The following Fedora EPEL 8 Security updates need testing:
Age URL
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-a324bfef02
strongswan-5.9.8-1.el8
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-6cfebbe90a
jhead-3.06.0.1-5.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-48a9da6be8
ipython-7.16.3-1.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-984ee8bb5b
exim-4.96-3.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-0b4d1769c1
glances-3.3.0.1-1.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-e6eed63b43
kdiskmark-3.1.2-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
cacti-1.2.22-1.el8
cacti-spine-1.2.22-1.el8
kiwi-9.24.48-2.el8
mbedtls-2.28.1-1.el8
mold-1.6.0-1.el8
netcat-1.219-1.el8
Details about builds:
================================================================================
cacti-1.2.22-1.el8 (FEDORA-EPEL-2022-c142c82939)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
- Update to 1.2.22
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 22 2022 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.22-1
- Update to 1.2.22
* Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.21-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
cacti-spine-1.2.22-1.el8 (FEDORA-EPEL-2022-c142c82939)
Threaded poller for Cacti written in C
--------------------------------------------------------------------------------
Update Information:
- Update to 1.2.22
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 22 2022 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.22-1
- Update to 1.2.22
* Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.21-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
kiwi-9.24.48-2.el8 (FEDORA-EPEL-2022-dfd96c4980)
Flexible operating system image builder
--------------------------------------------------------------------------------
Update Information:
Backport patch for being able to build OCI containers in Mock (nspawn)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 22 2022 Igor Raits <igor(a)gooddata.com> - 9.24.48-2
- Backport patch for being able to build OCI containers in Mock (nspawn)
--------------------------------------------------------------------------------
================================================================================
mbedtls-2.28.1-1.el8 (FEDORA-EPEL-2022-833c1b943c)
Light-weight cryptographic and SSL/TLS library
--------------------------------------------------------------------------------
Update Information:
- Update to 2.28.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 22 2022 Morten Stevens <mstevens(a)fedoraproject.org> - 2.28.1-1
- Update to 2.28.1
* Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.28.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2037321 - CVE-2021-45451 mbedtls: policy bypass/oracle-based decryption in
psa_aead_generate_nonce [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2037321
--------------------------------------------------------------------------------
================================================================================
mold-1.6.0-1.el8 (FEDORA-EPEL-2022-015e62f06b)
A Modern Linker
--------------------------------------------------------------------------------
Update Information:
Bump version to 1.6.0
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 22 2022 Christoph Erhardt <fedora(a)sicherha.de> - 1.6.0-1
- Bump version to 1.6.0
- Add new supported architectures
- Drop upstreamed patch
--------------------------------------------------------------------------------
================================================================================
netcat-1.219-1.el8 (FEDORA-EPEL-2022-394091b516)
OpenBSD netcat to read and write data across connections using TCP or UDP
--------------------------------------------------------------------------------
Update Information:
# OpenBSD netcat 1.219 * Do not refuse valid IPv6 addresses in `-X` connect
(`HTTP CONNECT` proxy) support * Replace archaic `\*(Lt` and `\*(Gt` by plain
`<` and `>` in nc(1) man page
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 23 2022 Robert Scheck <robert(a)fedoraproject.org> 1.219-1
- Upgrade to 1.219 (#2136750)
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.218-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2136750 - netcat-1.219 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2136750
--------------------------------------------------------------------------------