The following Fedora EPEL 8 Security updates need testing:
Age URL
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-fa06066564
rubygem-rack-2.2.2-1.el8
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-21930ff650
pdns-recursor-4.2.2-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
perl-DBIx-Safe-1.2.5-37.el8
perl-Sereal-4.012-1.el8
perl-Sereal-Decoder-4.012-1.el8
perl-Sereal-Encoder-4.012-1.el8
perl-Test-MemoryGrowth-0.03-5.el8
tcpreplay-4.3.3-1.el8
Details about builds:
================================================================================
perl-DBIx-Safe-1.2.5-37.el8 (FEDORA-EPEL-2020-e92c1918b2)
Safer access to your database through a DBI database handle
--------------------------------------------------------------------------------
Update Information:
new package
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-37
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-36
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Fri May 31 2019 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.2.5-35
- Perl 5.30 rebuild
* Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-34
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-33
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Fri Jun 29 2018 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.2.5-32
- Perl 5.28 rebuild
* Thu Feb 8 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-31
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-30
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Tue Jun 6 2017 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.2.5-29
- Perl 5.26 rebuild
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-28
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Mon May 16 2016 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.2.5-27
- Perl 5.24 rebuild
* Thu Feb 4 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-26
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Tue Sep 22 2015 Itamar Reis Peixoto <itamar(a)ispbrasil.com.br> - 1.2.5-25
- change BuildRequires from perl-Pod-Html to perl(Pod::Html)
* Tue Aug 11 2015 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.2.5-24
- Specify all dependencies
* Thu Jun 18 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-23
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Fri Jun 5 2015 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.2.5-22
- Perl 5.22 rebuild
* Thu Aug 28 2014 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.2.5-21
- Perl 5.20 rebuild
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-20
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-19
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Jul 24 2013 Petr Pisar <ppisar(a)redhat.com> - 1.2.5-18
- Perl 5.18 rebuild
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-17
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Fri Jul 20 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-16
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Sun Jun 17 2012 Petr Pisar <ppisar(a)redhat.com> - 1.2.5-15
- Perl 5.16 rebuild
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-14
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Jun 21 2011 Marcela Ma��l����ov�� <mmaslano(a)redhat.com> - 1.2.5-13
- Perl mass rebuild
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Thu Dec 16 2010 Marcela Maslanova <mmaslano(a)redhat.com> - 1.2.5-11
- 661697 rebuild for fixing problems with vendorach/lib
* Fri Apr 30 2010 Marcela Maslanova <mmaslano(a)redhat.com> - 1.2.5-10
- Mass rebuild with perl-5.12.0
* Fri Apr 30 2010 Marcela Maslanova <mmaslano(a)redhat.com> - 1.2.5-8
- Mass rebuild with perl-5.12.0
* Mon Dec 7 2009 Stepan Kasal <skasal(a)redhat.com> - 1.2.5-7
- rebuild against perl 5.10.1
* Sat Jul 25 2009 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Thu Feb 26 2009 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.5-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Thu Jan 29 2009 Itamar Reis Peixoto <itamar(a)ispbrasil.com.br> 1.2.5-4
- include make test in %check section
* Thu Jan 29 2009 Itamar Reis Peixoto <itamar(a)ispbrasil.com.br> 1.2.5-3
- include %{_fixperms} %{buildroot}/* after %install section, replace tab to space in
spec.
* Mon Jan 26 2009 Itamar Reis Peixoto <itamar(a)ispbrasil.com.br> 1.2.5-2
- fix from BZ #481528 Comment #1
- fix source url
- Fix license tag (BSD)
- Include all BR's needed DBD::Pg, DBI, Test::More , Test::Simple
* Sun Jan 25 2009 Itamar Reis Peixoto <itamar(a)ispbrasil.com.br> 1.2.5-1
- Initial RPM release
--------------------------------------------------------------------------------
================================================================================
perl-Sereal-4.012-1.el8 (FEDORA-EPEL-2020-7b41ac8c13)
Fast, compact, powerful binary (de-)serialization
--------------------------------------------------------------------------------
Update Information:
This release fixes a memory leak in Sereal::Decoder::looks_like_sereal()
subroutine. It also provides a new perl-Test-MemoryGrowth package that provides
tests for checking a memory leak.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 11 2020 Petr Pisar <ppisar(a)redhat.com> - 4.012-1
- 4.012 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252529 - Review Request: perl-Test-MemoryGrowth - Assert that code does not
cause growth in memory usage
https://bugzilla.redhat.com/show_bug.cgi?id=1252529
[ 2 ] Bug #1846147 - perl-Sereal-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846147
[ 3 ] Bug #1846148 - perl-Sereal-Decoder-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846148
[ 4 ] Bug #1846149 - perl-Sereal-Encoder-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846149
--------------------------------------------------------------------------------
================================================================================
perl-Sereal-Decoder-4.012-1.el8 (FEDORA-EPEL-2020-7b41ac8c13)
Perl deserialization for Sereal format
--------------------------------------------------------------------------------
Update Information:
This release fixes a memory leak in Sereal::Decoder::looks_like_sereal()
subroutine. It also provides a new perl-Test-MemoryGrowth package that provides
