epel-package-announce July 2022

epel-package-announce@lists.fedoraproject.org

1 participants
697 discussions

Fedora EPEL 9 Update: resalloc-aws-1.3-1.el9
by updates＠fedoraproject.org 30 Jun '22

30 Jun '22

-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-ad86b255ed 2022-07-01 01:06:52.706236 -------------------------------------------------------------------------------- Name : resalloc-aws Product : Fedora EPEL 9 Version : 1.3 Release : 1.el9 URL : https://github.com/praiskup/resalloc-aws Summary : Resource allocator scripts for AWS Description : When allocating/removing a machine in AWS/EC2 from command-line, there are many non-trivial options in the 'aws-cli' command. This project provides a simplified wrapping command. The 'resalloc-aws-new' script is able to (a) start a machine, (b) wait till SSH is available and (c) run a specified playbook. The 'resalloc-aws-delete' removes a machine started by 'resalloc-aws-new' script. These scripts are primarily designed to be used with 'resalloc-server', but they might be used separately. -------------------------------------------------------------------------------- Update Information: New script resalloc-aws-list -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 22 2022 Pavel Raiskup <praiskup(a)redhat.com> 1.3-1 - New script resalloc-aws-list -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update resalloc-aws' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora EPEL 8 Update: testcloud-0.8.1-1.el8
by updates＠fedoraproject.org 30 Jun '22

30 Jun '22

-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-5560f782fb 2022-07-01 00:44:47.278105 -------------------------------------------------------------------------------- Name : testcloud Product : Fedora EPEL 8 Version : 0.8.1 Release : 1.el8 URL : https://pagure.io/testcloud Summary : Tool for running cloud images locally Description : testcloud is a relatively simple system which is capable of booting images designed for cloud systems on a local system with minimal configuration. testcloud is designed to be (and remain) somewhat simple, trading fancy cloud system features for ease of use and sanity in development. -------------------------------------------------------------------------------- Update Information: - CoreOS: Go on with COREOS_DATA replace failure -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 30 2022 Frantisek Zatloukal <fzatlouk(a)redhat.com> - 0.8.1-1 - CoreOS: Go on with COREOS_DATA replace failure -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update testcloud' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora EPEL 8 Update: tio-1.40-1.el8
by updates＠fedoraproject.org 30 Jun '22

30 Jun '22

-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-2acb5da6bf 2022-07-01 00:44:47.278095 -------------------------------------------------------------------------------- Name : tio Product : Fedora EPEL 8 Version : 1.40 Release : 1.el8 URL : https://tio.github.io/ Summary : Simple TTY terminal I/O application Description : Tio is a simple TTY terminal application which features a straightforward commandline interface to easily connect to TTY devices for basic input/output. -------------------------------------------------------------------------------- Update Information: # tio v1.40 * Add config support for log-strip * Add config support for hex-mode * Rename `--hex` to `--hex-mode` * Fix completion for `-e`, `--local-echo` * Ignore newlines in hex output * Fix newline in `warning_printf()` * Fix `ansi_printf_raw()` in no color mode * Enter non- interactive mode when piping to tio Add support for a non interactive mode which allows other application to pipe data to tio which then forwards the data to the connected serial device. Non ineractive means that tio does not react to interactive key commands in the incoming stream. This allows users to pipe binary data directly to the connected serial device. Example use: `$ cat commands.txt | tio /dev/ttyUSB0` * Also strip backspace from log To make log strip feature consistent so that we remove all unprintable control characters and escape sequences. * Socket code cleanup * Cleanup man page * Rename `--log-filename` to `--log-file` * Allow strip escape sequence characters from log file The log without escape key stripped is like: ``` ^M[12:47:17] ACRN:\> ^M[12:47:17] ACRN:\>lasdfjklsdjf ^M ^M[12:47:18] Error: Invalid command. ^M[12:47:19] ACRN:\> ^M[12:47:26] ACRN:\> ^M[12:47:26] ACRN:\>sdafkljsdkaljfklsadjflksdjafjsda^H ^H^H... ^M ^M[12:47:31] Error: Invalid command. ``` After strip escape key, the log is like: ``` [12:49:18] ACRN:\> [12:49:19] ACRN:\> [12:49:19] ACRN:\>ls [12:49:19] Error: Invalid command. [12:49:19] ACRN:\> [12:49:19] ACRN:\>dfaslhj [12:49:24] Error: Invalid command. ``` Beside escape key, it also handle backspace key as well. -------------------------------------------------------------------------------- ChangeLog: * Sat Jun 18 2022 Robert Scheck <robert(a)fedoraproject.org> 1.40-1 - Upgrade to 1.40 (#2098148) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2098148 - tio-1.40 is available https://bugzilla.redhat.com/show_bug.cgi?id=2098148 -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update tio' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

