epel-devel December 2023

epel-devel@lists.fedoraproject.org

11 participants
86 discussions

Fedora EPEL 8 updates-testing report
by updates＠fedoraproject.org 12 Dec '23

12 Dec '23

The following Fedora EPEL 8 Security updates need testing: Age URL 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-76db503610 seamonkey-2.53.18-1.el8 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-d1b0df83e0 chromium-120.0.6099.71-1.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-ad7d095358 rdiff-backup-2.2.6-3.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing python-opensearch-py-2.4.2-2.el8 rpkg-1.66-14.el8 Details about builds: ================================================================================ python-opensearch-py-2.4.2-2.el8 (FEDORA-EPEL-2023-0e9b735fae) Python low-level client for OpenSearch -------------------------------------------------------------------------------- Update Information: * Update to 2.4.2 * Convert spec to %autochangelog macro -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #2253963 - Release opensearch-py 2.4.2 for EL 7/8/9 https://bugzilla.redhat.com/show_bug.cgi?id=2253963 -------------------------------------------------------------------------------- ================================================================================ rpkg-1.66-14.el8 (FEDORA-EPEL-2023-7e3feed22c) Python library for interacting with rpm+git -------------------------------------------------------------------------------- Update Information: Actually, added the patches that were missed in the last update. Patches for "undo rpmautospec processing" - during `import`, specfile is searched and rpmautospec records are removed. * Patch: *pkg import: Don't delete changelog generated by `rpmautospec convert` * Patch: *pkg import: Undo rpmautospec processing * Patch: Unittests for "Undo rpmautospec processing" -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 11 2023 Miro Hron��ok <mhroncok(a)redhat.com> - 1.66-14 - Actually add the patches: - Patch: *pkg import: Don't delete changelog generated by `rpmautospec convert` - Patch: *pkg import: Undo rpmautospec processing - Patch: Unittests for "Undo rpmautospec processing" --------------------------------------------------------------------------------

1 0

Fedora EPEL 7 updates-testing report
by updates＠fedoraproject.org 12 Dec '23

12 Dec '23

The following Fedora EPEL 7 Security updates need testing: Age URL 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-fd36857b5e seamonkey-2.53.18-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-3782f9a3bf chromium-120.0.6099.71-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing python-opensearch-py-2.4.2-2.el7 rpkg-1.66-14.el7 Details about builds: ================================================================================ python-opensearch-py-2.4.2-2.el7 (FEDORA-EPEL-2023-f6b46a5029) Python low-level client for OpenSearch -------------------------------------------------------------------------------- Update Information: * Update to 2.4.2 * Convert spec to %autochangelog macro -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #2253963 - Release opensearch-py 2.4.2 for EL 7/8/9 https://bugzilla.redhat.com/show_bug.cgi?id=2253963 -------------------------------------------------------------------------------- ================================================================================ rpkg-1.66-14.el7 (FEDORA-EPEL-2023-18fd2a1fa5) Python library for interacting with rpm+git -------------------------------------------------------------------------------- Update Information: Actually, added the patches that were missed in the last update. Patches for "undo rpmautospec processing" - during `import`, specfile is searched and rpmautospec records are removed. * Patch: *pkg import: Don't delete changelog generated by `rpmautospec convert` * Patch: *pkg import: Undo rpmautospec processing * Patch: Unittests for "Undo rpmautospec processing" -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 11 2023 Miro Hron��ok <mhroncok(a)redhat.com> - 1.66-14 - Actually add the patches: - Patch: *pkg import: Don't delete changelog generated by `rpmautospec convert` - Patch: *pkg import: Undo rpmautospec processing - Patch: Unittests for "Undo rpmautospec processing" --------------------------------------------------------------------------------

