.
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.11.0-0.35
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2223270 - CVE-2022-48521 opendkim: Authentication-Results fields are not removed correctly [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2223270
--------------------------------------------------------------------------------
================================================================================
python-glymur-0.12.9-2.el9 (FEDORA-EPEL-2023-fb9fc02f29)
Interface to the OpenJPEG library for working with JPEG 2000 files
--------------------------------------------------------------------------------
Update Information:
## Nov 26, 2023 - v0.12.9 - Fix handling of null-bytes with XML data - Add API
references to docs - Qualify on python 3.12
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 27 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.12.9-2
- Fix oversights in the 0.12.9 release process (close RHBZ#2251615)
* Mon Nov 27 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.12.9-1
- Update to 0.12.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2251615 - python-glymur-0.12.9.post1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2251615
--------------------------------------------------------------------------------
================================================================================
qm-0.6.0-1.el9 (FEDORA-EPEL-2023-db0e5aaa76)
Containerized environment for running Quality Management software
--------------------------------------------------------------------------------
Update Information:
v0.6.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 27 2023 Douglas Schilling Landgraf <dougsland(a)redhat.com> - 0.6.0-1
- v0.6.0
--------------------------------------------------------------------------------