[SECURITY] Fedora EPEL 8 Update: glances-3.2.5-1.el8
by updates＠fedoraproject.org 30 Jun '22

30 Jun '22

-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-59cdfb46c4 2022-07-01 00:44:47.278074 -------------------------------------------------------------------------------- Name : glances Product : Fedora EPEL 8 Version : 3.2.5 Release : 1.el8 URL : https://nicolargo.github.io/glances/ Summary : A cross-platform curses-based monitoring tool Description : Glances is a cross-platform monitoring tool which aims to present a large amount of monitoring information through a curses or Web based interface. The information dynamically adapts depending on the size of the user interface It can also work in client/server mode. Remote monitoring could be done via terminal, Web interface or API (XML-RPC and RESTful). Stats can also be exported to files or external time/value databases. Glances is written in Python and uses libraries to grab information from your system. It is based on an open architecture where developers can add new plugins or exports modules. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2021-23418 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 22 2022 Ali Erdinc Koroglu <aekoroglu(a)fedoraproject.org> - 3.2.5-1 - Update to 3.2.5 (rhbz #1963987 and #1988545) * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.4.1-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.4.1-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 3.1.4.1-10 - Rebuilt for Python 3.10 * Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.4.1-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.4.1-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1963987 - glances: Unsafe XML parsing [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1963987 [ 2 ] Bug #1988545 - CVE-2021-23418 glances: XEE injection via the use of Fault to parse untrusted XML data [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1988545 -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update glances' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora EPEL 8 Update: scitokens-cpp-0.7.1-1.el8
by updates＠fedoraproject.org 30 Jun '22

30 Jun '22

-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-033762bcf7 2022-07-01 00:44:47.278085 -------------------------------------------------------------------------------- Name : scitokens-cpp Product : Fedora EPEL 8 Version : 0.7.1 Release : 1.el8 URL : https://github.com/scitokens/scitokens-cpp Summary : C++ Implementation of the SciTokens Library Description : C++ Implementation of the SciTokens Library -------------------------------------------------------------------------------- Update Information: - Enabling unit tests should not disable install of libraries and binaries - Warnings as errors option - Convert CMakeLists.txt to "modern" cmake style - fix apparent fd-leak of sqlite handle -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 22 2022 Derek Weitzel <dweitzel(a)unl.edu> - 0.7.1-1 - Add scitokens-* binaries to the package - Bug: close sqlite db handle on return -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update scitokens-cpp' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

[SECURITY] Fedora EPEL 8 Update: chromium-102.0.5005.115-1.el8
by updates＠fedoraproject.org 30 Jun '22