1 0

Fedora EPEL 9 updates-testing report
by updates＠fedoraproject.org 12 Dec '23

12 Dec '23

The following Fedora EPEL 9 Security updates need testing: Age URL 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-a0fcd69d86 chromium-120.0.6099.71-1.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-7a05e8decc rdiff-backup-2.2.6-3.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing composer-2.6.6-1.el9 datovka-4.23.1-1.el9 php-nikic-php-parser4-4.18.0-1.el9 python-damo-2.1.0-1.el9 python-opensearch-py-2.4.2-2.el9 python-pathspec-0.12.1-1.el9 rpkg-1.66-14.el9 tmt-1.30.0-1.el9 Details about builds: ================================================================================ composer-2.6.6-1.el9 (FEDORA-EPEL-2023-2a9d3dbbda) Dependency Manager for PHP -------------------------------------------------------------------------------- Update Information: **Version 2.6.6** - 2023-12-08 * Fixed symfony/console requirement to exclude 7.x as Composer 2.6 is not compatible, 2.7 will be (#11741) * Fixed libpq parsing to use the global constant if available (#11684) * Fixed error output when updating with a temporary constraint fails (#11692) -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Remi Collet <remi(a)remirepo.net> - 2.6.6-1 - update to 2.6.6 -------------------------------------------------------------------------------- ================================================================================ datovka-4.23.1-1.el9 (FEDORA-EPEL-2023-d18666b6dd) A free graphical interface for Czech Databox (Datov�� schr��nky) -------------------------------------------------------------------------------- Update Information: This is new version of datovka. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 11 2023 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.23.1-1 - New version Resolves: rhbz#2253431 * Mon Dec 4 2023 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.23.0-1 - New version Resolves: rhbz#2251951 * Thu Nov 9 2023 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.22.1-5 - Rebuilt for new datovka * Tue Nov 7 2023 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.22.1-4 - Rebuild for new libdatovka * Tue Sep 5 2023 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.22.1-3 - Rebuild for new libdatovka * Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.22.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Wed Apr 26 2023 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.22.1-1 - New version Resolves: rhbz#2188035 * Thu Feb 23 2023 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.22.0-1 - New version Resolves: rhbz#2170063 * Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.21.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Tue Nov 22 2022 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.21.1-1 - New version Resolves: rhbz#2144857 * Thu Sep 29 2022 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.21.0-1 - New version Resolves: rhbz#2130187 * Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.20.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Thu Mar 17 2022 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.20.0-1 - New version Resolves: rhbz#2064316 * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.19.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2253431 - datovka-4.23.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2253431 -------------------------------------------------------------------------------- ================================================================================ php-nikic-php-parser4-4.18.0-1.el9 (FEDORA-EPEL-2023-316e73fc47) A PHP parser written in PHP - version 4 -------------------------------------------------------------------------------- Update Information: **Version 4.18.0** (2023-12-10) Added * Added methods `ParserFactory::createForNewestSupportedVersion()` and `ParserFactory::createForHostVersion()` for forward-compatibility with PHP- Parser 5.0. Fixed * Fixed missing name resolution of class constant types. * Fixed class members being dropped if an error is encountered while parsing a later class member (when error recovery is enabeld). -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 11 2023 Remi Collet <remi(a)remirepo.net> - 4.18.0-1 - update to 4.18.0 -------------------------------------------------------------------------------- ================================================================================ python-damo-2.1.0-1.el9 (FEDORA-EPEL-2023-d2d929502c) Data Access Monitoring Operator -------------------------------------------------------------------------------- Update Information: v2.1.0 - Remove 'damo translate_damos' - Internal code cleanup - Make 'damo show' fail faster for some cases v2.0.9 - Internal code cleanup v2.0.8 - Support DAMOS quota goals (not mainlined DAMON feature) v2.0.7 - 'damo status': Add an option for only entered inputs without updating sysfs - 'damo fmt_json': Drop non-input fields -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 11 2023 Michel Lind <salimma(a)fedoraproject.org> - 2.1.0-1 - Update to 2.1.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2249857 - python-damo-2.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2249857 -------------------------------------------------------------------------------- ================================================================================ python-opensearch-py-2.4.2-2.el9 (FEDORA-EPEL-2023-1358c369a2) Python low-level client for OpenSearch -------------------------------------------------------------------------------- Update Information: * Update to 2.4.2 * Convert spec to %autochangelog macro -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #2253963 - Release opensearch-py 2.4.2 for EL 7/8/9 https://bugzilla.redhat.com/show_bug.cgi?id=2253963 -------------------------------------------------------------------------------- ================================================================================ python-pathspec-0.12.1-1.el9 (FEDORA-EPEL-2023-7f4bdc6e2c) Utility library for gitignore style pattern matching of file paths -------------------------------------------------------------------------------- Update Information: Update to version 0.12.1 -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 11 2023 Adrien Verg�� <adrienverge(a)gmail.com> - 0.12.1-1 - Update to latest upstream version -------------------------------------------------------------------------------- ================================================================================ rpkg-1.66-14.el9 (FEDORA-EPEL-2023-3d61283ef4) Python library for interacting with rpm+git -------------------------------------------------------------------------------- Update Information: Actually, added the patches that were missed in the last update. Patches for "undo rpmautospec processing" - during `import`, specfile is searched and rpmautospec records are removed. * Patch: *pkg import: Don't delete changelog generated by `rpmautospec convert` * Patch: *pkg import: Undo rpmautospec processing * Patch: Unittests for "Undo rpmautospec processing" -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 11 2023 Miro Hron��ok <mhroncok(a)redhat.com> - 1.66-14 - Actually add the patches: - Patch: *pkg import: Don't delete changelog generated by `rpmautospec convert` - Patch: *pkg import: Undo rpmautospec processing - Patch: Unittests for "Undo rpmautospec processing" -------------------------------------------------------------------------------- ================================================================================ tmt-1.30.0-1.el9 (FEDORA-EPEL-2023-5f4d760a59) Test Management Tool -------------------------------------------------------------------------------- Update Information: Automatic update for tmt-1.30.0-1.el9. ##### **Changelog for tmt** ``` * Fri Dec 08 2023 Petr ��pl��chal <psplicha(a)redhat.com> - 1.30.0 - Make `arch` field unsupported in the spec - Introduce `tty` test attribute to control terminal environment - Ensure the imported plan's `enabled` key is respected - Add support for user defined templates (#2519) - Update the common schema for the `check` key - Create a `checks` directory to store avc/dmesg checks - Correctly update environment from importing plan - Implement `tmt try` for interactive sessions - Use a shorter time for `podman stop` (#2480) - Add the `redis` server as a multihost sync example - Improve documentation of test checks - Adjust the format of Polarion test run title - Run all available tests only upon a user request - Rename `name` to `how` in test check specification (#2527) - Link `inheritance` and `elasticity` from the guide - Add the `fips` field for the `polarion` report - Cover `tmt.cli` with `pyright` (#2520) - Custom soft/hard reboot commands for the connect provision plugin - Add `--feeling-safe` for allowing possibly dangerous actions - Update docs for the `polarion` report plugin - Move test-requested reboot handling into test invocation class - Add `-i` to select an image in beaker and artemis - Document how to use `yaml` anchors and aliases - Simplify log decolorizers to support pickleable trees - Add description field to polarion report plugin - Make check plugin class generic over check class (#2502) - Increase verbosity of Artemis provisioning errors - Add more distros to the `mrack` config - Move the `contact` key to the `Core` class - Bump tmt in lint pre-commit check to 1.29.0 - Add Python 3.12 to the test matrix - Move `mrack` configs into `tmt+provision-beaker` - Allow running upgrade from the current repository - Fix remote nested library fetch and add test - Cover tmt.options with pyright - Cover tmt.checks, tmt.frameworks and tmt.log with pyright - Cover tmt.result with pyright checks - Store fmf `context` in results for each test - Add networks to the podman provision plugin (#2419) - Add a dedicated exit code when all tests reported `skip` result - Move invocation-related fields out of `Test` class - Remove expected fail from `/tests/pip/install/full` - Convert test execution internals to use "invocation" bundle (#2469) - Introduce a separate page `Code` for code docs - Add code documentation generated from docstrings - Fix possible unbound variable after import-under-try - Add `pyright` as a `pre-commit` check - Add a helper for nonconflicting, multihost-safe filenames - Add the `whiteboard` option for `beaker` provision - Support timestamped logging even on the terminal - Enable pyupgrade `UP` ruff rule - Fix `UP035` deprecated-import violations - Fix `UP034` extraneous-parentheses violation - Fix `UP033` lru-cache-with-maxsize- none violations - Fix `UP032` f-string violations - Fix `UP013` convert-typed- dict-functional-to-class - Fix `UP009` utf8-encoding-declaration violations - Fix `UP006` non-pep585-annotation violations - Try several times to build the `become` container (#2467) - Add .py file extension to docs scripts (#2476) - Add a link to the Testing Farm documentation - Use `renku` as the default theme for building docs - Properly normalize the test `path` key - Add an `adjust` example for enabling custom repo - Drop special normalization methods - Disable `dist-git-init` in the `distgit` test (#2463) ``` -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 8 2023 Petr ��pl��chal <psplicha(a)redhat.com> - 1.30.0 - Make `arch` field unsupported in the spec - Introduce `tty` test attribute to control terminal environment - Ensure the imported plan's `enabled` key is respected - Add support for user defined templates (#2519) - Update the common schema for the `check` key - Create a `checks` directory to store avc/dmesg checks - Correctly update environment from importing plan - Implement `tmt try` for interactive sessions - Use a shorter time for `podman stop` (#2480) - Add the `redis` server as a multihost sync example - Improve documentation of test checks - Adjust the format of Polarion test run title - Run all available tests only upon a user request - Rename `name` to `how` in test check specification (#2527) - Link `inheritance` and `elasticity` from the guide - Add the `fips` field for the `polarion` report - Cover `tmt.cli` with `pyright` (#2520) - Custom soft/hard reboot commands for the connect provision plugin - Add `--feeling-safe` for allowing possibly dangerous actions - Update docs for the `polarion` report plugin - Move test-requested reboot handling into test invocation class - Add `-i` to select an image in beaker and artemis - Document how to use `yaml` anchors and aliases - Simplify log decolorizers to support pickleable trees - Add description field to polarion report plugin - Make check plugin class generic over check class (#2502) - Increase verbosity of Artemis provisioning errors - Add more distros to the `mrack` config - Move the `contact` key to the `Core` class - Bump tmt in lint pre-commit check to 1.29.0 - Add Python 3.12 to the test matrix - Move `mrack` configs into `tmt+provision-beaker` - Allow running upgrade from the current repository - Fix remote nested library fetch and add test - Cover tmt.options with pyright - Cover tmt.checks, tmt.frameworks and tmt.log with pyright - Cover tmt.result with pyright checks - Store fmf `context` in results for each test - Add networks to the podman provision plugin (#2419) - Add a dedicated exit code when all tests reported `skip` result - Move invocation-related fields out of `Test` class - Remove expected fail from `/tests/pip/install/full` - Convert test execution internals to use "invocation" bundle (#2469) - Introduce a separate page `Code` for code docs - Add code documentation generated from docstrings - Fix possible unbound variable after import-under-try - Add `pyright` as a `pre-commit` check - Add a helper for nonconflicting, multihost-safe filenames - Add the `whiteboard` option for `beaker` provision - Support timestamped logging even on the terminal - Enable pyupgrade `UP` ruff rule - Fix `UP035` deprecated-import violations - Fix `UP034` extraneous-parentheses violation - Fix `UP033` lru-cache-with-maxsize-none violations - Fix `UP032` f-string violations - Fix `UP013` convert-typed-dict-functional-to-class - Fix `UP009` utf8-encoding-declaration violations - Fix `UP006` non-pep585-annotation violations - Try several times to build the `become` container (#2467) - Add .py file extension to docs scripts (#2476) - Add a link to the Testing Farm documentation - Use `renku` as the default theme for building docs - Properly normalize the test `path` key - Add an `adjust` example for enabling custom repo - Drop special normalization methods - Disable `dist-git-init` in the `distgit` test (#2463) --------------------------------------------------------------------------------