tests for checking a memory leak.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 11 2020 Petr Pisar <ppisar(a)redhat.com> - 4.012-1
- 4.012 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252529 - Review Request: perl-Test-MemoryGrowth - Assert that code does not
cause growth in memory usage
https://bugzilla.redhat.com/show_bug.cgi?id=1252529
[ 2 ] Bug #1846147 - perl-Sereal-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846147
[ 3 ] Bug #1846148 - perl-Sereal-Decoder-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846148
[ 4 ] Bug #1846149 - perl-Sereal-Encoder-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846149
--------------------------------------------------------------------------------
================================================================================
perl-Sereal-Encoder-4.012-1.el8 (FEDORA-EPEL-2020-7b41ac8c13)
Perl serialization into Sereal format
--------------------------------------------------------------------------------
Update Information:
This release fixes a memory leak in Sereal::Decoder::looks_like_sereal()
subroutine. It also provides a new perl-Test-MemoryGrowth package that provides
tests for checking a memory leak.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 11 2020 Petr Pisar <ppisar(a)redhat.com> - 4.012-1
- 4.012 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252529 - Review Request: perl-Test-MemoryGrowth - Assert that code does not
cause growth in memory usage
https://bugzilla.redhat.com/show_bug.cgi?id=1252529
[ 2 ] Bug #1846147 - perl-Sereal-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846147
[ 3 ] Bug #1846148 - perl-Sereal-Decoder-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846148
[ 4 ] Bug #1846149 - perl-Sereal-Encoder-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846149
--------------------------------------------------------------------------------
================================================================================
perl-Test-MemoryGrowth-0.03-5.el8 (FEDORA-EPEL-2020-7b41ac8c13)
Assert that code does not cause growth in memory usage
--------------------------------------------------------------------------------
Update Information:
This release fixes a memory leak in Sereal::Decoder::looks_like_sereal()
subroutine. It also provides a new perl-Test-MemoryGrowth package that provides
tests for checking a memory leak.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 30 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.03-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.03-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Fri May 31 2019 Jitka Plesnikova <jplesnik(a)redhat.com> - 0.03-3
- Perl 5.30 rebuild
* Sat Feb 2 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.03-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Wed Jan 16 2019 Jitka Plesnikova <jplesnik(a)redhat.com> - 0.03-1
- 0.03 bump
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.02-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Thu Jun 28 2018 Jitka Plesnikova <jplesnik(a)redhat.com> - 0.02-8
- Perl 5.28 rebuild
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.02-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.02-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sun Jun 4 2017 Jitka Plesnikova <jplesnik(a)redhat.com> - 0.02-5
- Perl 5.26 rebuild
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.02-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Sun May 15 2016 Jitka Plesnikova <jplesnik(a)redhat.com> - 0.02-3
- Perl 5.24 rebuild
* Thu Feb 4 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.02-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Tue Aug 11 2015 Petr ��abata <contyk(a)redhat.com> 0.02-1
- Initial packaging
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252529 - Review Request: perl-Test-MemoryGrowth - Assert that code does not
cause growth in memory usage
https://bugzilla.redhat.com/show_bug.cgi?id=1252529
[ 2 ] Bug #1846147 - perl-Sereal-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846147
[ 3 ] Bug #1846148 - perl-Sereal-Decoder-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846148
[ 4 ] Bug #1846149 - perl-Sereal-Encoder-4.012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1846149
--------------------------------------------------------------------------------
================================================================================
tcpreplay-4.3.3-1.el8 (FEDORA-EPEL-2020-a32cbcaa37)
Replay captured network traffic
--------------------------------------------------------------------------------
Update Information:
This release contains bug fixes only (which includes security fixes): -
Increase cache buffers size to accomodate VLAN edits (#594) - Correct L2 header
length to correct IP header offset (#583) - Fix warnings from gcc version 10
(#580) - Heap Buffer Overflow in randomize_iparp (#579) - Use after free in
get_ipv6_next (#578) - Heap Buffer Overflow in git_ipv6_next (#576) - Call
pcap_freecode() on pcap_compile() (#572) - Increase max snaplen to 262144 (#571)
- Fix divide by zero in fuzzing (#570) - Unique IP repeats at very high
iteration counts (#566) - Fails to compile on FreeBSD amd64 13.0 (#558) - Heap
Buffer Overflow in do_checksum (#556) (#577) - Attempt to correct corrupt pcap
files, if possible (#557) - Fix GCC v10 warnings (#555) - Remove some duplicated
SOURCES entries (#551) - Expand /dev/bpfX hard limit to fix macOS Mojave (#550)
- Implement --loopdelay-ms when using --loop=0 (#546) - Heap overflow
packet2tree and get_l2len (#530)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jun 15 2020 Bojan Smojver <bojan@rexursive com> - 4.3.3-1
- bump up to 4.3.3
- CVE-2020-12740
* Fri Jan 31 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.3.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1678246 - CVE-2019-8377 tcpreplay: null pointer dereference in function
get_ipv6_l4proto() in get.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1678246
[ 2 ] Bug #1835343 - CVE-2020-12740 tcpreplay: Heap-based buffer over-read in function
get_ipv6_next() at common/get.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1835343
--------------------------------------------------------------------------------