30 Jun '22

-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-3a6675bd1a 2022-07-01 00:44:47.278061 -------------------------------------------------------------------------------- Name : chromium Product : Fedora EPEL 8 Version : 102.0.5005.115 Release : 1.el8 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to Chromium 102.0.5005.115 (yes, I know there is a newer one, but we need to get something out now). This also adds the first build of Chromium for EPEL9, many thanks to all the folks who got the many dependencies built. Fixes: CVE-2022-1232 CVE-2022-1364 CVE-2022-1633 CVE-2022-1634 CVE-2022-1635 CVE-2022-1636 CVE-2022-1637 CVE-2022-1638 CVE-2022-1639 CVE-2022-1640 CVE-2022-1641 CVE-2022-1853 CVE-2022-1854 CVE-2022-1855 CVE-2022-1856 CVE-2022-1857 CVE-2022-1858 CVE-2022-1859 CVE-2022-1860 CVE-2022-1861 CVE-2022-1862 CVE-2022-1863 CVE-2022-1864 CVE-2022-1865 CVE-2022-1866 CVE-2022-1867 CVE-2022-1868 CVE-2022-1869 CVE-2022-1870 CVE-2022-1871 CVE-2022-1872 CVE-2022-1873 CVE-2022-1874 CVE-2022-1875 CVE-2022-1876 -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 10 2022 Tom Callaway <spot(a)fedoraproject.org> - 102.0.5005.115-1 - update to 102.0.5005.115 * Fri Jun 3 2022 Tom Callaway <spot(a)fedoraproject.org> - 102.0.5005.61-1 - update to 102.0.5005.61 * Wed Apr 27 2022 Tom Callaway <spot(a)fedoraproject.org> - 101.0.4951.41-1 - update to 101.0.4951.41 * Thu Apr 21 2022 Tom Callaway <spot(a)fedoraproject.org> - 100.0.4896.127-1 - update to 100.0.4896.127 * Tue Apr 5 2022 Tom Callaway <spot(a)fedoraproject.org> - 100.0.4896.75-1 - update to 100.0.4896.75 * Sat Apr 2 2022 Tom Callaway <spot(a)fedoraproject.org> - 100.0.4896.60-1 - update to 100.0.4896.60 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2071876 - CVE-2022-1232 chromium-browser: Type Confusion in V8 https://bugzilla.redhat.com/show_bug.cgi?id=2071876 [ 2 ] Bug #2076274 - CVE-2022-1364 Chromium-browser: Type Confusion in V8. https://bugzilla.redhat.com/show_bug.cgi?id=2076274 [ 3 ] Bug #2084016 - CVE-2022-1633 chromium-browser: Use after free in Sharesheet https://bugzilla.redhat.com/show_bug.cgi?id=2084016 [ 4 ] Bug #2084017 - CVE-2022-1634 chromium-browser: Use after free in Browser UI https://bugzilla.redhat.com/show_bug.cgi?id=2084017 [ 5 ] Bug #2084018 - CVE-2022-1635 chromium-browser: Use after free in Permission Prompts https://bugzilla.redhat.com/show_bug.cgi?id=2084018 [ 6 ] Bug #2084019 - CVE-2022-1636 chromium-browser: Use after free in Performance APIs https://bugzilla.redhat.com/show_bug.cgi?id=2084019 [ 7 ] Bug #2084020 - CVE-2022-1637 chromium-browser: Inappropriate implementation in Web Contents https://bugzilla.redhat.com/show_bug.cgi?id=2084020 [ 8 ] Bug #2084021 - CVE-2022-1638 chromium-browser: Heap buffer overflow in V8 Internationalization https://bugzilla.redhat.com/show_bug.cgi?id=2084021 [ 9 ] Bug #2084022 - CVE-2022-1639 chromium-browser: Use after free in ANGLE https://bugzilla.redhat.com/show_bug.cgi?id=2084022 [ 10 ] Bug #2084023 - CVE-2022-1640 chromium-browser: Use after free in Sharing https://bugzilla.redhat.com/show_bug.cgi?id=2084023 [ 11 ] Bug #2084024 - CVE-2022-1641 chromium-browser: Use after free in Web UI Diagnostics https://bugzilla.redhat.com/show_bug.cgi?id=2084024 [ 12 ] Bug #2090284 - CVE-2022-1853 chromium-browser: Use after free in Indexed DB https://bugzilla.redhat.com/show_bug.cgi?id=2090284 [ 13 ] Bug #2090285 - CVE-2022-1854 chromium-browser: Use after free in ANGLE https://bugzilla.redhat.com/show_bug.cgi?id=2090285 [ 14 ] Bug #2090286 - CVE-2022-1855 chromium-browser: Use after free in Messaging https://bugzilla.redhat.com/show_bug.cgi?id=2090286 [ 15 ] Bug #2090287 - CVE-2022-1856 chromium-browser: Use after free in User Education https://bugzilla.redhat.com/show_bug.cgi?id=2090287 [ 16 ] Bug #2090288 - CVE-2022-1857 chromium-browser: Insufficient policy enforcement in File System API https://bugzilla.redhat.com/show_bug.cgi?id=2090288 [ 17 ] Bug #2090289 - CVE-2022-1858 chromium-browser: Out of bounds read in DevTools https://bugzilla.redhat.com/show_bug.cgi?id=2090289 [ 18 ] Bug #2090290 - CVE-2022-1859 