1 0

cloud-utils-growpart package conflict
by Leon Fauster 11 Dec '23

11 Dec '23

While updating to EL8.9 I noticed that cloud-utils-growpart is in EPEL and RHEL8? cloud-utils-growpart noarch 0.33-0.el8 rhel-8-for-x86_64-appstream-rpms cloud-utils-growpart noarch 0.33-3.el8 epel Subpackage conflict? -- Leon

2 2

Fedora EPEL 7 updates-testing report
by updates＠fedoraproject.org 11 Dec '23

11 Dec '23

The following Fedora EPEL 7 Security updates need testing: Age URL 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-fd36857b5e seamonkey-2.53.18-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-3782f9a3bf chromium-120.0.6099.71-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing nbtscan-1.7.2-1.el7 python-registry-1.4-11.el7 Details about builds: ================================================================================ nbtscan-1.7.2-1.el7 (FEDORA-EPEL-2023-ba8654cbcc) Tool to gather NetBIOS info from Windows networks -------------------------------------------------------------------------------- Update Information: change to new github fork -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Michal Ambroz <rebus _AT seznam.cz> - 1.7.2-1 - change to new github fork - bump to latest release - fix the SPDX license * Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-31 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-30 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Nov 24 2022 Florian Weimer <fweimer(a)redhat.com> - 1.5.1-29 - Port to C99 (#2148247) * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-28 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-27 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-26 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-25 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-24 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-23 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-22 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-21 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-20 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Thu Feb 8 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-19 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Aug 3 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-18 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-17 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Fri Feb 10 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild * Thu Feb 4 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-15 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild * Wed Jun 17 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Sun Aug 17 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Thu May 2 2013 Adam Miller <maxamillion(a)fedoraproject.org> - 1.5.1-10 - BZ926202 - support aarch64 * Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Fri Jul 20 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jan 13 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Sat Jul 25 2009 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Wed Feb 25 2009 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Mon Aug 11 2008 Tom "spot" Callaway <tcallawa(a)redhat.com> - 1.5.1-3 - fix license tag * Tue Feb 19 2008 Fedora Release Engineering <rel-eng(a)fedoraproject.org> - 1.5.1-2 - Autorebuild for GCC 4.3 * Sat May 5 2007 Sindre Pedersen Bj��rdal <foolish[AT]guezz.net> - 1.5.1-1 - Initial build -------------------------------------------------------------------------------- ================================================================================ python-registry-1.4-11.el7 (FEDORA-EPEL-2023-5b825b1875) Read access to Windows Registry files -------------------------------------------------------------------------------- Update Information: Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Tue Jun 13 2023 Python Maint <python-maint(a)redhat.com> - 1.4-10 - Rebuilt for Python 3.12 * Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Aug 4 2022 Joel Capitao <jcapitao(a)redhat.com> - 1.4-8 - Replace unicodecsv by standard csv module * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.4-6 - Rebuilt for Python 3.11 * Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 1.4-3 - Rebuilt for Python 3.10 * Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Sun Jan 24 2021 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.4-1 - Add new BR, license file and docs (#1914873) - Update to latest upstream release 1.4 * Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 1.3.1-3 - Rebuilt for Python 3.9 * Mon Mar 23 2020 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.3.1-2 - Disable dep generator to avoid issue with enum-compat (rhbz#1809910) * Wed Mar 4 2020 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.3.1-1 - Initial package for Fedora --------------------------------------------------------------------------------

1 0

Fedora EPEL 8 updates-testing report
by updates＠fedoraproject.org 11 Dec '23

11 Dec '23

The following Fedora EPEL 8 Security updates need testing: Age URL 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-76db503610 seamonkey-2.53.18-1.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-d1b0df83e0 chromium-120.0.6099.71-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing cpuid-20230614-3.el8 nbtscan-1.7.2-1.el8 python-registry-1.4-11.el8 rdiff-backup-2.2.6-3.el8 Details about builds: ================================================================================ cpuid-20230614-3.el8 (FEDORA-EPEL-2023-909511c0b8) Dumps information about the CPU(s) -------------------------------------------------------------------------------- Update Information: Merge branch 'rawhide' into epel8 -------------------------------------------------------------------------------- ChangeLog: * Sun Dec 10 2023 Fabian Affolter <mail(a)fabian-affolter.ch> - 20230614-2 - Add missing run-time requirement (fixes rhbz#2238868) * Wed Nov 1 2023 Fabian Affolter <mail(a)fabian-affolter.ch> - 20230614-1 - Update to latest upstream release 20230614 (closes rhbz#2214988) * Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 20230505-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ nbtscan-1.7.2-1.el8 (FEDORA-EPEL-2023-52bc0b8368) Tool to gather NetBIOS info from Windows networks -------------------------------------------------------------------------------- Update Information: change to new github fork -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Michal Ambroz <rebus _AT seznam.cz> - 1.7.2-1 - change to new github fork - bump to latest release - fix the SPDX license * Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-31 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-30 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Nov 24 2022 Florian Weimer <fweimer(a)redhat.com> - 1.5.1-29 - Port to C99 (#2148247) * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-28 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-27 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-26 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-25 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-24 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-23 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ python-registry-1.4-11.el8 (FEDORA-EPEL-2023-27d68875de) Read access to Windows Registry files -------------------------------------------------------------------------------- Update Information: Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Tue Jun 13 2023 Python Maint <python-maint(a)redhat.com> - 1.4-10 - Rebuilt for Python 3.12 * Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Aug 4 2022 Joel Capitao <jcapitao(a)redhat.com> - 1.4-8 - Replace unicodecsv by standard csv module * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.4-6 - Rebuilt for Python 3.11 * Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 1.4-3 - Rebuilt for Python 3.10 * Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Sun Jan 24 2021 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.4-1 - Add new BR, license file and docs (#1914873) - Update to latest upstream release 1.4 * Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 1.3.1-3 - Rebuilt for Python 3.9 -------------------------------------------------------------------------------- ================================================================================ rdiff-backup-2.2.6-3.el8 (FEDORA-EPEL-2023-ad7d095358) Convenient and transparent local/remote incremental mirror/backup -------------------------------------------------------------------------------- Update Information: Rebuild for pyinstall CVE-2023-49797 BZ2253844 -------------------------------------------------------------------------------- ChangeLog: * Sun Dec 10 2023 Frank Crawford <frank(a)crawford.emu.id.au> - 2.2.6-3 - Rebuild for pyinstall CVE-2023-49797 BZ2253844 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2253843 - CVE-2023-49797 pyinstaller: unauthorized deletion of files https://bugzilla.redhat.com/show_bug.cgi?id=2253843 --------------------------------------------------------------------------------

