Fedora 31 Update: candy-icon-theme-0-7.20200220gita6e938f8.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-5e9e7f1220
2020-02-29 22:31:35.495032
--------------------------------------------------------------------------------
Name : candy-icon-theme
Product : Fedora 31
Version : 0
Release : 7.20200220gita6e938f8.fc31
URL : https://www.opendesktop.org/p/1305251/
Summary : Sweet gradient icon theme
Description :
Candy Icons is a simplistic, vector, gradient icon theme.
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream snapshot (2020-02-20)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 21 2020 Artur Iwicki <fedora(a)svgames.pl> - 0-7.20200131gita6e938f8
- Update to latest upstream snapshot
* Sun Feb 2 2020 Artur Iwicki <fedora(a)svgames.pl> - 0-6.20200131git8f853b2e
- Update to latest upstream snapshot
- Fix symlinks not being preserved in packaging
* Sat Jan 11 2020 Artur Iwicki <fedora(a)svgames.pl> - 0-5.20200110git4e63197c
- Update to latest upstream snapshot
* Sat Dec 21 2019 Artur Iwicki <fedora(a)svgames.pl> - 0-4.20191220gitd8f73028
- Update to latest upstream snapshot
* Wed Dec 11 2019 Artur Iwicki <fedora(a)svgames.pl> - 0-3.20191210gitd68a12e8
- Update to latest upstream snapshot
- Preserve timestamps for icon files
* Sat Nov 30 2019 Artur Iwicki <fedora(a)svgames.pl> - 0-2.20191129gite14463b4
- Update to latest upstream snapshot
- Change "Requires:" to match "Inherits=" from index.theme
* Fri Nov 15 2019 Artur Iwicki <fedora(a)svgames.pl> - 0-1.20191113gita9f7014e
- Initial packaging
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-5e9e7f1220' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years
Fedora 31 Update: will-crash-0.13.2-1.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-dc80794d46
2020-02-29 22:31:35.495017
--------------------------------------------------------------------------------
Name : will-crash
Product : Fedora 31
Version : 0.13.2
Release : 1.fc31
URL : https://github.com/abrt/will-crash
Summary : Set of crashing executables written in various languages
Description :
The main purpose of this project is to provide sample
executables for testing crash/exception handling tools
like ABRT.
--------------------------------------------------------------------------------
Update Information:
Fix some rpmlint issues ---- Add Perl script to cause a segfault
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 21 2020 Ernestas Kulik <ekulik(a)redhat.com> - 0.13.2-1
- new upstream release: 0.13.2
* Thu Feb 20 2020 Ernestas Kulik <ekulik(a)redhat.com> - 0.13-1
- new upstream release: 0.13
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-dc80794d46' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years
Fedora 31 Update: php-scssphp-scssphp-1.0.8-1.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-3a2ac3abc6
2020-02-29 22:31:35.494982
--------------------------------------------------------------------------------
Name : php-scssphp-scssphp
Product : Fedora 31
Version : 1.0.8
Release : 1.fc31
URL : https://github.com/scssphp/scssphp
Summary : Compiler for SCSS
Description :
php-scssphp-scssphp is a compiler for SCSS written in PHP.
Autoloader: /usr/share/php/ScssPhp/ScssPhp/autoload.php
--------------------------------------------------------------------------------
Update Information:
**Version 1.0.8** * Import of valid scss files fails silently (@oyejorge,
@Cerdic) * Undefined $libName (@enricobono, @robocoder) * Fix division and
modulo per sass-spec (@Cerdic) * Fix expressions in at directives (@Cerdic) *
Introduce support for custom properties (@Cerdic) * Function compatibility
issues with functions (abs, ceil, floor, max, min, percentage, random, round),
units, and conversions. (@Cerdic)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 21 2020 Remi Collet <remi(a)remirepo.net> - 1.0.8-1
- update to 1.0.8
* Sat Feb 1 2020 Remi Collet <remi(a)remirepo.net> - 1.0.7-1
- update to 1.0.7
* Thu Dec 12 2019 Remi Collet <remi(a)remirepo.net> - 1.0.6-1
- update to 1.0.6
* Fri Oct 4 2019 Remi Collet <remi(a)remirepo.net> - 1.0.5-1
- update to 1.0.5
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-3a2ac3abc6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years
Fedora 31 Update: phan-2.5.0-1.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-1c8edbe555
2020-02-29 22:31:35.494885
--------------------------------------------------------------------------------
Name : phan
Product : Fedora 31
Version : 2.5.0
Release : 1.fc31
URL : https://github.com/phan/phan
Summary : A static analyzer for PHP
Description :
Phan is a static analyzer that looks for common issues and will verify type
compatibility on various operations when type information is available or can
be deduced. Phan does not make any serious attempt to understand flow control
and narrow types based on conditionals.
