The following Fedora EPEL 8 Security updates need testing:
Age URL
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-da42cd0f70
ngircd-26-3.el8
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-6e0d8564ec
chromium-83.0.4103.116-3.el8
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-8e909a0e81
coturn-4.5.1.3-1.el8
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-f1828228be
xrdp-0.9.13.1-1.el8
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-13c6cbc484
python-gnupg-0.4.6-1.el8
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-2f1d845c76
python-rsa-3.4.2-15.el8
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-9239b6fa50
botan2-2.12.1-2.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ff58160b15
libslirp-4.3.1-1.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-672e6676c7
seamonkey-2.53.3-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
foliate-1.5.3-2.el8
mozilla-noscript-11.0.34-1.el8
python-mysql-1.4.6-3.el8
Details about builds:
================================================================================
foliate-1.5.3-2.el8 (FEDORA-EPEL-2020-67ca62121f)
Simple and modern GTK eBook reader
--------------------------------------------------------------------------------
Update Information:
Downgrade to 1.5.3 for EPEL 8 | RH#1855425
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jul 11 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 1:1.5.3-2
- rebuilt
* Sat Jul 11 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 1:1.5.3-1
- Downgrade to 1.5.3 for EPEL 8 | RH#1855425
* Thu Jun 18 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 2.3.0-1
- Update to 2.3.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1855425 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1855425
--------------------------------------------------------------------------------
================================================================================
mozilla-noscript-11.0.34-1.el8 (FEDORA-EPEL-2020-0e1a5aa6a2)
JavaScript white list extension for Mozilla Firefox
--------------------------------------------------------------------------------
Update Information:
### Changes since 11.0.26: * Fixed regression breaking network-based CSP
injection * Switch from HTTP to DOM event based CSP reporting in compatible
browsers * [XSS] Updated HTML event attributes * Updated TLDs * Fixed setting
CUSTOM permissions in private mode may cause the TRUSTED preset to become
temporary * [XSS] Updated HTML 5 events support * More compact high contrast
appearance * Focus "OK" button on dialog-mode UI * Fixed various toolbar
buttons
DnD issues * [L10n] Updated bn, br, ca, da, de, el, es, fr, he, is, it, ja, lt,
mk, ms, nb, nl, pl, pt_BR, ru, sq, sv_SE, tr, zh_CN, zh_TW * Fixed very low
contrast HTTPS-only label in High Contrast mode * More precise DnD of toolbar
buttons + work-around for
https://bugzilla.mozilla.org/show_bug.cgi?id=568313 *
Discoverable option to force site-leaking UI in PBM/Incognito * Easier keyboard
navigation of preset configuration * Yellow-less UI palette * Consistent focus
appearance across desktop and mobile * Don't enforce Incognito UI restrictions
if the "Override Tor Browser Security Level preset" option is checked *
Incognito-aware permissions persistence and UI
(
https://trac.torproject.org/projects/tor/ticket/29957) * Removed inline preset
options relics * Reset non-secure site matches to DEFAULT unless setting
UNTRUSTED to avoid confusion on preset changes * [A11y] Keyboard-based UI
navigation * Work-around Gecko 77 cached CSP issues (thanks acat for
https://trac.torproject.org/projects/tor/ticket/34305) * Fixed first capability
checkbox accidentally "clicked" when opening CUSTOM by space bar * Unspoofable
browser version detection
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jul 11 2020 Dominik Mierzejewski <rpm(a)greysector.net> - 11.0.34-1
- update to 11.0.34 (#1841091)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1841091 - mozilla-noscript-11.0.34 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1841091
--------------------------------------------------------------------------------
================================================================================
python-mysql-1.4.6-3.el8 (FEDORA-EPEL-2020-0d1943aff6)
An interface to MySQL
--------------------------------------------------------------------------------
Update Information:
Initial build for epel8.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1755345 - Request to build python3-mysql for EPEL8
https://bugzilla.redhat.com/show_bug.cgi?id=1755345
--------------------------------------------------------------------------------