chromium-browser: Use after free in Performance Manager https://bugzilla.redhat.com/show_bug.cgi?id=2090290 [ 19 ] Bug #2090291 - CVE-2022-1860 chromium-browser: Use after free in UI Foundations https://bugzilla.redhat.com/show_bug.cgi?id=2090291 [ 20 ] Bug #2090292 - CVE-2022-1861 chromium-browser: Use after free in Sharing https://bugzilla.redhat.com/show_bug.cgi?id=2090292 [ 21 ] Bug #2090293 - CVE-2022-1862 chromium-browser: Inappropriate implementation in Extensions https://bugzilla.redhat.com/show_bug.cgi?id=2090293 [ 22 ] Bug #2090294 - CVE-2022-1863 chromium-browser: Use after free in Tab Groups https://bugzilla.redhat.com/show_bug.cgi?id=2090294 [ 23 ] Bug #2090295 - CVE-2022-1864 chromium-browser: Use after free in WebApp Installs https://bugzilla.redhat.com/show_bug.cgi?id=2090295 [ 24 ] Bug #2090296 - CVE-2022-1865 chromium-browser: Use after free in Bookmarks https://bugzilla.redhat.com/show_bug.cgi?id=2090296 [ 25 ] Bug #2090297 - CVE-2022-1866 chromium-browser: Use after free in Tablet Mode https://bugzilla.redhat.com/show_bug.cgi?id=2090297 [ 26 ] Bug #2090298 - CVE-2022-1867 chromium-browser: Insufficient validation of untrusted input in Data Transfer https://bugzilla.redhat.com/show_bug.cgi?id=2090298 [ 27 ] Bug #2090299 - CVE-2022-1868 chromium-browser: Inappropriate implementation in Extensions API https://bugzilla.redhat.com/show_bug.cgi?id=2090299 [ 28 ] Bug #2090300 - CVE-2022-1869 chromium-browser: Type Confusion in V8 https://bugzilla.redhat.com/show_bug.cgi?id=2090300 [ 29 ] Bug #2090303 - CVE-2022-1870 chromium-browser: Use after free in App Service https://bugzilla.redhat.com/show_bug.cgi?id=2090303 [ 30 ] Bug #2090304 - CVE-2022-1871 chromium-browser: Insufficient policy enforcement in File System API https://bugzilla.redhat.com/show_bug.cgi?id=2090304 [ 31 ] Bug #2090305 - CVE-2022-1872 chromium-browser: Insufficient policy enforcement in Extensions API https://bugzilla.redhat.com/show_bug.cgi?id=2090305 [ 32 ] Bug #2090306 - CVE-2022-1873 chromium-browser: Insufficient policy enforcement in COOP https://bugzilla.redhat.com/show_bug.cgi?id=2090306 [ 33 ] Bug #2090307 - CVE-2022-1874 chromium-browser: Insufficient policy enforcement in Safe Browsing https://bugzilla.redhat.com/show_bug.cgi?id=2090307 [ 34 ] Bug #2090308 - CVE-2022-1875 chromium-browser: Inappropriate implementation in PDF https://bugzilla.redhat.com/show_bug.cgi?id=2090308 [ 35 ] Bug #2090309 - CVE-2022-1876 chromium-browser: Heap buffer overflow in DevTools https://bugzilla.redhat.com/show_bug.cgi?id=2090309 -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update chromium' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora EPEL 8 Update: resalloc-aws-1.3-1.el8
by updates＠fedoraproject.org 30 Jun '22

30 Jun '22

-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-34c999ec63 2022-07-01 00:44:47.277979 -------------------------------------------------------------------------------- Name : resalloc-aws Product : Fedora EPEL 8 Version : 1.3 Release : 1.el8 URL : https://github.com/praiskup/resalloc-aws Summary : Resource allocator scripts for AWS Description : When allocating/removing a machine in AWS/EC2 from command-line, there are many non-trivial options in the 'aws-cli' command. This project provides a simplified wrapping command. The 'resalloc-aws-new' script is able to (a) start a machine, (b) wait till SSH is available and (c) run a specified playbook. The 'resalloc-aws-delete' removes a machine started by 'resalloc-aws-new' script. These scripts are primarily designed to be used with 'resalloc-server', but they might be used separately. -------------------------------------------------------------------------------- Update Information: New script resalloc-aws-list -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 22 2022 Pavel Raiskup <praiskup(a)redhat.com> 1.3-1 - New script resalloc-aws-list -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update resalloc-aws' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Jump to page:

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

epel-package-announce July 2022