--------------------------------------------------------------------------------
Update Information:
Feb 20 2020, **Phan 2.5.0** **New Features (CLI):** + Support using
`directory_suppressions` in Phan baseline files in `--load-baseline`. (#3698) +
Improve error message for warnings about Phan being unable to read files in the
analyzed directory. **New Features (Analysis):** + Instead of failing to parse
intersection types in phpdoc entirely, parse them as if they were union types.
(#1629) The annotations `@phan-param`, `@phan-return`, `@phan-var`, etc. can
be used to override the regular phpdoc in the various cases where this behavior
causes problems. **Future** Phan releases will likely about unsupported phpdoc
(e.g. `int&string`) and have actual support for intersection types. + Emit
`PhanUndeclaredConstantOfClass` (severity critical) for undeclared class
constants instead of `PhanUndeclaredConstant` (severity normal) This should
not be confused with `PhanUndeclaredClassConstant`, which already exists and
refers to accessing class constants of classes that don't exist. + Emit the
expression that's an invalid object with issue types such as
`PhanTypeExpectedObject*`, `PhanTypeInvalidInstanceof` (#3717) + Emit
`PhanCompatibleScalarTypePHP56` and `PhanCompatibleAnyReturnTypePHP56` for
function signatures when `target_php_version` is `'5.6'` (#915) (This also
requires that `backward_compatibility_checks` be enabled.) + Use more accurate
line numbers for warnings about function parameters. + When
`assume_real_types_for_internal_functions` is on *and* a function has a non-
empty return type in Reflection, make Phan's known real type signatures
override the real reflection return type information (useful when Phan infers
`list<string>` and Reflection says `array`). Phan previously used the type
from Reflection. + Normalize phpdoc parameter and return types when there is a
corresponding real type in the signature. (#3725) (e.g. convert
`bool|false|null` to `?bool`) **Plugins:** + Add
`SubscribeEmitIssueCapability` to detect or suppress issues immediately before
they are emitted. (#3719) **Bug fixes:** + Don't include issues that weren't
emitted in the file generated by `--save-baseline` (#3719) + Fix incorrect file
location for other definition in `PhanRedefinedClassReference` under some
circumstances. + Fix incorrect issue name: `PhanCompatibleNullableTypePHP71`
should be named `PhanCompatibleObjectTypePHP71` + Fix false positive
`PhanPartialTypeMismatchProperty` when a php 7.4 typed property has a default
expression value (#3725) ---- Feb 13 2020, **Phan 2.4.9** **New Features
(Analysis):** + Infer that `class_exists` implies the first argument is a
class-string, and that `method_exists` implies the first argument is a class-
string or an object. (#2804, #3058). Note that Phan still does not infer that
the class or method actually exists. + Emit `PhanRedefineClass` on **all**
occurrences of a duplicate class, not just the ones after the first occurrence
of the class. (#511) + Emit `PhanRedefineFunction` on **all** occurrences of a
duplicate function/method, not just the ones after the first. + Emit
`PhanRedefinedClassReference` for many types of uses of user-defined classes
that Phan has parsed multiple definitions of. Phan will not warn about
internal classes, because the duplicate definition is probably a polyfill.
