The following Fedora EPEL 7 Security updates need testing:
Age URL
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-c126e4af73 chromium-112.0.5615.121-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
csdiff-3.0.2-1.el7
python-beautifulsoup4-4.4.1-2.el7
Details about builds:
================================================================================
csdiff-3.0.2-1.el7 (FEDORA-EPEL-2023-3ebce732da)
Non-interactive tools for processing code scan results in plain-text
--------------------------------------------------------------------------------
Update Information:
- update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Kamil Dudka <kdudka(a)redhat.com> 3.0.2-1
- update to latest upstream release
--------------------------------------------------------------------------------
================================================================================
python-beautifulsoup4-4.4.1-2.el7 (FEDORA-EPEL-2023-a31058bee6)
HTML/XML parser for quick-turnaround applications like screen-scraping
--------------------------------------------------------------------------------
Update Information:
The package has been rebuilt and has now picked up the extra Provides of: *
python3-beautifulsoup4 = 4.4.1-2.el7 * python3.6dist(beautifulsoup4) = 4.4.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Steve Traylen <steve.traylen(a)cern.ch> - 4.4.1-2
- Rebuild to pick up new auto provisions
--------------------------------------------------------------------------------
The following Fedora EPEL 9 Security updates need testing:
Age URL
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-97d6b10e34 rnp-0.16.3-1.el9
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-4894f94aaa dr_libs-0^20230324git4b3d078-0.1.el9
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-e5d244075e suricata-6.0.11-1.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
fedora-license-data-1.18-1.el9
libmongocrypt-1.7.4-1.el9
mrack-1.15.0-1.el9
php-smbclient-1.1.1-1.el9
rednotebook-2.29.5-1.el9
rust-ctor-0.2.0-1.el9
rust-ctor0.1-0.1.26-1.el9
rust-linux-raw-sys-0.3.2-1.el9
rust-rustix-0.37.12-1.el9
Details about builds:
================================================================================
fedora-license-data-1.18-1.el9 (FEDORA-EPEL-2023-df0f1b08d0)
Fedora Linux license data
--------------------------------------------------------------------------------
Update Information:
- add BNF grammar - Add BSD-4.3TAHOE - Add Latex2e-translated-notice - Update
UnixCrypt.toml since we don't use legacy Fedora URLs for SPDX (license list)
identifiers - Add new file: UnixCrypt - Add new file: LicenseRef-Schematron-
schema - After the MIT-Festival license was accepted by SPDX, add it to the data
- add field to template to warn about automatic conversion - Add
jisksp16-1990-fonts to public-domain-text.txt - Add groff public domain notice -
Add public-domain texts for libinstpatch - Update to correct SPDX id: eCos-
exception-2.0 - Update QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception.toml
- Add new file: QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception - Add new
file: Xdebug-1.03 - Add new file: NIST-Software
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 20 2023 Miroslav Such�� <msuchy(a)redhat.com> 1.18-1
- add BNF grammar
- Add BSD-4.3TAHOE
- Add Latex2e-translated-notice
- Update UnixCrypt.toml since we don't use legacy Fedora URLs for SPDX (license
list) identifiers
- Add new file: UnixCrypt
- Add new file: LicenseRef-Schematron-schema
- After the MIT-Festival license was accepted by SPDX, add it to the data
- add field to template to warn about automatic conversion
- Add jisksp16-1990-fonts to public-domain-text.txt
- Add groff public domain notice
- Add public-domain texts for libinstpatch
- Update to correct SPDX id: eCos-exception-2.0
- Update QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception.toml
- Add new file: QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception
- Add new file: Xdebug-1.03
- Add new file: NIST-Software
--------------------------------------------------------------------------------
================================================================================
libmongocrypt-1.7.4-1.el9 (FEDORA-EPEL-2023-3d23fad9ba)
The companion C library for client side encryption in drivers
--------------------------------------------------------------------------------
Update Information:
**Version 1.7.4** Fixed - Fix build on macOS Ventura. ---- **Version
1.7.3** Fixed - Fix KMIP Register request for versions 1.12-1.13.0 of
Hashicorp Vault. - Fix possible memory leak when encrypting malformed BSON with