1 0

Fedora EPEL 9 updates-testing report
by updates＠fedoraproject.org 11 Dec '23

11 Dec '23

The following Fedora EPEL 9 Security updates need testing: Age URL 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-a0fcd69d86 chromium-120.0.6099.71-1.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing borgbackup-1.2.7-1.el9 cpuid-20230614-2.el9 fakeroot-1.32.2-1.el9 nbtscan-1.7.2-1.el9 podman-tui-0.14.0-2.el9 python-registry-1.4-11.el9 rdiff-backup-2.2.6-3.el9 xwayland-run-0.0.2-2.el9 Details about builds: ================================================================================ borgbackup-1.2.7-1.el9 (FEDORA-EPEL-2023-e33636de47) A deduplicating backup program with compression and authenticated encryption -------------------------------------------------------------------------------- Update Information: latest stable upstream release -------------------------------------------------------------------------------- ChangeLog: * Sun Dec 10 2023 Felix Schwarz <fschwarz(a)fedoraproject.org> - 1.2.7-1 - update to 1.2.7 -------------------------------------------------------------------------------- ================================================================================ cpuid-20230614-2.el9 (FEDORA-EPEL-2023-c5f7c77863) Dumps information about the CPU(s) -------------------------------------------------------------------------------- Update Information: Add missing run-time requirement (fixes rhbz#2238868) -------------------------------------------------------------------------------- ChangeLog: * Sun Dec 10 2023 Fabian Affolter <mail(a)fabian-affolter.ch> - 20230614-2 - Add missing run-time requirement (fixes rhbz#2238868) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2238868 - perl-autodie required for cpuinfo2cpuid command https://bugzilla.redhat.com/show_bug.cgi?id=2238868 -------------------------------------------------------------------------------- ================================================================================ fakeroot-1.32.2-1.el9 (FEDORA-EPEL-2023-dbaa19fd1e) Gives a fake root environment -------------------------------------------------------------------------------- Update Information: Update to 1.32.2 (#2248160) -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 6 2023 Fedora Release Monitoring <release-monitoring(a)fedoraproject.org> - 1.32.2-1 - Update to 1.32.2 (#2248160) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2248160 - fakeroot-1.32.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2248160 -------------------------------------------------------------------------------- ================================================================================ nbtscan-1.7.2-1.el9 (FEDORA-EPEL-2023-4afe2d9cc3) Tool to gather NetBIOS info from Windows networks -------------------------------------------------------------------------------- Update Information: change to new github fork -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Michal Ambroz <rebus _AT seznam.cz> - 1.7.2-1 - change to new github fork - bump to latest release - fix the SPDX license * Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-31 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-30 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Nov 24 2022 Florian Weimer <fweimer(a)redhat.com> - 1.5.1-29 - Port to C99 (#2148247) * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-28 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5.1-27 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ podman-tui-0.14.0-2.el9 (FEDORA-EPEL-2023-f9c9a69df5) Podman Terminal User Interface -------------------------------------------------------------------------------- Update Information: podman-tui release 0.14.0 -------------------------------------------------------------------------------- ChangeLog: * Sun Dec 10 2023 Navid Yaghoobi <navidys(a)fedoraproject.org> - 0.14.0-1 - release v0.14.0 -------------------------------------------------------------------------------- ================================================================================ python-registry-1.4-11.el9 (FEDORA-EPEL-2023-df514de581) Read access to Windows Registry files -------------------------------------------------------------------------------- Update Information: Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Tue Jun 13 2023 Python Maint <python-maint(a)redhat.com> - 1.4-10 - Rebuilt for Python 3.12 * Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Aug 4 2022 Joel Capitao <jcapitao(a)redhat.com> - 1.4-8 - Replace unicodecsv by standard csv module * Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.4-6 - Rebuilt for Python 3.11 * Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rdiff-backup-2.2.6-3.el9 (FEDORA-EPEL-2023-7a05e8decc) Convenient and transparent local/remote incremental mirror/backup -------------------------------------------------------------------------------- Update Information: Rebuild for pyinstall CVE-2023-49797 BZ2253844 -------------------------------------------------------------------------------- ChangeLog: * Sun Dec 10 2023 Frank Crawford <frank(a)crawford.emu.id.au> - 2.2.6-3 - Rebuild for pyinstall CVE-2023-49797 BZ2253844 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2253843 - CVE-2023-49797 pyinstaller: unauthorized deletion of files https://bugzilla.redhat.com/show_bug.cgi?id=2253843 -------------------------------------------------------------------------------- ================================================================================ xwayland-run-0.0.2-2.el9 (FEDORA-EPEL-2023-6433cbd565) Set of utilities to run headless X/Wayland clients -------------------------------------------------------------------------------- Update Information: Initial package for Fedora -------------------------------------------------------------------------------- ChangeLog: * Sun Dec 10 2023 Neal Gompa <ngompa(a)fedoraproject.org> - 0.0.2-2 - Refresh kwin support patch - Add provides for other included utilities * Sun Dec 10 2023 Neal Gompa <ngompa(a)fedoraproject.org> - 0.0.2-1 - Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #2253910 - Review Request: xwayland-run - Set of utilities to run headless X/Wayland clients https://bugzilla.redhat.com/show_bug.cgi?id=2253910 --------------------------------------------------------------------------------