(e.g. `new DuplicateClass()`, `DuplicateClass::someMethod()`) **Bug fixes:** +
Fix false positive `PhanParamSuspiciousOrder` for `preg_replace_callback`
(#3680) + Fix false positive `PhanUnanalyzableInheritance` for renamed methods
from traits. (#3695) + Fix false positive `PhanUndeclaredConstant` previously
seen for inherited class constants in some parse orders. (#3706) + Fix uncaught
`TypeError` converting `iterable<T>` to nullable (#3709)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 20 2020 Remi Collet <remi(a)remirepo.net> - 2.5.0-1
- update to 2.5.0
* Fri Feb 14 2020 Remi Collet <remi(a)remirepo.net> - 2.4.9-1
- update to 2.4.9
* Mon Jan 27 2020 Remi Collet <remi(a)remirepo.net> - 2.4.8-1
- update to 2.4.8
* Thu Jan 23 2020 Remi Collet <remi(a)remirepo.net> - 2.4.7-1
- update to 2.4.7
* Thu Jan 2 2020 Remi Collet <remi(a)remirepo.net> - 2.4.6-1
- update to 2.4.6
* Wed Dec 11 2019 Remi Collet <remi(a)remirepo.net> - 2.4.5-1
- update to 2.4.5
- allow Symfony 5
* Mon Nov 25 2019 Remi Collet <remi(a)remirepo.net> - 2.4.4-1
- update to 2.4.4
* Thu Nov 21 2019 Remi Collet <remi(a)remirepo.net> - 2.4.3-1
- update to 2.4.3
- add explicit dependency on netresearch/jsonmapper
* Tue Nov 12 2019 Remi Collet <remi(a)remirepo.net> - 2.4.2-1
- update to 2.4.2
* Mon Nov 4 2019 Remi Collet <remi(a)remirepo.net> - 2.4.1-1
- update to 2.4.1
* Mon Oct 28 2019 Remi Collet <remi(a)remirepo.net> - 2.4.0-1
- update to 2.4.0
* Mon Oct 21 2019 Remi Collet <remi(a)remirepo.net> - 2.3.1-1
- update to 2.3.1
* Mon Oct 14 2019 Remi Collet <remi(a)remirepo.net> - 2.3.0-1
- update to 2.3.0
* Fri Oct 4 2019 Remi Collet <remi(a)remirepo.net> - 2.2.13-1
- update to 2.2.13
- raise dependency on felixfbecker/advanced-json-rpc 3.0.4
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-1c8edbe555' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years
Fedora 31 Update: nohang-0.1-23.20200228git2928709.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-4fb1b8537d
2020-02-29 03:20:42.435059
--------------------------------------------------------------------------------
Name : nohang
Product : Fedora 31
Version : 0.1
Release : 23.20200228git2928709.fc31
URL : https://github.com/hakavlad/nohang
Summary : Highly configurable OOM prevention daemon
Description :
Nohang is a highly configurable daemon for Linux which is able to correctly
prevent out of memory (OOM) and keep system responsiveness in low memory
conditions.
To enable and start:
systemctl enable --now nohang
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 28 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-23.20200228git2928709
- Update to latest git snapshot
* Fri Feb 21 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-22.20200221git8cc7c63
- Update to latest git snapshot
* Tue Feb 18 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-21.20200218git4925df0
- Update to latest git snapshot
* Sun Feb 2 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-20.20200202gite6eace7
- Update to latest git snapshot
* Fri Jan 31 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-19.20200131git6fb0324
- Update to latest git snapshot
* Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1-18.20191203git6389a06
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Wed Dec 4 2019 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-17.20191203git6389a06
- Update to latest git snapshot
* Sun Nov 17 2019 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-16.20191117gitaef8af6
- Update to latest git snapshot
* Mon Oct 14 2019 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-15.20191005git2a3209c
- Update to latest git snapshot
* Sat Sep 21 2019 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.1-15.20190919git286ed84
- Fix BR: systemd required for EPEL8
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-4fb1b8537d' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years, 1 month
Fedora 31 Update: beaker-27.2-1.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-74ff6c4d3e
2020-02-29 03:20:42.435043
--------------------------------------------------------------------------------
Name : beaker
Product : Fedora 31
Version : 27.2
Release : 1.fc31
URL : https://beaker-project.org/
Summary : Full-stack software and hardware integration testing system
Description :
Beaker is a full stack software and hardware integration testing system, with
the ability to manage a globally distributed network of test labs.
--------------------------------------------------------------------------------
Update Information:
Upstream 27.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 28 2020 Martin Styk <mastyk(a)redhat.com> - 27.2-1
- Update to 27.2 (#1808021)
* Wed Jan 29 2020 Martin Styk <mastyk(a)redhat.com> - 27.1-1
- Update to 27.1 (#1795942)
* Thu Dec 19 2019 Greg Hellings <greg.hellings(a)gmail.com> - 27.0-1
- Upstream release 27.0
- Drop git chasing
- Python 3 support at last?