Queryable Encryption. ---- **Version 1.7.2** Improvements - Add toggle for
Decimal128 Range Support. Fixed - Fix i686 (32-bit) build. - Fix 32-bit ARM
build. ---- **Version 1.7.1** Improvements - Vendor Intel DFP library and
allow using system DFP. Fixed - Fix possible abort on base64 decode error of
KMS messages. - Fix ILP32-target builds. - Fix LTO build. - Fix IntelDFP to not
require Git. ---- **Version 1.7.0** New Features - Add encryptExpression
helper - Support for range index. NOTE: The Range algorithm is experimental
only. It is not intended for public use.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 19 2023 Remi Collet <remi(a)remirepo.net> - 1.7.4-1
- update to 1.7.4
--------------------------------------------------------------------------------
================================================================================
mrack-1.15.0-1.el9 (FEDORA-EPEL-2023-6aa937d3ce)
Multicloud use-case based multihost async provisioner
--------------------------------------------------------------------------------
Update Information:
Automatic update for mrack-1.15.0-1.el9. ##### **Changelog for mrack** ``` *
Tue Apr 18 2023 Tibor Dudl��k <tdudlak(a)redhat.com> - 1.15.0-1 - f9f0e33 test: Add
missing strategy_retry test (Tibor Dudl��k) - 121c5db refactor(provider): take
max_utilization out to method to ease mocking (Tibor Dudl��k) - dc74ced test: Add
missing tests for fixed code from https://github.com/neoave/mrack/pull/245
(Tibor Dudl��k) - 86393ab feat(outputs): preset username and password for windows
host in pytest-mh (Tibor Dudl��k) - 4c26b5f feat(outputs): merge nested
dictionary instead of overriding it (Tibor Dudl��k) - 4dde2e5 feat(utils): add
merge_dict (Tibor Dudl��k) - 5440be1 refactor: fixes _openstack_gather_responses
test warnings and exec time (David Pascual) - e29031b fix: Handle 403 AuthError
(out of quota) in openstack provisioning (David Pascual) - a4e5075 feat:
configurable ssh options (Petr Vobornik) - e9d716e chore: fix docs dependencies
in tox run (Petr Vobornik) - 6f1943b chore: add Markdown support to docs and add
design section (Petr Vobornik) - 88458e1 docs: SSH options design (Petr
Vobornik) ```
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 18 2023 Tibor Dudl��k <tdudlak(a)redhat.com> - 1.15.0-1
- f9f0e33 test: Add missing strategy_retry test (Tibor Dudl��k)
- 121c5db refactor(provider): take max_utilization out to method to ease mocking (Tibor Dudl��k)
- dc74ced test: Add missing tests for fixed code from https://github.com/neoave/mrack/pull/245 (Tibor Dudl��k)
- 86393ab feat(outputs): preset username and password for windows host in pytest-mh (Tibor Dudl��k)
- 4c26b5f feat(outputs): merge nested dictionary instead of overriding it (Tibor Dudl��k)
- 4dde2e5 feat(utils): add merge_dict (Tibor Dudl��k)
- 5440be1 refactor: fixes _openstack_gather_responses test warnings and exec time (David Pascual)
- e29031b fix: Handle 403 AuthError (out of quota) in openstack provisioning (David Pascual)
- a4e5075 feat: configurable ssh options (Petr Vobornik)
- e9d716e chore: fix docs dependencies in tox run (Petr Vobornik)
- 6f1943b chore: add Markdown support to docs and add design section (Petr Vobornik)
- 88458e1 docs: SSH options design (Petr Vobornik)
--------------------------------------------------------------------------------
================================================================================
php-smbclient-1.1.1-1.el9 (FEDORA-EPEL-2023-04f98f3649)
PHP wrapper for libsmbclient
--------------------------------------------------------------------------------
Update Information:
**Version 1.1.1** * Workaround for regression in libsmbclient 4.16.9, 4.17.5
and 4.18
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 19 2023 Remi Collet <remi(a)remirepo.net> - 1.1.1-1
- update to 1.1.1
- drop patch merged upstream
--------------------------------------------------------------------------------
================================================================================
rednotebook-2.29.5-1.el9 (FEDORA-EPEL-2023-f8a382bb51)
Daily journal with calendar, templates and keyword searching
--------------------------------------------------------------------------------
Update Information:
- New upstream version 2.29.5. ---- * Wed Apr 12 2023 Phil Wyett
<philip.wyett(a)kathenas.org> - 2.29.4-1 - New upstream version 2.29.4. - Use SPDX
license identifier. - Requires webkit2gtk4.1 where able. - Little spec file
rework.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 19 2023 Phil Wyett <philip.wyett(a)kathenas.org> - 2.29.5-1
- New upstream version 2.29.5.