1 0

Fedora EPEL 7 updates-testing report
by updates＠fedoraproject.org 10 Dec '23

10 Dec '23

The following Fedora EPEL 7 Security updates need testing: Age URL 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-fd36857b5e seamonkey-2.53.18-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing chromium-120.0.6099.71-1.el7 guacamole-server-1.5.4-1.el7 unrealircd-6.1.3-1.el7 Details about builds: ================================================================================ chromium-120.0.6099.71-1.el7 (FEDORA-EPEL-2023-3782f9a3bf) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information: Update to 120.0.6099.71 ---- Update to 120.0.6099.62, upstream release fixes follow security issues: * High CVE-2023-6508: Use after free in Media Stream * High CVE-2023-6509: Use after free in Side Panel Search * Medium CVE-2023-6510: Use after free in Media Capture * Low CVE-2023-6511: Inappropriate implementation in Autofill * Low CVE-2023-6512: Inappropriate implementation in Web Browser UI ---- update to 119.0.6045.199, upstream security release * High CVE-2023-6348: Type Confusion in Spellcheck * High CVE-2023-6347: Use after free in Mojo * High CVE-2023-6346: Use after free in WebAudio * High CVE-2023-6350: Out of bounds memory access in libavif * High CVE-2023-6351: Use after free in libavif * High CVE-2023-6345: Integer overflow in Skia -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 8 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.71-1 - update to 120.0.6099.71 * Wed Dec 6 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.62-2 - drop unsupported ldflag which caused build failure * Tue Dec 5 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.62-1 - update to 120.0.6099.62 - fixed bz#2252874, built with control flow integrity (CFI) support * Sat Dec 2 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.56-1 - update to 120.0.6099.56 - enable qt6 UI backend * Sat Dec 2 2023 Than Ngo <than(a)redhat.com> - 119.0.6045.199-2 - fixed bz#2242271, built with bundleminizip in fedora > 39 - fixed bz#2251884, built with fstack-protector-strong for improved security * Wed Nov 29 2023 Than Ngo <than(a)redhat.com> - 119.0.6045.199-1 - update to 119.0.6045.199 * Sun Nov 19 2023 Than Ngo <than(a)redhat.com> - 119.0.6045.159-2 - fix ffmpeg conflicts -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252009 - CVE-2023-6346 CVE-2023-6347 CVE-2023-6350 CVE-2023-6351 chromium: various flaws [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252009 [ 2 ] Bug #2252188 - CVE-2023-6345 chromium: chromium-browser: Integer overflow [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252188 [ 3 ] Bug #2252191 - CVE-2023-6348 chromium: chromium-browser: Type Confusion in Spellcheck [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252191 [ 4 ] Bug #2253151 - CVE-2023-6508 chromium: Use after free in Media Stream [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253151 [ 5 ] Bug #2253154 - CVE-2023-6509 chromium: Use after free in Side Panel Search [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253154 [ 6 ] Bug #2253157 - CVE-2023-6510 chromium: Use after free in Media Capture [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253157 [ 7 ] Bug #2253161 - CVE-2023-6511 chromium: Inappropriate implementation in Autofill [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253161 [ 8 ] Bug #2253164 - CVE-2023-6512 chromium: Inappropriate implementation in Web Browser UI [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253164 -------------------------------------------------------------------------------- ================================================================================ guacamole-server-1.5.4-1.el7 (FEDORA-EPEL-2023-e5cd593804) Server-side native components that form the Guacamole proxy -------------------------------------------------------------------------------- Update Information: # Apache Guacamole 1.5.4 ## User interface / platform - History Recording Player should show controls when mouse is moved (GUACAMOLE-1872) - Bug: Control bar doesn��t auto-hide on history recording player (GUACAMOLE-1873) ## Authentication, integration, and storage - Bug: Regression in JSON module causes loading to fail (GUACAMOLE-1851) - Bug: Permission check for creating user groups is incorrect (GUACAMOLE-1856) ## Protocol support / guacd - Bug: Race condition can cause the first user for a connection to miss updates (GUACAMOLE-1846) - Bug: Parser reparses same instructions multiple times in some cases (GUACAMOLE-1849) - Bug: `guac_common_cursor_dup()` may segfault if cursor is being modified (GUACAMOLE-1850) - Add libguac convenience functions for memory management (GUACAMOLE-1867) ## Internationalization - Updates and corrections to Catalan translation (GUACAMOLE-1880) ## Documentation - TOTP Authentication - Add documentation relating to usage with docker (GUACAMOLE-1878) ## General housekeeping and cleanup - Update webapp dependencies to latest stable and compatible versions (GUACAMOLE-1859) - Bump version numbers to 1.5.4 (GUACAMOLE-1886) -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Robert Scheck <robert(a)fedoraproject.org> - 1:1.5.4-1 - Update to 1.5.4 (#2223510) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2223510 - guacamole-server-1.5.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2223510 -------------------------------------------------------------------------------- ================================================================================ unrealircd-6.1.3-1.el7 (FEDORA-EPEL-2023-991fb571f9) Open Source IRC server -------------------------------------------------------------------------------- Update Information: # UnrealIRCd 6.1.3 The main focus of this release is adding countermeasures against large scale spam/drones. Upstream does this by offering a central API which can be used for accessing Central Blocklist, Central Spamreport and Central Spamfilter. ## Enhancements * Central anti-spam services: * The services from below require a central-api key, which you can [request here](https://www.unrealircd.org/central-api/). * [Central Blocklist](https://www.unrealircd.org/docs/Central_Blocklist) is an attempt to detect and block spammers. It works similar to DNS Blacklists but the central blocklist receives many more details about the user that is trying to connect and therefore can make a better decision on whether a user is likely a spammer. * [Central Spamreport](https://www.unrealircd.org/docs/Central_spamreport) allows you to send spam reports (user details, last sent lines) via the `SPAMREPORT` command. This information may then be used to improve [Central Blocklist](https://www.unrealircd.org/docs/Central_Blocklist) and/or [Central Spamfilter](https://www.unrealircd.org/docs/Central_Spamfilter). * The [Central Spamfilter](https://www.unrealircd.org/docs/Central_Spamfilter), which provides `spamfilter { }` blocks that are centrally managed, is now fetched from a different URL if you have an Central API key set. This way, upstream can later provide `spamfilter { }` blocks that build on central blocklist scoring functionality, and also so upstream doesn't have to reveal all the central spamfilter blocks to the world. * New option `auto` for [set::hide-ban- reason](https://www.unrealircd.org/docs/Set_block#set::hide-ban-reason), which is now the default. This will hide the \*LINE reason to other users if the \*LINE reason contains the IP of the user, for example when it contains a DroneBL URL which has `lookup?ip=XXX`. This to protect the privacy of the user. Other possible settings are `no` (never hide, the previous default) and `yes` to always hide the \*LINE reason. In all cases the user affected by the server ban can still see the reason and IRCOps too. * Make [Deny channel](https://www.unrealircd.org/docs/Deny_channel_block) support escaped sequences like `channel "#xyz\*";` so you can match a literal `*` or `?` via `\*` and `\?`. * New option [listen::options::websocket::allow- origin](https://www.unrealircd.org/docs/Listen_block#options_block_(optiona…: this allows to restrict websocket connections to a list of websites (the sites hosting the HTML/JS page that makes the websocket connection). It doesn't *securely* restrict it though, non-browsers will bypass this restriction, but it can still be useful to restrict regular webchat users. * The [Proxy block](https://www.unrealircd.org/docs/Proxy_block) already had support for reverse proxying with the `Forwarded` header. Now it also properly supports `X-Forwarded-For`. If you previously used a proxy block with type `web`, then you now need to choose one of the new types explicitly. Note that using a reverse proxy for IRC traffic is rare (see the proxy block docs for details), but upstream offers the option. ## Changes * Reserve more file descriptors for internal use. For example, when there are 10,000 fd's are available upstream now reserves 250, and when 2048 are available upstream reserves 32. This so upstream has more fds available to handle things like log files, do HTTPS callbacks to blacklists, etc. * Make `$client.details` in logs follow the ident rules for users in the handshake too, so use the `~` prefix if ident lookups are enabled and identd fails etc. * More validation for operclass names (`a-zA-Z0-9_-`) * Hits for central-blocklist are now broadcasted globally instead of staying on the same server. ## Fixes * When using a trusted reverse proxy with the [Proxy block](https://www.unrealircd.org/docs/Proxy_block), under some circumstances it was possible for end-users to spoof IPs. * Crash issue when a module is reloaded (not unloaded) and that module no longer provides a particular moddata object, e.g. because it was renamed or no longer needed. This is rare, but did happen for one third party module recently. * Fix memory leak when unloading a module for good and that module provided ModData objects for "unknown users" (users still in the handshake). * Don't ask to generate TLS certificate if one already exists (issue introduced in 6.1.2). ## Developers and protocol * New hooks: `HOOKTYPE_WATCH_ADD`, `HOOKTYPE_WATCH_DEL`, `HOOKTYPE_MONITOR_NOTIFICATION`. * The hook `HOOKTYPE_IS_HANDSHAKE_FINISHED` is now properly called at all places. * A new [URL API](https://www.unrealircd.org/docs/Dev:URL_API) to easily fetch URLs from modules. -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Robert Scheck <robert(a)fedoraproject.org> 6.1.3-1 - Upgrade to 6.1.3 (#2252372) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252372 - unrealircd-6.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2252372 --------------------------------------------------------------------------------