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1808021 - beaker-27.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1808021
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-74ff6c4d3e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years, 1 month
[SECURITY] Fedora 31 Update: kernel-tools-5.5.6-200.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-3cd64d683c
2020-02-29 03:20:42.435028
--------------------------------------------------------------------------------
Name : kernel-tools
Product : Fedora 31
Version : 5.5.6
Release : 200.fc31
URL : http://www.kernel.org/
Summary : Assortment of tools for the Linux kernel
Description :
This package contains the tools/ directory from the kernel source
and the supporting documentation.
--------------------------------------------------------------------------------
Update Information:
The 5.5.6 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 24 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.5.6-200
- Linux v5.5.6
* Wed Feb 19 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.5.5-200
- Linux v5.5.5
* Tue Dec 31 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.7-200
- Linux v5.4.7
* Thu Dec 19 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.5-300
- Linux v5.4.5
* Tue Nov 12 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.3.11-300
- Linux v5.3.11
* Wed Nov 6 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.9-300
- Linux v5.3.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1800335 - iwlwifi: Can't parse phy_sku in B0, empty sections (missing firmware?)
https://bugzilla.redhat.com/show_bug.cgi?id=1800335
[ 2 ] Bug #1797052 - CVE-2020-9391 kernel: brk discards top byte of addresses on aarch64, causing heap corruption in glibc malloc
https://bugzilla.redhat.com/show_bug.cgi?id=1797052
[ 3 ] Bug #1772498 - Enable Sound Open Firmware (SOF) driver in Fedora for the recent Intel hardware
https://bugzilla.redhat.com/show_bug.cgi?id=1772498
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-3cd64d683c' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years, 1 month
[SECURITY] Fedora 31 Update: kernel-headers-5.5.6-200.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-3cd64d683c
2020-02-29 03:20:42.435028
--------------------------------------------------------------------------------
Name : kernel-headers
Product : Fedora 31
Version : 5.5.6
Release : 200.fc31
URL : http://www.kernel.org/
Summary : Header files for the Linux kernel for use by glibc
Description :
Kernel-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
glibc package.
--------------------------------------------------------------------------------
Update Information:
The 5.5.6 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 24 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.5.6-200
- Linux v5.5.6
* Wed Feb 19 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.5.5-200
- Linux v5.5.5
* Tue Feb 11 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.18-200
- Linux v5.4.18
* Wed Jan 1 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.7-200
- Linux v5.4.7
* Mon Dec 23 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.6-200
- Linux v5.4.6
* Thu Dec 19 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.5-300
- Linux v5.4.5
* Tue Nov 12 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.3.11-300
- Linux v5.3.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1800335 - iwlwifi: Can't parse phy_sku in B0, empty sections (missing firmware?)
https://bugzilla.redhat.com/show_bug.cgi?id=1800335
[ 2 ] Bug #1797052 - CVE-2020-9391 kernel: brk discards top byte of addresses on aarch64, causing heap corruption in glibc malloc
https://bugzilla.redhat.com/show_bug.cgi?id=1797052
[ 3 ] Bug #1772498 - Enable Sound Open Firmware (SOF) driver in Fedora for the recent Intel hardware
https://bugzilla.redhat.com/show_bug.cgi?id=1772498
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-3cd64d683c' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years, 1 month
[SECURITY] Fedora 31 Update: kernel-5.5.6-201.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-3cd64d683c
2020-02-29 03:20:42.435028
--------------------------------------------------------------------------------
