The following Fedora EPEL 9 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-eacf1a60fb python-flask-restx-1.1.0-1.el9 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-5b5f974a90 sympa-6.2.72-2.el9 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-867723f541 cpp-httplib-0.12.5-2.el9 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-f04011e9d4 yarnpkg-1.22.19-5.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-de31cb6120 perl-HTML-StripScripts-1.06-22.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-a1ed86449c syncthing-1.23.5-1.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
chromium-114.0.5735.106-1.el9 gcc-epel-11.3.1-5.el9 gscan2pdf-2.13.2-3.el9 icewm-3.4.0-1.el9 radare2-5.8.6-1.el9 tmt-1.24.1-1.el9
Details about builds:
================================================================================ chromium-114.0.5735.106-1.el9 (FEDORA-EPEL-2023-5b8cf596eb) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information:
update to 114.0.5735.106. Fixes the following security issue: CVE-2023-3709 -------------------------------------------------------------------------------- ChangeLog:
* Wed Jun 7 2023 Than Ngo than@redhat.com - 114.0.5735.106-1 - update to 114.0.5735.106 * Sun May 28 2023 Than Ngo than@redhat.com - 114.0.5735.45-1 - update to 114.0.5735.45 - add qt6 linuxui backend - backport: handle scale factor changes - backport: fix font double_scaling -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2212975 - CVE-2023-3079 chromium: chromium-browser: Type Confusion in V8 [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2212975 [ 2 ] Bug #2212976 - CVE-2023-3079 chromium: chromium-browser: Type Confusion in V8 [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2212976 --------------------------------------------------------------------------------
================================================================================ gcc-epel-11.3.1-5.el9 (FEDORA-EPEL-2023-0026aaef4d) Various compilers (C, C++, Objective-C, ...) -------------------------------------------------------------------------------- Update Information:
- backport from 11.3.1-4.4: s390x: add support for register arguments preserving (#2168204) - backport from 11.3.1-4.3: compile the cross binaries as PIE/-z now (#2155452) - backport from 11.3.1-4.2: ship libitm.spec in cross-gcc (#2154462) - backport from 11.3.1-4.1: add cross compiler functionality for non-production uses (#2149650) - backport from 11.3.1-4: update from releases/gcc-11-branch (#2117632) - backport from 11.3.1-4: fix the detection of Sapphire Rapids in host_detect_local_cpu - backport from 11.3.1-4: fix -Wmismatched-dealloc documentation (#2116635) -------------------------------------------------------------------------------- ChangeLog:
* Thu Jun 8 2023 Robert Scheck robert@fedoraproject.org 11.3.1-5 - backport from 11.3.1-4.4: s390x: add support for register arguments preserving (#2168204) - backport from 11.3.1-4.3: compile the cross binaries as PIE/-z now (#2155452) - backport from 11.3.1-4.2: ship libitm.spec in cross-gcc (#2154462) - backport from 11.3.1-4.1: add cross compiler functionality for non-production uses (#2149650) - backport from 11.3.1-4: update from releases/gcc-11-branch (#2117632) - backport from 11.3.1-4: fix the detection of Sapphire Rapids in host_detect_local_cpu - backport from 11.3.1-4: fix -Wmismatched-dealloc documentation (#2116635) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2213593 - gcc-epel needs updating in epel9 https://bugzilla.redhat.com/show_bug.cgi?id=2213593 --------------------------------------------------------------------------------
================================================================================ gscan2pdf-2.13.2-3.el9 (FEDORA-EPEL-2023-71549dd166) GUI for producing a multipage PDF from a scan -------------------------------------------------------------------------------- Update Information:
This update brings gscan2pdf, an GTK application for scanning paper documents and exporting them into PDF, DjVu, and other image formats. -------------------------------------------------------------------------------- ChangeLog:
* Thu May 25 2023 Petr Pisar ppisar@redhat.com - 2.13.2-3 - Adapt tests to ImageMagick-7.1.1.5 (upstream bug #417) - Ignore options of scanners which report a range minimum greater than a range maximum * Thu Jan 19 2023 Fedora Release Engineering releng@fedoraproject.org - 2.13.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Wed Jan 18 2023 Petr Pisar ppisar@redhat.com - 2.13.2-1 - 2.13.2 bump * Tue Jan 3 2023 Petr Pisar ppisar@redhat.com - 2.13.1-1 - 2.13.1 bump * Tue Oct 18 2022 Petr Pisar ppisar@redhat.com - 2.13.0-1 - 2.13.0 bump - Stop requiring gnome-icon-theme; fixed in gtk3-3.24.34 (bug #2071851) * Wed Aug 31 2022 Petr Pisar ppisar@redhat.com - 2.12.8-3 - Adapt tests to ffmpeg-5.1 (upstream bug #404) - Correct gscan2pdf-tests license to GPL-3.0-only * Thu Jul 21 2022 Fedora Release Engineering releng@fedoraproject.org - 2.12.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jul 11 2022 Petr Pisar ppisar@redhat.com - 2.12.8-1 - 2.12.8 bump * Wed Jun 1 2022 Jitka Plesnikova jplesnik@redhat.com - 2.12.7-2 - Perl 5.36 rebuild * Tue May 31 2022 Petr Pisar ppisar@redhat.com - 2.12.7-1 - 2.12.7 bump * Tue Apr 5 2022 Petr Pisar ppisar@redhat.com - 2.12.6-2 - Require gnome-icon-theme to work around a bug in gtk3 (bug #2071851) * Mon Apr 4 2022 Petr Pisar ppisar@redhat.com - 2.12.6-1 - 2.12.6 bump * Wed Feb 16 2022 Petr Pisar ppisar@redhat.com - 2.12.5-1 - 2.12.5 bump * Tue Feb 8 2022 Petr Pisar ppisar@redhat.com - 2.12.4-3 - Fix parsing scanimage version (upstream bug #399) * Thu Jan 20 2022 Fedora Release Engineering releng@fedoraproject.org - 2.12.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Mon Nov 22 2021 Petr Pisar ppisar@redhat.com - 2.12.4-1 - 2.12.4 bump (bug #2025207) * Mon Sep 20 2021 Petr Pisar ppisar@redhat.com - 2.12.3-1 - 2.12.3 bump * Thu Jul 22 2021 Fedora Release Engineering releng@fedoraproject.org - 2.12.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Thu Jul 1 2021 Petr Pisar ppisar@redhat.com - 2.12.2-1 - 2.12.2 bump - Replace multiple gscan2pdf.svg copies with a symbolic link -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2151714 - Please branch and build gscan2pdf in epel9 https://bugzilla.redhat.com/show_bug.cgi?id=2151714 --------------------------------------------------------------------------------
================================================================================ icewm-3.4.0-1.el9 (FEDORA-EPEL-2023-a265447001) Window manager designed for speed, usability, and consistency -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 9 2023 Artem Polishchuk ego.cordatus@gmail.com - 3.4.0-1 - chore: Update to 3.4.0 (rhbz#2212455) * Fri May 19 2023 Artem Polishchuk ego.cordatus@gmail.com - 3.3.5-1 - chore: Update to 3.3.5 --------------------------------------------------------------------------------
================================================================================ radare2-5.8.6-1.el9 (FEDORA-EPEL-2023-e6d2f056c2) The reverse engineering framework -------------------------------------------------------------------------------- Update Information:
Bump to 5.8.6 -------------------------------------------------------------------------------- ChangeLog:
* Tue May 23 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.6-1 - bump to 5.8.6 * Sat Mar 25 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.5-0.3 - 5.8.5 rebuild from git, patched for segfault * Wed Mar 22 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.4-2 - patch for segfault in sdb_hash * Thu Mar 16 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.4-1 - bump to 5.8.4 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2157016 - CVE-2022-4843 radare2: Fix null deref in io.bank [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2157016 [ 2 ] Bug #2170036 - syscall detection is broken https://bugzilla.redhat.com/show_bug.cgi?id=2170036 [ 3 ] Bug #2178851 - radare2-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2178851 [ 4 ] Bug #2179047 - iaito-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2179047 --------------------------------------------------------------------------------
================================================================================ tmt-1.24.1-1.el9 (FEDORA-EPEL-2023-5ff69895e5) Test Management Tool -------------------------------------------------------------------------------- Update Information:
Automatic update for tmt-1.24.1-1.el9. ##### **Changelog for tmt** ``` * Fri Jun 09 2023 Petr ��pl��chal psplicha@redhat.com - 1.24.1-1 - Revert the `Source0` url to the original value - Use correct url for the release archive, fix docs * Wed Jun 07 2023 Petr ��pl��chal psplicha@redhat.com - 1.24.0-1 - Do not display guest facts when showing a plan - Add new guide/summary for multihost testing - Define a "plugin registry" class - Hide `facts` in the `virtual` provision plugin - Cache resolved linters - Improve documentation of lint checks (#2089) - A custom wrapper for options instead of click.option() - Identify incorrect subcommand after a correct one - Remove one extra space between @ and decorator name - Assign envvars to Polarion report arguments - Expose "key address" to normalization callbacks (#1869) - Move export of special test/plan/story fields to their respective classes - Expose guest topology to tests and scripts (#2072) - Enable building downstream release using Packit - Add sections for environment variable groups - Add default envvar to plugin options - Load env TMT_WORKDIR_ROOT when running tmt status (#2087) - Opportunistically use "selectable" entry_points. - Explicitly convert tmpdir to str in test_utils.py. - Move pytest.ini contents to pyproject.toml. - Rename Require* classes to Dependency* (#2099) - Expose fmf ID of tests in results - Use the `tmt-lint` pre-commit hook - Turn finish step implementation to queue- based one (#2110) - Convert base classes to data classes (#2080) - Crashed prepare and execute steps propagate all causes - Support exceptions with multiple causes - Make "needs sudo" a guest fact (#2096) - Test data path must use safe guest/test names - Support for multi case import from Polarion and Polarion as only source (#2084) - Fix search function in docs - Make tmt test wrapper name unique to avoid race conditions - Change link-polarion argument default to false - Add export plugin for JSON (#2058) - Handle el6 as a legacy os too in virtual provision - Hint beakerlib is old when result parsing fails - Revert "Fix dry mode handling when running a remote plan" - Set a new dict instance to the Plan class - Replaces "common" object with logger in method hint logging - Parallelize prepare and execute steps - Formalizing guest "facts" storage - Support urllib3 2.x and its allowed_methods/method_whitelist - Require setuptools ``` -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 9 2023 Petr ��pl��chal psplicha@redhat.com - 1.24.1-1 - Revert the `Source0` url to the original value - Use correct url for the release archive, fix docs * Wed Jun 7 2023 Petr ��pl��chal psplicha@redhat.com - 1.24.0-1 - Do not display guest facts when showing a plan - Add new guide/summary for multihost testing - Define a "plugin registry" class - Hide `facts` in the `virtual` provision plugin - Cache resolved linters - Improve documentation of lint checks (#2089) - A custom wrapper for options instead of click.option() - Identify incorrect subcommand after a correct one - Remove one extra space between @ and decorator name - Assign envvars to Polarion report arguments - Expose "key address" to normalization callbacks (#1869) - Move export of special test/plan/story fields to their respective classes - Expose guest topology to tests and scripts (#2072) - Enable building downstream release using Packit - Add sections for environment variable groups - Add default envvar to plugin options - Load env TMT_WORKDIR_ROOT when running tmt status (#2087) - Opportunistically use "selectable" entry_points. - Explicitly convert tmpdir to str in test_utils.py. - Move pytest.ini contents to pyproject.toml. - Rename Require* classes to Dependency* (#2099) - Expose fmf ID of tests in results - Use the `tmt-lint` pre-commit hook - Turn finish step implementation to queue-based one (#2110) - Convert base classes to data classes (#2080) - Crashed prepare and execute steps propagate all causes - Support exceptions with multiple causes - Make "needs sudo" a guest fact (#2096) - Test data path must use safe guest/test names - Support for multi case import from Polarion and Polarion as only source (#2084) - Fix search function in docs - Make tmt test wrapper name unique to avoid race conditions - Change link-polarion argument default to false - Add export plugin for JSON (#2058) - Handle el6 as a legacy os too in virtual provision - Hint beakerlib is old when result parsing fails - Revert "Fix dry mode handling when running a remote plan" - Set a new dict instance to the Plan class - Replaces "common" object with logger in method hint logging - Parallelize prepare and execute steps - Formalizing guest "facts" storage - Support urllib3 2.x and its allowed_methods/method_whitelist - Require setuptools --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org