The following Fedora EPEL 8 Security updates need testing: Age URL 10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-698907eb45 quassel-0.13.1-8.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-f77315a931 seamonkey-2.53.8-1.el8 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-3eb74527f8 chromium-91.0.4472.114-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
ec2-hibinit-agent-1.0.4-1.el8 libolm-3.2.4-2.el8 libtpms-0.8.4-0.20210624gita594c4692a.el8.1 psi-notify-1.2.1-2.el8 suricata-5.0.7-1.el8
Details about builds:
================================================================================ ec2-hibinit-agent-1.0.4-1.el8 (FEDORA-EPEL-2021-d33da662e7) Hibernation setup utility for Amazon EC2 -------------------------------------------------------------------------------- Update Information:
Update to v1.0.4 -------------------------------------------------------------------------------- ChangeLog:
* Thu Jul 1 2021 David Duncan davdunc@amazon.com - 1.0.4-1 - Update to v1.0.4 * Sat Jun 5 2021 Python Maint python-maint@redhat.com - 1.0.3-8 - Rebuilt for Python 3.10 * Fri Jun 4 2021 Python Maint python-maint@redhat.com - 1.0.3-7 - Rebuilt for Python 3.10 * Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 1.0.3-6 - Rebuilt for updated systemd-rpm-macros See https://pagure.io/fesco/issue/2583. * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 1.0.3-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Thu Jan 21 2021 David Duncan davdunc@amazon.com - 1.0.3-4 - Add BuildRequires: make, FESCo issue: #2500 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1978305 - Update to v1.0.4 for epel8 https://bugzilla.redhat.com/show_bug.cgi?id=1978305 --------------------------------------------------------------------------------
================================================================================ libolm-3.2.4-2.el8 (FEDORA-EPEL-2021-d4c3bbff96) Double Ratchet cryptographic library -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2021-34813. -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 4 2021 Python Maint python-maint@redhat.com - 3.2.4-2 - Rebuilt for Python 3.10 * Wed Jun 2 2021 Vitaly Zaitsev vitaly@easycoding.org - 3.2.4-1 - Updated to version 3.2.4. * Tue May 25 2021 Vitaly Zaitsev vitaly@easycoding.org - 3.2.3-1 - Updated to version 3.2.3. * Tue Feb 23 2021 Vitaly Zaitsev vitaly@easycoding.org - 3.2.2-1 - Updated to version 3.2.2. * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 3.2.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Wed Oct 14 2020 Vitaly Zaitsev vitaly@easycoding.org - 3.2.1-1 - Updated to version 3.2.1. * Sat Aug 1 2020 Fedora Release Engineering releng@fedoraproject.org - 3.1.5-3 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering releng@fedoraproject.org - 3.1.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue Jul 21 2020 Vitaly Zaitsev vitaly@easycoding.org - 3.1.5-1 - Updated to version 3.1.5. * Wed Jun 24 2020 Vitaly Zaitsev vitaly@easycoding.org - 3.1.4-4 - Added python3-setuptools to build requirements. * Tue May 26 2020 Miro Hron��ok mhroncok@redhat.com - 3.1.4-3 - Rebuilt for Python 3.9 * Wed Jan 29 2020 Fedora Release Engineering releng@fedoraproject.org - 3.1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Mon Nov 4 2019 Vitaly Zaitsev vitaly@easycoding.org - 3.1.4-1 - Updated to version 3.1.4. - Added Python 3 bindings. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1978135 - CVE-2021-34813 libolm: allows a malicious Matrix homeserver to crash a client https://bugzilla.redhat.com/show_bug.cgi?id=1978135 --------------------------------------------------------------------------------
================================================================================ libtpms-0.8.4-0.20210624gita594c4692a.el8.1 (FEDORA-EPEL-2021-ac096c00b0) Library providing Trusted Platform Module (TPM) functionality -------------------------------------------------------------------------------- Update Information:
tpm2: Reset too large size indicators in TPM2B to avoid access beyond buffer -------------------------------------------------------------------------------- ChangeLog:
* Thu Jun 24 2021 Stefan Berger stefanb@linux.ibm.com - 0.8.4-0.20210625gita594c4692a - tpm2: Reset too large size indicators in TPM2B to avoid access beyond buffer - tpm2: Restore original value in buffer if unmarshalled one was illegal -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1976806 - CVE-2021-3623 libtpms: out-of-bounds access when trying to resume the state of the vTPM https://bugzilla.redhat.com/show_bug.cgi?id=1976806 --------------------------------------------------------------------------------
================================================================================ psi-notify-1.2.1-2.el8 (FEDORA-EPEL-2021-3ec3998292) Alert when your machine is becoming over-saturated -------------------------------------------------------------------------------- Update Information:
Add `README-epel.md` with instructions for enabling PSI support -------------------------------------------------------------------------------- ChangeLog:
* Thu Jul 1 2021 Michel Alexandre Salim salimma@fedoraproject.org - 1.2.1-2 - Add README-epel.md with instructions for enabling PSI support --------------------------------------------------------------------------------
================================================================================ suricata-5.0.7-1.el8 (FEDORA-EPEL-2021-15c5b7660c) Intrusion Detection System -------------------------------------------------------------------------------- Update Information:
Various security, performance, accuracy and stability issues have been fixed, including a critical evasion assigned CVE-2021-35063. -------------------------------------------------------------------------------- ChangeLog:
* Thu Jul 1 2021 Steve Grubb sgrubb@redhat.com 5.0.7-1 - New security and bugfix release - Fix logrotation directories (#1966955) --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org