Name : kernel
Product : Fedora 31
Version : 5.5.6
Release : 201.fc31
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package
--------------------------------------------------------------------------------
Update Information:
The 5.5.6 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 24 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.5.6-201
- Fix for some iwlwifi users (rhbz 1800335)
* Mon Feb 24 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.5.6-200
- Linux v5.5.6
* Fri Feb 21 2020 Hans de Goede <hdegoede(a)redhat.com>
- Backport Virtual Box Guest shared folder support from 5.6
* Fri Feb 21 2020 Jaroslav Kysela <perex(a)perex.cz>
- Update alsa-5.6.patch for better SOF support (rhbz 1772498)
* Thu Feb 20 2020 Justin M. Forbes <jforbes(a)fedoraproject.org>
- Fix aarch64 heap corruption issue (rhbz 1797052)
- Add i915 fix from upstream
* Wed Feb 19 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.5.5-200
- Linux v5.5.5
* Mon Feb 17 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.20-200
- Linux v5.4.20
* Tue Feb 11 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.19-200
- Linux v5.4.19
* Mon Feb 10 2020 Jeremy Cline <jcline(a)redhat.com>
- Remove sysrq support to lift lockdown (rhbz 1800859)
* Thu Feb 6 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.18-200
- Linux v5.4.18
* Sat Feb 1 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.17-200
- Linux v5.4.17
* Thu Jan 30 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.16-200
- Linux v5.4.16
* Wed Jan 29 2020 Justin Forbes <jforbes(a)fedoraproject.org>
- Add support for Comet Lake (rhbz 1794369)
* Mon Jan 27 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.15-200
- Linux v5.4.15
* Thu Jan 23 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.14-200
- Linux v5.4.14
* Tue Jan 21 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.13-201
- Re-add the Intel ASoC Sound Open Firmware driver support
* Mon Jan 20 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.13-200
- Linux v5.4.13
* Tue Jan 14 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.12-200
- Linux v5.4.12
* Mon Jan 13 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.10-202
- Add Documentation back to kernel-devel as it has Kconfig now (rhbz 1789641)
* Mon Jan 13 2020 Peter Robinson <pbrobinson(a)gmail.com> - 5.4.11-200
- Linux v5.4.11
* Thu Jan 9 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.10-200
- Linux v5.4.10
* Mon Jan 6 2020 Laura Abbott <labbott(a)redhat.com>
- Fix for tpm usercopy (rhbz 1788653)
* Mon Jan 6 2020 Hans de Goede <hdegoede(a)redhat.com>
- Make the MFD Intel LPSS driver builtin, some devices require this to be
available early during boot (rhbz#1787997)
* Mon Jan 6 2020 Jeremy Cline <jcline(a)redhat.com> - 5.4.8-200
- Linux v5.4.8
- Fix a firmware load issue on some Intel wireless cards (rhbz 1788150)
* Tue Dec 31 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.7-200
- Linux v5.4.7
* Mon Dec 23 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.6-300
- Linux v5.4.6
- Fix rhbz 1781288
* Thu Dec 19 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.4.5-300
- Linux v5.4.5 rebase
* Wed Dec 18 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.18-300
- Linux v5.3.18
* Tue Dec 17 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.17-300
- Linux v5.3.17
* Fri Dec 13 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.16-300
- Linux v5.3.16
* Thu Dec 5 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.15-300
- Linux v5.3.15
* Wed Dec 4 2019 Laura Abbott <labbott(a)redhat.com>
- Add powerpc virt fix (rhbz 1769600)
* Mon Dec 2 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.14-300
- Linux v5.3.14
* Mon Dec 2 2019 Justin M. Forbes <jforbes(a)fedoraproject.org>
- Fix CVE-2019-18808 (rhbz 1777418 1777421)
- Fix CVE-2019-18809 (rhbz 1777449 1777451)
- Fix CVE-2019-18811 (rhbz 1777455 1777456)
- Fix CVE-2019-18812 (rhbz 1777458 1777459)
- Fix CVE-2019-16232 (rhbz 1760351 1760352)
* Tue Nov 26 2019 Justin M. Forbes <jforbes(a)fedoraproject.org>
- Fix CVE-2019-19082 (rhbz 1776832 1776833)
* Mon Nov 25 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.3.13-300
- Fix CVE-2019-14895 (rhbz 1774870 1776139)
- Fix CVE-2019-14896 (rhbz 1774875 1776143)