* Wed Apr 12 2023 Phil Wyett <philip.wyett(a)kathenas.org> - 2.29.4-1
- New upstream version 2.29.4.
- Use SPDX license identifier.
- Requires webkit2gtk4.1 where able.
- Little spec file rework.
* Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.29.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-ctor-0.2.0-1.el9 (FEDORA-EPEL-2023-3805ff731c)
__attribute__((constructor)) for Rust
--------------------------------------------------------------------------------
Update Information:
- Update the ctor crate to version 0.2.0. - Add a compat package for version 0.1
of the ctor crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 19 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.0-1
- Update to version 0.2.0; Fixes RHBZ#2181893
--------------------------------------------------------------------------------
================================================================================
rust-ctor0.1-0.1.26-1.el9 (FEDORA-EPEL-2023-3805ff731c)
__attribute__((constructor)) for Rust
--------------------------------------------------------------------------------
Update Information:
- Update the ctor crate to version 0.2.0. - Add a compat package for version 0.1
of the ctor crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 19 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.26-1
- Initial import (ctor 0.1 compat package)
--------------------------------------------------------------------------------
================================================================================
rust-linux-raw-sys-0.3.2-1.el9 (FEDORA-EPEL-2023-afdd275923)
Generated bindings for Linux's userspace API
--------------------------------------------------------------------------------
Update Information:
- Update the rustix crate to version 0.37.12. - Update the linux-raw-sys crate
to version 0.3.2.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 19 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.3.2-1
- Update to version 0.3.2; Fixes RHBZ#2187774
--------------------------------------------------------------------------------
================================================================================
rust-rustix-0.37.12-1.el9 (FEDORA-EPEL-2023-afdd275923)
Safe Rust bindings to POSIX/Unix/Linux/Winsock2-like syscalls
--------------------------------------------------------------------------------
Update Information:
- Update the rustix crate to version 0.37.12. - Update the linux-raw-sys crate
to version 0.3.2.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 19 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.37.12-1
- Update to version 0.37.12; Fixes RHBZ#2187825
--------------------------------------------------------------------------------
The following builds have been pushed to Fedora EPEL 7 updates-testing
chromium-112.0.5615.121-1.el7
fedora-license-data-1.19-1.el7
Details about builds:
================================================================================
chromium-112.0.5615.121-1.el7 (FEDORA-EPEL-2023-c126e4af73)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
update to 112.0.5615.121. Fixes the following security issues: CVE-2023-2004
CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137
CVE-2023-2033
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 15 2023 Than Ngo <than(a)redhat.com> - 112.0.5615.121-1
- update to 112.0.5615.121
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2186431 - CVE-2023-2004 chromium: freetype: integer overflowin in tt_hvadvance_adjust() in src/truetype/ttgxvar.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186431
[ 2 ] Bug #2186878 - CVE-2023-2033 chromium: chromium-browser: Type Confusion in V8 [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186878
[ 3 ] Bug #2186879 - CVE-2023-2033 chromium: chromium-browser: Type Confusion in V8 [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186879
[ 4 ] Bug #2186982 - [chromium] GPU process crashes on AMD
https://bugzilla.redhat.com/show_bug.cgi?id=2186982
[ 5 ] Bug #2187064 - Crash in chromium
https://bugzilla.redhat.com/show_bug.cgi?id=2187064
[ 6 ] Bug #2187346 - Lost ability to apply visual effects
https://bugzilla.redhat.com/show_bug.cgi?id=2187346
[ 7 ] Bug #2187772 - Hardware acceleration for chromium is not available, even when forcing it
https://bugzilla.redhat.com/show_bug.cgi?id=2187772
[ 8 ] Bug #2187900 - CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137 chromium: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2187900
[ 9 ] Bug #2187901 - CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137 chromium: various flaws [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2187901
--------------------------------------------------------------------------------
================================================================================
fedora-license-data-1.19-1.el7 (FEDORA-EPEL-2023-b9971da112)
Fedora Linux license data
--------------------------------------------------------------------------------
Update Information:
- add BNF grammar - Add BSD-4.3TAHOE - Add Latex2e-translated-notice - Update