1 0

Fedora EPEL 9 updates-testing report
by updates＠fedoraproject.org 10 Dec '23

10 Dec '23

The following builds have been pushed to Fedora EPEL 9 updates-testing chromium-120.0.6099.71-1.el9 expected-1.1.0-1.el9 guacamole-server-1.5.4-1.el9 unrealircd-6.1.3-1.el9 Details about builds: ================================================================================ chromium-120.0.6099.71-1.el9 (FEDORA-EPEL-2023-a0fcd69d86) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information: Update to 120.0.6099.71 ---- Update to 120.0.6099.62, upstream release fixes follow security issues: * High CVE-2023-6508: Use after free in Media Stream * High CVE-2023-6509: Use after free in Side Panel Search * Medium CVE-2023-6510: Use after free in Media Capture * Low CVE-2023-6511: Inappropriate implementation in Autofill * Low CVE-2023-6512: Inappropriate implementation in Web Browser UI ---- update to 119.0.6045.199, upstream security release * High CVE-2023-6348: Type Confusion in Spellcheck * High CVE-2023-6347: Use after free in Mojo * High CVE-2023-6346: Use after free in WebAudio * High CVE-2023-6350: Out of bounds memory access in libavif * High CVE-2023-6351: Use after free in libavif * High CVE-2023-6345: Integer overflow in Skia -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 8 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.71-1 - update to 120.0.6099.71 * Wed Dec 6 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.62-2 - drop unsupported ldflag which caused build failure * Tue Dec 5 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.62-1 - update to 120.0.6099.62 - fixed bz#2252874, built with control flow integrity (CFI) support * Sat Dec 2 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.56-1 - update to 120.0.6099.56 - enable qt6 UI backend * Sat Dec 2 2023 Than Ngo <than(a)redhat.com> - 119.0.6045.199-2 - fixed bz#2242271, built with bundleminizip in fedora > 39 - fixed bz#2251884, built with fstack-protector-strong for improved security * Wed Nov 29 2023 Than Ngo <than(a)redhat.com> - 119.0.6045.199-1 - update to 119.0.6045.199 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252009 - CVE-2023-6346 CVE-2023-6347 CVE-2023-6350 CVE-2023-6351 chromium: various flaws [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252009 [ 2 ] Bug #2252188 - CVE-2023-6345 chromium: chromium-browser: Integer overflow [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252188 [ 3 ] Bug #2252191 - CVE-2023-6348 chromium: chromium-browser: Type Confusion in Spellcheck [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252191 [ 4 ] Bug #2253151 - CVE-2023-6508 chromium: Use after free in Media Stream [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253151 [ 5 ] Bug #2253154 - CVE-2023-6509 chromium: Use after free in Side Panel Search [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253154 [ 6 ] Bug #2253157 - CVE-2023-6510 chromium: Use after free in Media Capture [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253157 [ 7 ] Bug #2253161 - CVE-2023-6511 chromium: Inappropriate implementation in Autofill [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253161 [ 8 ] Bug #2253164 - CVE-2023-6512 chromium: Inappropriate implementation in Web Browser UI [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253164 -------------------------------------------------------------------------------- ================================================================================ expected-1.1.0-1.el9 (FEDORA-EPEL-2023-ee66f94881) C++11/14/17 std::expected with functional-style extensions -------------------------------------------------------------------------------- Update Information: Build for EPEL8/9 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 16 2023 Vitaly Zaitsev <vitaly(a)easycoding.org> - 1.1.0-1 - Updated to version 1.1.0. * Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252323 - Please branch and build expected for EPEL8 and EPEL9 https://bugzilla.redhat.com/show_bug.cgi?id=2252323 -------------------------------------------------------------------------------- ================================================================================ guacamole-server-1.5.4-1.el9 (FEDORA-EPEL-2023-f1d8823b4b) Server-side native components that form the Guacamole proxy -------------------------------------------------------------------------------- Update Information: # Apache Guacamole 1.5.4 ## User interface / platform - History Recording Player should show controls when mouse is moved (GUACAMOLE-1872) - Bug: Control bar doesn��t auto-hide on history recording player (GUACAMOLE-1873) ## Authentication, integration, and storage - Bug: Regression in JSON module causes loading to fail (GUACAMOLE-1851) - Bug: Permission check for creating user groups is incorrect (GUACAMOLE-1856) ## Protocol support / guacd - Bug: Race condition can cause the first user for a connection to miss updates (GUACAMOLE-1846) - Bug: Parser reparses same instructions multiple times in some cases (GUACAMOLE-1849) - Bug: `guac_common_cursor_dup()` may segfault if cursor is being modified (GUACAMOLE-1850) - Add libguac convenience functions for memory management (GUACAMOLE-1867) ## Internationalization - Updates and corrections to Catalan translation (GUACAMOLE-1880) ## Documentation - TOTP Authentication - Add documentation relating to usage with docker (GUACAMOLE-1878) ## General housekeeping and cleanup - Update webapp dependencies to latest stable and compatible versions (GUACAMOLE-1859) - Bump version numbers to 1.5.4 (GUACAMOLE-1886) -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Robert Scheck <robert(a)fedoraproject.org> - 1.5.4-1 - Update to 1.5.4 (#2223510) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2223510 - guacamole-server-1.5.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2223510 -------------------------------------------------------------------------------- ================================================================================ unrealircd-6.1.3-1.el9 (FEDORA-EPEL-2023-2ac3f6abae) Open Source IRC server -------------------------------------------------------------------------------- Update Information: # UnrealIRCd 6.1.3 The main focus of this release is adding countermeasures against large scale spam/drones. Upstream does this by offering a central API which can be used for accessing Central Blocklist, Central Spamreport and Central Spamfilter. ## Enhancements * Central anti-spam services: * The services from below require a central-api key, which you can [request here](https://www.unrealircd.org/central-api/). * [Central Blocklist](https://www.unrealircd.org/docs/Central_Blocklist) is an attempt to detect and block spammers. It works similar to DNS Blacklists but the central blocklist receives many more details about the user that is trying to connect and therefore can make a better decision on whether a user is likely a spammer. * [Central Spamreport](https://www.unrealircd.org/docs/Central_spamreport) allows you to send spam reports (user details, last sent lines) via the `SPAMREPORT` command. This information may then be used to improve [Central Blocklist](https://www.unrealircd.org/docs/Central_Blocklist) and/or [Central Spamfilter](https://www.unrealircd.org/docs/Central_Spamfilter). * The [Central Spamfilter](https://www.unrealircd.org/docs/Central_Spamfilter), which provides `spamfilter { }` blocks that are centrally managed, is now fetched from a different URL if you have an Central API key set. This way, upstream can later provide `spamfilter { }` blocks that build on central blocklist scoring functionality, and also so upstream doesn't have to reveal all the central spamfilter blocks to the world. * New option `auto` for [set::hide-ban- reason](https://www.unrealircd.org/docs/Set_block#set::hide-ban-reason), which is now the default. This will hide the \*LINE reason to other users if the \*LINE reason contains the IP of the user, for example when it contains a DroneBL URL which has `lookup?ip=XXX`. This to protect the privacy of the user. Other possible settings are `no` (never hide, the previous default) and `yes` to always hide the \*LINE reason. In all cases the user affected by the server ban can still see the reason and IRCOps too. * Make [Deny channel](https://www.unrealircd.org/docs/Deny_channel_block) support escaped sequences like `channel "#xyz\*";` so you can match a literal `*` or `?` via `\*` and `\?`. * New option [listen::options::websocket::allow- origin](https://www.unrealircd.org/docs/Listen_block#options_block_(optiona…: this allows to restrict websocket connections to a list of websites (the sites hosting the HTML/JS page that makes the websocket connection). It doesn't *securely* restrict it though, non-browsers will bypass this restriction, but it can still be useful to restrict regular webchat users. * The [Proxy block](https://www.unrealircd.org/docs/Proxy_block) already had support for reverse proxying with the `Forwarded` header. Now it also properly supports `X-Forwarded-For`. If you previously used a proxy block with type `web`, then you now need to choose one of the new types explicitly. Note that using a reverse proxy for IRC traffic is rare (see the proxy block docs for details), but upstream offers the option. ## Changes * Reserve more file descriptors for internal use. For example, when there are 10,000 fd's are available upstream now reserves 250, and when 2048 are available upstream reserves 32. This so upstream has more fds available to handle things like log files, do HTTPS callbacks to blacklists, etc. * Make `$client.details` in logs follow the ident rules for users in the handshake too, so use the `~` prefix if ident lookups are enabled and identd fails etc. * More validation for operclass names (`a-zA-Z0-9_-`) * Hits for central-blocklist are now broadcasted globally instead of staying on the same server. ## Fixes * When using a trusted reverse proxy with the [Proxy block](https://www.unrealircd.org/docs/Proxy_block), under some circumstances it was possible for end-users to spoof IPs. * Crash issue when a module is reloaded (not unloaded) and that module no longer provides a particular moddata object, e.g. because it was renamed or no longer needed. This is rare, but did happen for one third party module recently. * Fix memory leak when unloading a module for good and that module provided ModData objects for "unknown users" (users still in the handshake). * Don't ask to generate TLS certificate if one already exists (issue introduced in 6.1.2). ## Developers and protocol * New hooks: `HOOKTYPE_WATCH_ADD`, `HOOKTYPE_WATCH_DEL`, `HOOKTYPE_MONITOR_NOTIFICATION`. * The hook `HOOKTYPE_IS_HANDSHAKE_FINISHED` is now properly called at all places. * A new [URL API](https://www.unrealircd.org/docs/Dev:URL_API) to easily fetch URLs from modules. -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Robert Scheck <robert(a)fedoraproject.org> 6.1.3-1 - Upgrade to 6.1.3 (#2252372) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252372 - unrealircd-6.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2252372 --------------------------------------------------------------------------------