- Fix CVE-2019-14897 (rhbz 1774879 1776146)
- Fix CVE-2019-14901 (rhbz 1773519 1776184)
- Fix CVE-2019-19078 (rhbz 1776354 1776353)
* Mon Nov 25 2019 Laura Abbott <labbott(a)redhat.com>
- Linux v5.3.13
* Fri Nov 22 2019 Justin M. Forbes <jforbes(a)fedoraproject.org>
- Fix CVE-2019-19077 rhbz 1775724 1775725
* Thu Nov 21 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.3.12-300
- Fix CVE-2019-19074 (rhbz 1774933 1774934)
- Fix CVE-2019-19073 (rhbz 1774937 1774939)
- Fix CVE-2019-19072 (rhbz 1774946 1774947)
- Fix CVE-2019-19071 (rhbz 1774949 1774950)
- Fix CVE-2019-19070 (rhbz 1774957 1774958)
- Fix CVE-2019-19068 (rhbz 1774963 1774965)
- Fix CVE-2019-19043 (rhbz 1774972 1774973)
- Fix CVE-2019-19066 (rhbz 1774976 1774978)
- Fix CVE-2019-19046 (rhbz 1774988 1774989)
- Fix CVE-2019-19050 (rhbz 1774998 1775002)
- Fix CVE-2019-19062 (rhbz 1775021 1775023)
- Fix CVE-2019-19064 (rhbz 1775010 1775011)
- Fix CVE-2019-19063 (rhbz 1775015 1775016)
- Fix CVE-2019-19059 (rhbz 1775042 1775043)
- Fix CVE-2019-19058 (rhbz 1775047 1775048)
- Fix CVE-2019-19057 (rhbz 1775050 1775051)
- Fix CVE-2019-19053 (rhbz 1775956 1775110)
- Fix CVE-2019-19056 (rhbz 1775097 1775115)
- Fix CVE-2019-19055 (rhbz 1775074 1775116)
- Fix CVE-2019-19054 (rhbz 1775063 1775117)
* Thu Nov 21 2019 Laura Abbott <labbott(a)redhat.com>
- Linux v5.3.12
* Tue Nov 12 2019 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.3.11-300
- Linux v5.3.11
- Fixes CVE-2019-11135 (rhbz 1753062 1771649)
- Fixes CVE-2018-12207 (rhbz 1646768 1771645)
- Fixes CVE-2019-0154 (rhbz 1724393 1771642)
- Fixes CVE-2019-0155 (rhbz 1724398 1771644)
* Mon Nov 11 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.10-300
- Linux v5.3.10
* Thu Nov 7 2019 Jeremy Cline <jcline(a)redhat.com>
- Add support for a number of Macbook keyboards and touchpads (rhbz 1769465)
* Wed Nov 6 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.9-300
- Linux v5.3.9
* Tue Oct 29 2019 Laura Abbott <labbott(a)redhat.com> - 5.3.8-300
- Linux v5.3.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1800335 - iwlwifi: Can't parse phy_sku in B0, empty sections (missing firmware?)
https://bugzilla.redhat.com/show_bug.cgi?id=1800335
[ 2 ] Bug #1797052 - CVE-2020-9391 kernel: brk discards top byte of addresses on aarch64, causing heap corruption in glibc malloc
https://bugzilla.redhat.com/show_bug.cgi?id=1797052
[ 3 ] Bug #1772498 - Enable Sound Open Firmware (SOF) driver in Fedora for the recent Intel hardware
https://bugzilla.redhat.com/show_bug.cgi?id=1772498
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-3cd64d683c' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years, 1 month
Fedora 31 Update: selinux-policy-3.14.4-49.fc31
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-134159dd14
2020-02-29 03:20:42.435012
--------------------------------------------------------------------------------
Name : selinux-policy
Product : Fedora 31
Version : 3.14.4
Release : 49.fc31
URL : https://github.com/fedora-selinux/selinux-policy
Summary : SELinux policy configuration
Description :
SELinux Base package for SELinux Reference Policy - modular.
Based off of reference policy: Checked out revision 2.20091117
--------------------------------------------------------------------------------
Update Information:
More info: https://koji.fedoraproject.org/koji/buildinfo?buildID=1469113
--------------------------------------------------------------------------------
ChangeLog:
* Sat Feb 22 2020 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.4-49
- Allow httpd_t domain to mmap own var_lib_t files BZ(1804853)
- Allow ipda_custodia_t to create udp_socket and added permission nlmsg_read for netlink_route_sockets
- Update virt_read_qemu_pid_files inteface
- Make file context more variable for /usr/bin/fusermount and /bin/fusermount
* Sat Feb 15 2020 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.4-48
- Allow vhostmd communication with hosted virtual machines
- Add and update virt interfaces
- Update radiusd policy
- Allow systemd_private_tmp(named_tmp_t)
- Allow bacula dac_override capability
* Fri Feb 7 2020 Zdenek Pytela <zpytela(a)redhat.com> - 3.14.4-47
- Allow ipa_custodia_t create and use netlink_route_socket sockets.
