The following Fedora EPEL 8 Security updates need testing:
Age URL
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-0754fdd085
openvpn-2.4.11-1.el8
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-24ab212ee8
p7zip-16.02-20.el8
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-3a1aaec707
pngcheck-2.4.0-8.el8
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-b308580516
perl-Image-ExifTool-12.16-3.el8
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-bbc31e5925
java-latest-openjdk-16.0.1.0.9-1.rolling.el8
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-33433b2f22
python-yara-4.1.0-1.el8 yara-4.1.0-1.el8
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-a3a4866065
libopenmpt-0.5.8-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
keepassxc-2.6.4-2.el8
openbgpd-6.9p0-1.el8
osslsigncode-2.1-3.el8
python-markdown2-2.4.0-1.el8
wireguard-tools-1.0.20210424-1.el8
xorgxrdp-0.2.16-1.el8
zchunk-1.1.11-1.el8
Details about builds:
================================================================================
keepassxc-2.6.4-2.el8 (FEDORA-EPEL-2021-5008bacf01)
Cross-platform password manager
--------------------------------------------------------------------------------
Update Information:
xcb fix for GNOME
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 1 2021 Germano Massullo <germano.massullo(a)gmail.com> - 2.6.4-2
- added xcb.patch that fixes GNOME quirks on Wayland sessions. Read
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.o...
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1941731 - KeePassXC do not start on centos 8
https://bugzilla.redhat.com/show_bug.cgi?id=1941731
--------------------------------------------------------------------------------
================================================================================
openbgpd-6.9p0-1.el8 (FEDORA-EPEL-2021-f99560d576)
OpenBGPD Routing Daemon
--------------------------------------------------------------------------------
Update Information:
OpenBGPD 6.9p0 ============== This is the first stable release for the 6.9
version. It includes the following changes: * Introduced `bgpd(8)` `rde
evaluate all` to reduce path hiding in IXP route-server environments. * Added
RTR support to OpenBGPD. * Added `bgpctl(8)` `show rtr` to display basic
information about RTR sessions. * Added `bgpctl(8)` `show sets` to display
information about the `roa-set`, `as-sets` and `prefix-sets` loaded into
`bgpd(8)`. * Properly implemented `rde med compare strict` in `bgpd(8)` and
ensured that the order of prefixes is always correct. * Introduced the
`bgpd.conf(5)` per neighbor and global config option `reject as-set yes/no` to
allow rejection of received `UPDATES` with `AS_SET` segments. These rejected
prefixes can be viewed with `bgpctl show rib in error`. * No longer allow
configuration of the same neighbor multiple times. * Introduced a send hold
timer in `bgpd(8)` to detect stalls on the sending side of a TCP connection,
acting as a last resort to detect faulty peers. * `pf(4)` tables track now
prefixes correctly even when received by multiple sessions.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 30 2021 Robert Scheck <robert(a)fedoraproject.org> 6.9p0-1
- Upgrade to 6.9p0 (#1955524)
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 6.8p1-3
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.8p1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1955524 - openbgpd-6.9p0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1955524
--------------------------------------------------------------------------------
================================================================================
osslsigncode-2.1-3.el8 (FEDORA-EPEL-2021-aaded2d5c8)
OpenSSL based Authenticode signing for PE/MSI/Java CAB files
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1955804 - please build osslsigncode for epel8
https://bugzilla.redhat.com/show_bug.cgi?id=1955804
--------------------------------------------------------------------------------
================================================================================
python-markdown2-2.4.0-1.el8 (FEDORA-EPEL-2021-9be66bdb10)
A fast and complete Python implementation of Markdown
--------------------------------------------------------------------------------
Update Information:
#### python-markdown2 2.4.0 - [pull #377] Fixed bug breaking strings elements
in metadata lists - [pull #380] When rendering fenced code blocks, also add the
`language-LANG` class - [pull #387] Regex DoS fixes
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 1 2021 Thomas Moschny <thomas.moschny(a)gmx.de> - 2.4.0-1
- Update to 2.4.0.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1934836 - CVE-2021-26813 python-markdown2: Regular expression denial of
service [epel-8]
https://bugzilla.redhat.com/show_bug.cgi?id=1934836
--------------------------------------------------------------------------------
================================================================================
wireguard-tools-1.0.20210424-1.el8 (FEDORA-EPEL-2021-ce9838bb51)
Fast, modern, secure VPN tunnel
--------------------------------------------------------------------------------
Update Information:
- wg-quick: freebsd: check for socket using -S, not -f - wg-quick: freebsd: do
not assume point-to-point interface flag - wg-quick: freebsd: use ifconfig for
determining if interface is up - wg-quick: kill route monitor when loop
terminates
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 30 2021 Joe Doss <joe(a)solidadmin.com> - 1.0.20210424-1
- wg-quick: freebsd: check for socket using -S, not -f
- wg-quick: freebsd: do not assume point-to-point interface flag
- wg-quick: freebsd: use ifconfig for determining if interface is up
- wg-quick: kill route monitor when loop terminates
--------------------------------------------------------------------------------
================================================================================
xorgxrdp-0.2.16-1.el8 (FEDORA-EPEL-2021-d00c8fe42f)
Implementation of xrdp backend as Xorg modules
--------------------------------------------------------------------------------
Update Information:
xorgxrdp v0.2.16 has been released. This version includes following features &
fixes: - Move to GitHub Actions for CI (#182, #191) - Improve stability of
xorgxrdp when resolution changes during a session ("dynamic resolution") (#183)
- Add client_info version check (#184) - Add some glamor build checks/help
(#185)
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 1 2021 Bojan Smojver <bojan(a)rexursive.com> - 0.2.16-1
- Bump up to 0.2.16
* Wed Apr 14 2021 Bojan Smojver <bojan(a)rexursive.com> - 0.2.15-2
- Rebuild against xorg-x11-server 1.20.11
* Thu Jan 28 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.15-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
zchunk-1.1.11-1.el8 (FEDORA-EPEL-2021-771dc76275)
Compressed file format that allows easy deltas
--------------------------------------------------------------------------------
Update Information:
Fix rare bug that occurs when trying to download separate chunks for certain
specific webservers
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 1 2021 Jonathan Dieter <jdieter(a)gmail.com> - 1.1.11-1
- Fix multipart download failures on rare web servers
* Thu Jan 28 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.9-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------