1 0

Fedora EPEL 8 updates-testing report
by updates＠fedoraproject.org 10 Dec '23

10 Dec '23

The following Fedora EPEL 8 Security updates need testing: Age URL 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-76db503610 seamonkey-2.53.18-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing chromium-120.0.6099.71-1.el8 expected-1.1.0-1.el8 guacamole-server-1.5.4-1.el8 unrealircd-6.1.3-1.el8 Details about builds: ================================================================================ chromium-120.0.6099.71-1.el8 (FEDORA-EPEL-2023-d1b0df83e0) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information: Update to 120.0.6099.71 ---- Update to 120.0.6099.62, upstream release fixes follow security issues: * High CVE-2023-6508: Use after free in Media Stream * High CVE-2023-6509: Use after free in Side Panel Search * Medium CVE-2023-6510: Use after free in Media Capture * Low CVE-2023-6511: Inappropriate implementation in Autofill * Low CVE-2023-6512: Inappropriate implementation in Web Browser UI ---- update to 119.0.6045.199, upstream security release * High CVE-2023-6348: Type Confusion in Spellcheck * High CVE-2023-6347: Use after free in Mojo * High CVE-2023-6346: Use after free in WebAudio * High CVE-2023-6350: Out of bounds memory access in libavif * High CVE-2023-6351: Use after free in libavif * High CVE-2023-6345: Integer overflow in Skia -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 8 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.71-1 - update to 120.0.6099.71 * Wed Dec 6 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.62-2 - drop unsupported ldflag which caused build failure * Tue Dec 5 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.62-1 - update to 120.0.6099.62 - fixed bz#2252874, built with control flow integrity (CFI) support * Sat Dec 2 2023 Than Ngo <than(a)redhat.com> - 120.0.6099.56-1 - update to 120.0.6099.56 - enable qt6 UI backend * Sat Dec 2 2023 Than Ngo <than(a)redhat.com> - 119.0.6045.199-2 - fixed bz#2242271, built with bundleminizip in fedora > 39 - fixed bz#2251884, built with fstack-protector-strong for improved security * Wed Nov 29 2023 Than Ngo <than(a)redhat.com> - 119.0.6045.199-1 - update to 119.0.6045.199 * Sun Nov 19 2023 Than Ngo <than(a)redhat.com> - 119.0.6045.159-2 - fix ffmpeg conflicts -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252009 - CVE-2023-6346 CVE-2023-6347 CVE-2023-6350 CVE-2023-6351 chromium: various flaws [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252009 [ 2 ] Bug #2252188 - CVE-2023-6345 chromium: chromium-browser: Integer overflow [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252188 [ 3 ] Bug #2252191 - CVE-2023-6348 chromium: chromium-browser: Type Confusion in Spellcheck [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252191 [ 4 ] Bug #2253151 - CVE-2023-6508 chromium: Use after free in Media Stream [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253151 [ 5 ] Bug #2253154 - CVE-2023-6509 chromium: Use after free in Side Panel Search [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253154 [ 6 ] Bug #2253157 - CVE-2023-6510 chromium: Use after free in Media Capture [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253157 [ 7 ] Bug #2253161 - CVE-2023-6511 chromium: Inappropriate implementation in Autofill [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253161 [ 8 ] Bug #2253164 - CVE-2023-6512 chromium: Inappropriate implementation in Web Browser UI [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253164 -------------------------------------------------------------------------------- ================================================================================ expected-1.1.0-1.el8 (FEDORA-EPEL-2023-ddda2b79e7) C++11/14/17 std::expected with functional-style extensions -------------------------------------------------------------------------------- Update Information: Build for EPEL8/9 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 16 2023 Vitaly Zaitsev <vitaly(a)easycoding.org> - 1.1.0-1 - Updated to version 1.1.0. * Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue Jan 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Mon Jan 6 2020 Vitaly Zaitsev <vitaly(a)easycoding.org> - 1.0.0-1 - Initial SPEC release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252323 - Please branch and build expected for EPEL8 and EPEL9 https://bugzilla.redhat.com/show_bug.cgi?id=2252323 -------------------------------------------------------------------------------- ================================================================================ guacamole-server-1.5.4-1.el8 (FEDORA-EPEL-2023-eb17d13fbd) Server-side native components that form the Guacamole proxy -------------------------------------------------------------------------------- Update Information: # Apache Guacamole 1.5.4 ## User interface / platform - History Recording Player should show controls when mouse is moved (GUACAMOLE-1872) - Bug: Control bar doesn��t auto-hide on history recording player (GUACAMOLE-1873) ## Authentication, integration, and storage - Bug: Regression in JSON module causes loading to fail (GUACAMOLE-1851) - Bug: Permission check for creating user groups is incorrect (GUACAMOLE-1856) ## Protocol support / guacd - Bug: Race condition can cause the first user for a connection to miss updates (GUACAMOLE-1846) - Bug: Parser reparses same instructions multiple times in some cases (GUACAMOLE-1849) - Bug: `guac_common_cursor_dup()` may segfault if cursor is being modified (GUACAMOLE-1850) - Add libguac convenience functions for memory management (GUACAMOLE-1867) ## Internationalization - Updates and corrections to Catalan translation (GUACAMOLE-1880) ## Documentation - TOTP Authentication - Add documentation relating to usage with docker (GUACAMOLE-1878) ## General housekeeping and cleanup - Update webapp dependencies to latest stable and compatible versions (GUACAMOLE-1859) - Bump version numbers to 1.5.4 (GUACAMOLE-1886) -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Robert Scheck <robert(a)fedoraproject.org> - 1.5.4-1 - Update to 1.5.4 (#2223510) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2223510 - guacamole-server-1.5.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2223510 -------------------------------------------------------------------------------- ================================================================================ unrealircd-6.1.3-1.el8 (FEDORA-EPEL-2023-a1267e32b9) Open Source IRC server -------------------------------------------------------------------------------- Update Information: # UnrealIRCd 6.1.3 The main focus of this release is adding countermeasures against large scale spam/drones. Upstream does this by offering a central API which can be used for accessing Central Blocklist, Central Spamreport and Central Spamfilter. ## Enhancements * Central anti-spam services: * The services from below require a central-api key, which you can [request here](https://www.unrealircd.org/central-api/). * [Central Blocklist](https://www.unrealircd.org/docs/Central_Blocklist) is an attempt to detect and block spammers. It works similar to DNS Blacklists but the central blocklist receives many more details about the user that is trying to connect and therefore can make a better decision on whether a user is likely a spammer. * [Central Spamreport](https://www.unrealircd.org/docs/Central_spamreport) allows you to send spam reports (user details, last sent lines) via the `SPAMREPORT` command. This information may then be used to improve [Central Blocklist](https://www.unrealircd.org/docs/Central_Blocklist) and/or [Central Spamfilter](https://www.unrealircd.org/docs/Central_Spamfilter). * The [Central Spamfilter](https://www.unrealircd.org/docs/Central_Spamfilter), which provides `spamfilter { }` blocks that are centrally managed, is now fetched from a different URL if you have an Central API key set. This way, upstream can later provide `spamfilter { }` blocks that build on central blocklist scoring functionality, and also so upstream doesn't have to reveal all the central spamfilter blocks to the world. * New option `auto` for [set::hide-ban- reason](https://www.unrealircd.org/docs/Set_block#set::hide-ban-reason), which is now the default. This will hide the \*LINE reason to other users if the \*LINE reason contains the IP of the user, for example when it contains a DroneBL URL which has `lookup?ip=XXX`. This to protect the privacy of the user. Other possible settings are `no` (never hide, the previous default) and `yes` to always hide the \*LINE reason. In all cases the user affected by the server ban can still see the reason and IRCOps too. * Make [Deny channel](https://www.unrealircd.org/docs/Deny_channel_block) support escaped sequences like `channel "#xyz\*";` so you can match a literal `*` or `?` via `\*` and `\?`. * New option [listen::options::websocket::allow- origin](https://www.unrealircd.org/docs/Listen_block#options_block_(optiona…: this allows to restrict websocket connections to a list of websites (the sites hosting the HTML/JS page that makes the websocket connection). It doesn't *securely* restrict it though, non-browsers will bypass this restriction, but it can still be useful to restrict regular webchat users. * The [Proxy block](https://www.unrealircd.org/docs/Proxy_block) already had support for reverse proxying with the `Forwarded` header. Now it also properly supports `X-Forwarded-For`. If you previously used a proxy block with type `web`, then you now need to choose one of the new types explicitly. Note that using a reverse proxy for IRC traffic is rare (see the proxy block docs for details), but upstream offers the option. ## Changes * Reserve more file descriptors for internal use. For example, when there are 10,000 fd's are available upstream now reserves 250, and when 2048 are available upstream reserves 32. This so upstream has more fds available to handle things like log files, do HTTPS callbacks to blacklists, etc. * Make `$client.details` in logs follow the ident rules for users in the handshake too, so use the `~` prefix if ident lookups are enabled and identd fails etc. * More validation for operclass names (`a-zA-Z0-9_-`) * Hits for central-blocklist are now broadcasted globally instead of staying on the same server. ## Fixes * When using a trusted reverse proxy with the [Proxy block](https://www.unrealircd.org/docs/Proxy_block), under some circumstances it was possible for end-users to spoof IPs. * Crash issue when a module is reloaded (not unloaded) and that module no longer provides a particular moddata object, e.g. because it was renamed or no longer needed. This is rare, but did happen for one third party module recently. * Fix memory leak when unloading a module for good and that module provided ModData objects for "unknown users" (users still in the handshake). * Don't ask to generate TLS certificate if one already exists (issue introduced in 6.1.2). ## Developers and protocol * New hooks: `HOOKTYPE_WATCH_ADD`, `HOOKTYPE_WATCH_DEL`, `HOOKTYPE_MONITOR_NOTIFICATION`. * The hook `HOOKTYPE_IS_HANDSHAKE_FINISHED` is now properly called at all places. * A new [URL API](https://www.unrealircd.org/docs/Dev:URL_API) to easily fetch URLs from modules. -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 9 2023 Robert Scheck <robert(a)fedoraproject.org> 6.1.3-1 - Upgrade to 6.1.3 (#2252372) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252372 - unrealircd-6.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2252372 --------------------------------------------------------------------------------

1 0

← Newer
1
2
3
4
5
6
7
8
9
Older →

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

epel-devel December 2023