- Allow networkmanager_t transition to setfiles_t
- Create init_create_dirs boolean to allow init create directories
- Create files_create_non_security_dirs() interface
* Fri Jan 31 2020 Zdenek Pytela <zpytela(a)redhat.com> - 3.14.4-46
- Added apache create log dirs macro
- Allow thumb_t connect to system_dbusd_t BZ(1795044)
- Allow saslauthd_t filetrans variable files for /tmp directory
- Allow openfortivpn_t to manage net_conf_t files.
- Introduce boolean openfortivpn_can_network_connect.
- Allow init_t to create apache log dirs.
- Add file transition for /dev/nvidia-uvm BZ(1770588)
- Update xserver_rw_session macro
* Fri Jan 24 2020 Zdenek Pytela <zpytela(a)redhat.com> - 3.14.4-45
- Make stratisd_t domain unconfined for now.
- stratisd_t policy updates.
- Label /var/spool/plymouth/boot.log as plymouthd_var_log_t
- Label /stratis as stratisd_data_t
- Allow opafm_t to create and use netlink rdma sockets.
- Allow stratisd_t domain to read/write fixed disk devices and removable devices.
- Add dac_override capability to stratisd_t domain
- Added macro for stratisd to chat over dbus
- Allow init_t set the nice level of all domains BZ(1778088)
- Allow userdomain to chat with stratisd over dbus.
* Mon Jan 13 2020 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.4-44
- Fix typo in anaconda SELinux module
- Allow rtkit_t domain to control scheduling for your install_t processes
- Boolean: rngd_t to use executable memory
- Allow rngd_t domain to use nsswitch BZ(1787661)
- Allow exim to execute bin_t without domain trans
- Allow create udp sockets for abrt_upload_watch_t domains
- Drop label zebra_t for frr binaries
- Allow NetworkManager_t domain to get status of samba services
- Update milter policy to allow use sendmail
- Modify file context for .local directory to match exactly BZ(1637401)
- Add new file context rabbitmq_conf_t.
- Allow journalctl read init state BZ(1731753)
- Add fprintd_read_var_lib_dir and fprintd_setattr_var_lib_dir interfaces
- Allow pulseaudio create .config and dgram sendto to unpriv_userdomain
- Change type in transition for /var/cache/{dnf,yum} directory
- Allow cockpit_ws_t read efivarfs_t BZ(1777085)
- Allow abrt_dump_oops_t domain to create udp sockets BZ(1778030)
- Allow named_t domain to mmap named_zone_t files BZ(1647493)
- Make boinc_var_lib_t label system mountdir attribute
- Allow stratis_t domain to request load modules
- Update fail2ban policy
- Allow spamd_update_t access antivirus_unit_file_t BZ(1774092)
- Allow uuidd_t Domain trasition from sytemd into confined domain with NoNewPrivileges Systemd Security feature.
- Allow rdisc_t Domain trasition from sytemd into confined domain with NoNewPrivileges Systemd Security feature.
- Allow init_t domain to create own socket files in /tmp
- Allow ipsec_mgmt_t domain to mmap ipsec_conf_file_t files
- Allow userdomain dbus chat with systemd_resolved_t
- Allow init_t read and setattr on /var/lib/fprintd
- Allow systemd_domain to map files in /usr.
- Allow sysadm_t dbus chat with colord_t
- Allow confined users run fwupdmgr
- Allow confined users run machinectl
- Allow systemd labeled as init_t domain to create dirs labeled as var_t
- Allow systemd labeled as init_t do read/write tpm_device_t chr files BZ(1778079)
* Thu Nov 28 2019 Zdenek Pytela <zpytela(a)redhat.com> - 3.14.4-43
- Fix nonexisting types in rtas_errd_rw_lock interface
- Allow snmpd_t domain to trace processes in user namespace
- Allow zebra_t domain to execute zebra binaries
- Allow ksmtuned_t domain to trace processes in user namespace
- Allow systemd to read symlinks in /var/lib
- Update dev_mounton_all_device_nodes() interface
- Add the miscfiles_map_generic_certs macro to the sysnet_dns_name_resolve macro.