UnixCrypt.toml since we don't use legacy Fedora URLs for SPDX (license list)
identifiers - Add new file: UnixCrypt - Add new file: LicenseRef-Schematron-
schema - After the MIT-Festival license was accepted by SPDX, add it to the data
- add field to template to warn about automatic conversion - Add
jisksp16-1990-fonts to public-domain-text.txt - Add groff public domain notice -
Add public-domain texts for libinstpatch - Update to correct SPDX id: eCos-
exception-2.0 - Update QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception.toml
- Add new file: QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception - Add new
file: Xdebug-1.03 - Add new file: NIST-Software
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 20 2023 Miroslav Such�� <msuchy(a)redhat.com> 1.19-1
- fix el7 build failure
* Thu Apr 20 2023 Miroslav Such�� <msuchy(a)redhat.com> 1.18-1
- add BNF grammar
- Add BSD-4.3TAHOE
- Add Latex2e-translated-notice
- Update UnixCrypt.toml since we don't use legacy Fedora URLs for SPDX (license
list) identifiers
- Add new file: UnixCrypt
- Add new file: LicenseRef-Schematron-schema
- After the MIT-Festival license was accepted by SPDX, add it to the data
- add field to template to warn about automatic conversion
- Add jisksp16-1990-fonts to public-domain-text.txt
- Add groff public domain notice
- Add public-domain texts for libinstpatch
- Update to correct SPDX id: eCos-exception-2.0
- Update QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception.toml
- Add new file: QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception
- Add new file: Xdebug-1.03
- Add new file: NIST-Software
--------------------------------------------------------------------------------
The following Fedora EPEL 7 Security updates need testing:
Age URL
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-fca191b57e libyang-2.0.164-2.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
libmediainfo-23.03-2.el7
libzen-0.4.41-1.el7
rpkg-1.66-6.el7
Details about builds:
================================================================================
libmediainfo-23.03-2.el7 (FEDORA-EPEL-2023-65c6b2b082)
Library for supplies technical and tag information about a video or audio file
--------------------------------------------------------------------------------
Update Information:
Update libzen and rebuild libmediainfo.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 17 2023 Vasiliy N. Glazov <vascom2(a)gmail.com> - 23.03-2
- Rebuild for new libzen
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2185011 - libzen-0.4.41 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2185011
--------------------------------------------------------------------------------
================================================================================
libzen-0.4.41-1.el7 (FEDORA-EPEL-2023-65c6b2b082)
Shared library for libmediainfo and medianfo*
--------------------------------------------------------------------------------
Update Information:
Update libzen and rebuild libmediainfo.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 17 2023 Vasiliy N. Glazov <vascom2(a)gmail.com> - 0.4.41-1
- Update to 0.4.41
* Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.4.40-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2185011 - libzen-0.4.41 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2185011
--------------------------------------------------------------------------------
================================================================================
rpkg-1.66-6.el7 (FEDORA-EPEL-2023-78695ac3c5)
Python library for interacting with rpm+git
--------------------------------------------------------------------------------
Update Information:
A list of patches mostly for the `pre-push-check` functionality. * Pre-push
hook won't check private branches * Config file option to skip the hook script
creation * Allow empty commits when `uses_rpmautospec` * Check remote file a
correct hash (for repositories that are still using md5 hashes) * Ignore missing
spec file in pre-push hook * import_srpm: allow pre-generated srpms
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 18 2023 Ond��ej Nosek <onosek(a)redhat.com> - 1.66-6
- Patch: Pre-push hook won't check private branches
- Patch: Config file option to skip the hook script creation
- Patch: Allow empty commits when `uses_rpmautospec`
- Patch: Check remote file with correct hash
- Patch: Ignore missing spec file in pre-push hook
- Patch: import_srpm: allow pre-generated srpms
* Sat Apr 1 2023 Ond��ej Nosek <onosek(a)redhat.com> - 1.66-5
- Patch: Fix unittests for `clone` and pre-push hook script
- Patch: pre-push hook script contains a user's config
- Patch: A HEAD query into a lookaside cache
- Patch: `pre-push-check` have to use spectool with --define
- Patch: Add more information about pre-push hook
- Patch: Update to spec file presence checking
- Patch: More robust spec file presence checking
--------------------------------------------------------------------------------