- Allow strongswan start using swanctl method BZ(1773381)
- Dontaudit systemd_tmpfiles_t getattr of all file types BZ(1772976)
* Fri Nov 22 2019 Zdenek Pytela <zpytela(a)redhat.com> - 3.14.4-42
- Allow NetworkManager_t manage dhcpc_state_t BZ(1770698)
- Label tcp ports 24816,24817 as pulp_port_t
* Wed Nov 13 2019 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.4-41
- Fix typo bugs in rtas_errd_read_lock() interface
- Allow timedatex_t domain to systemctl chronyd domains
- Allow ipa_helper_t to read kr5_keytab_t files
- cockpit: Allow cockpit-session to read cockpit-tls state directory
- Allow stratisd_t domain to read nvme and fixed disk devices
- Update lldpad_t policy module
- Dontaudit tmpreaper_t getting attributes from sysctl_type files
- cockpit: Support https instance factory
- Added macro for timedatex to chat over dbus.
- Update files_manage_etc_runtime_files() interface to allow manage also dirs
- Dontaudit sys_admin capability for auditd_t domains
- Allow x_userdomain to read adjtime_t files
- Allow users using template userdom_unpriv_user_template() to run bpf tool
- Allow x_userdomain to dbus_chat with timedatex.
* Sun Nov 3 2019 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.4-40
- Label /var/cache/nginx as httpd_cache_t
- Allow abrt_upload_watch_t domain to send dgram msgs to kernel processes and stream connect to journald
- Created dnsmasq_use_ipset boolean
- Allow capability dac_override in logwatch_mail_t domain
- Allow automount_t domain to execute ping in own SELinux domain (ping_t)
- Allow tmpreaper_t domain to getattr files labeled as mtrr_device_t
- Allow collectd_t domain to create netlink_generic_socket sockets
- Allow rhsmcertd_t domain to read/write rtas_errd_var_lock_t files
- Allow tmpwatch process labeled as tmpreaper_t domain to execute fuser command.
- Label /etc/postfix/chroot-update as postfix_exec_t
- Update tmpreaper_t policy due to fuser command
- Allow kdump_t domain to create netlink_route and udp sockets
- Allow stratisd to connect to dbus
- Allow fail2ban_t domain to create netlink netfilter sockets.
- Allow dovecot get filesystem quotas
- Allow networkmanager_t domain to execute chronyd binary in chronyd_t domain. BZ(1765689)
- Allow systemd-tmpfiles processes to set rlimit information
- Update files_filetrans_named_content() interface to allow caller domain to create /oldroot /.profile with correct label etc_runtime_t
- Allow systemd_logind to read dosfs files & dirs Allow systemd-logind - a system service that manages user logins, to read files and list dirs on a DOS filesystem
* Fri Oct 25 2019 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.4-39
- Allow confined users to run newaliases
- Add interface mysql_dontaudit_rw_db()
- Label /var/lib/xfsdump/inventory as amanda_var_lib_t
- Allow tmpreaper_t domain to read all domains state
- Make httpd_var_lib_t label system mountdir attribute
- Update cockpit policy
- Allow nagios_script_t domain list files labled sysfs_t.
- Allow jetty_t domain search and read cgroup_t files.
- Donaudit ifconfig_t domain to read/write mysqld_db_t files
- Dontaudit domains read/write leaked pipes
* Tue Oct 22 2019 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.4-38
- Allow nagios_script_t domain list files labled sysfs_t.
- Allow jetty_t domain search and read cgroup_t files.
- Allow Gluster mount client to mount files_type
- Dontaudit and disallow sys_admin capability for keepalived_t domain
- Update numad policy to allow signull, kill, nice and trace processes
- Allow ipmievd_t to RW watchdog devices
- Update allow rules set for pads_t domain
- Allow networkmanager_t domain domain transition to chronyc_t domain BZ(1760226)
- Update apache and pkcs policies to make active opencryptoki rules
- Allow ldconfig_t domain to manage initrc_tmp_t link files Allow netutils_t domain to write to initrc_tmp_t fifo files
- Allow user domains to manage user session services
- Allow staff and user users to get status of user systemd session
- Update sudo_role_template() to allow caller domain to read syslog pid files
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-134159dd14' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
4 years, 1 month