--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-27ba6780e5
2021-10-31 01:14:01.019327
--------------------------------------------------------------------------------
Name : java-latest-openjdk
Product : Fedora 34
Version : 17.0.1.0.12
Release : 1.rolling.fc34
URL : http://openjdk.java.net/
Summary : OpenJDK 17 Runtime Environment
Description :
The OpenJDK 17 runtime environment.
--------------------------------------------------------------------------------
Update Information:
New in release OpenJDK 17.0.1 (2021-10-19):
---------------------------------------------------------------- Live versions
of these release notes can be found at: -
https://builds.shipilev.net/backports-monitor/release-notes-17.0.1.txt Security
fixes -------------------------- - JDK-8263314: Enhance XML Dsig modes -
JDK-8265167, CVE-2021-35556: Richer Text Editors - JDK-8265574: Improve
handling of sheets - JDK-8265580, CVE-2021-35559: Enhanced style for RTF kit
- JDK-8265776: Improve Stream handling for SSL - JDK-8266097, CVE-2021-35561:
Better hashing support - JDK-8266103: Better specified spec values -
JDK-8266109: More Resilient Classloading - JDK-8266115: More Manifest Jar
Loading - JDK-8266137, CVE-2021-35564: Improve Keystore integrity -
JDK-8266689, CVE-2021-35567: More Constrained Delegation - JDK-8267086:
ArrayIndexOutOfBoundsException in java.security.KeyFactory.generatePublic -
JDK-8267712: Better LDAP reference processing - JDK-8267729, CVE-2021-35578:
Improve TLS client handshaking - JDK-8267735, CVE-2021-35586: Better BMP
support - JDK-8268193: Improve requests of certificates - JDK-8268199:
Correct certificate requests - JDK-8268205: Enhance DTLS client handshake -
JDK-8268500: Better specified ParameterSpecs - JDK-8268506: More Manifest
Digests - JDK-8269618, CVE-2021-35603: Better session identification -
JDK-8269624: Enhance method selection support - JDK-8270398: Enhance
canonicalization - JDK-8270404: Better canonicalization Other changes
---------------------------- - JDK-8225082: Remove IdenTrust certificate that
is expiring in September 2021 - JDK-8243543: jtreg test
security/infra/java/security/cert/CertPathValidator/certification/BuypassCA.java
fails - JDK-8248899: security/infra/java/security/cert/CertPathValidator/certi
fication/QuoVadisCA.java fails, Certificate has been revoked - JDK-8261088:
Repeatable annotations without @Target cannot have containers that target module
declarations - JDK-8262731: [macOS] Exception from "Printable.print" is
swallowed during "PrinterJob.print" - JDK-8263531: Remove unused buffer int
- JDK-8266182: Automate manual steps listed in the test
jdk/sun/security/pkcs12/ParamsTest.java - JDK-8267625: AARCH64: typo in
LIR_Assembler::emit_profile_type - JDK-8267666: Add option to jcmd
GC.heap_dump to use existing file - JDK-8268019: C2: assert(no_dead_loop)
failed: dead loop detected - JDK-8268261: C2: assert(n != __null) failed: Bad
immediate dominator info. - JDK-8268427: Improve
AlgorithmConstraints:checkAlgorithm performance - JDK-8268963: [IR Framework]
Some default regexes matching on PrintOptoAssembly in IRNode.java do not work on
all platforms - JDK-8269297: Bump version numbers for JDK 17.0.1 -
JDK-8269478: Shenandoah: gc/shenandoah/mxbeans tests should be more resilient
- JDK-8269574: C2: Avoid redundant uncommon traps in GraphKit::builtin_throw()
for JVMTI exception events - JDK-8269763: The JEditorPane is blank after
JDK-8265167 - JDK-8269851: OperatingSystemMXBean getProcessCpuLoad reports
incorrect process cpu usage in containers - JDK-8269882: stack-use-after-scope
in NewObjectA - JDK-8269897: Shenandoah: Resolve UNKNOWN access strength,
where possible - JDK-8269934: RunThese24H.java failed with
EXCEPTION_ACCESS_VIOLATION in java_lang_Thread::get_thread_status -
JDK-8269993: [Test]: java/net/httpclient/DigestEchoClientSSL.java contains
redundant @run tags - JDK-8270094: Shenandoah: Provide human-readable labels
for test configurations - JDK-8270096: Shenandoah: Optimize
gc/shenandoah/TestRefprocSanity.java for interpreter mode - JDK-8270098: ZGC:
ZBarrierSetC2::clone_at_expansion fails with "Guard against surprises" assert
- JDK-8270137: Kerberos Credential Retrieval from Cache not Working in Cross-
Realm Setup - JDK-8270280: security/infra/java/security/cert/CertPathValidator
/certification/LetsEncryptCA.java OCSP response error - JDK-8270344: Session
resumption errors - JDK-8271203: C2: assert(iff->Opcode() == Op_If ||
iff->Opcode() == Op_CountedLoopEnd || iff->Opcode() == Op_RangeCheck) failed:
Check this code when new subtype is added - JDK-8271276: C2: Wrong JVM state
used for receiver null check - JDK-8271335: Updating RE Configs for BUILD
REQUEST 17.0.1+4 - JDK-8271589: fatal error with variable shift count integer
rotate operation. - JDK-8271723: Unproblemlist
runtime/InvocationTests/invokevirtualTests.java - JDK-8271730: Client
authentication using RSASSA-PSS fails after correct certificate requests -
JDK-8271925: ZGC: Arraycopy stub passes invalid oop to load barrier -
JDK-8272124: Cgroup v1 initialization causes NullPointerException when cgroup
path contains colon - JDK-8272131: PhaseMacroExpand::generate_slow_arraycopy
crash when clone null CallProjections.fallthrough_ioproj - JDK-8272326:
java/util/Random/RandomTestMoments.java had two Gaussian fails - JDK-8272332:
--with-harfbuzz=system doesn't add -lharfbuzz after JDK-8255790 - JDK-8272472:
StackGuardPages test doesn't build with glibc 2.34 - JDK-8272581:
sun/security/pkcs11/Provider/MultipleLogins.sh fails after JDK-8266182 -
JDK-8272602: [macos] not all KEY_PRESSED events sent when control modifier is
used - JDK-8272700: [macos] Build failure with Xcode 13.0 after JDK-8264848
- JDK-8272708: [Test]: Cleanup: test/jdk/security/infra/java/security/cert/CertP
athValidator/certification/BuypassCA.java no longer needs ocspEnabled -
JDK-8272806: [macOS] "Apple AWT Internal Exception" when input method is changed
- JDK-8273358: macOS Monterey does not have the font Times needed by Serif
Notes on individual issues: -------------------------------------------
security-libs/java.security: JDK-8271434: Removed IdenTrust Root Certificate
The following root certificate from IdenTrust has been removed from the
`cacerts` keystore: Alias Name: identrustdstx3 [jdk] Distinguished Name: CN=DST
Root CA X3, O=Digital Signature Trust Co.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 20 2021 Petra Alice Mikova <pmikova(a)redhat.com> - 1:17.0.1.0.12-1.rolling
- October CPU update to jdk 17.0.1+12
- dropped commented-out source line
- bump buildjdkver to 17
* Mon Oct 11 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:17.0.0.0.35-3.rolling
- Update release notes to document the major changes between OpenJDK 11 & 17.
* Sun Oct 10 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:17.0.0.0.35-2.rolling
- Fix unused function compiler warning found in systemconf.c
- Extend the default security policy to accomodate PKCS11 accessing jdk.internal.access.
- Allow plain key import to be disabled with -Dcom.redhat.fips.plainKeySupport=false
* Sun Oct 10 2021 Martin Balao <mbalao(a)redhat.com> - 1:17.0.0.0.35-2.rolling
- Add patch to disable non-FIPS crypto in the SUN and SunEC security providers.
- Add patch to login to the NSS software token when in FIPS mode.
- Add patch to allow plain key import.
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-27ba6780e5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-26fcbf20ef
2021-10-31 01:14:01.019318
--------------------------------------------------------------------------------
Name : NsCDE
Product : Fedora 34
Version : 1.3
Release : 1.fc34
URL : https://github.com/NsCDE/NsCDE
Summary : Modern and functional CDE desktop based on FVWM
Description :
NsCDE is a retro but powerful UNIX desktop environment which resembles CDE look
(and partially feel) but with a more powerful and flexible framework
beneath-the-surface, more suited for 21st century UNIX-like and Linux systems
and user requirements than original CDE.
--------------------------------------------------------------------------------
Update Information:
Update to 1.3; Fixes: RHBZ#2012395
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 22 2021 Davide Cavalca <dcavalca(a)fedoraproject.org> 1.3-1
- Update to 1.3; Fixes: RHBZ#2012395
* Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2012395 - NsCDE-1.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2012395
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-26fcbf20ef' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-0a19530862
2021-10-31 01:14:01.019309
--------------------------------------------------------------------------------
Name : rbanffy-3270-fonts
Product : Fedora 34
Version : 2.3.1
Release : 1.fc34
URL : https://github.com/rbanffy/3270font
Summary : Monospaced font based on IBM 3270 terminals
Description :
This font is derived from the x3270 font, which, in turn, was translated from
the one in Georgia Tech's 3270tool, which was itself hand-copied from a 3270
terminal.
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.1; Fixes: RHBZ#2012347
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 22 2021 Davide Cavalca <dcavalca(a)fedoraproject.org> 2.3.1-1
- Update to 2.3.1; Fixes: RHBZ#2012347
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2012347 - rbanffy-3270-fonts-2.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2012347
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-0a19530862' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-434b40a25a
2021-10-31 01:14:01.019300
--------------------------------------------------------------------------------
Name : rust-elfcat
Product : Fedora 34
Version : 0.1.8
Release : 1.fc34
URL : https://crates.io/crates/elfcat
Summary : ELF visualizer
Description :
ELF visualizer. Generates HTML files from ELF binaries.
--------------------------------------------------------------------------------
Update Information:
Update to 0.1.8; Fixes: RHBZ#1991774
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 22 2021 Davide Cavalca <dcavalca(a)fedoraproject.org> 0.1.8-1
- Update to 0.1.8; Fixes: RHBZ#1991774
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1991774 - rust-elfcat-0.1.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1991774
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-434b40a25a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-855eafb672
2021-10-31 01:14:01.019291
--------------------------------------------------------------------------------
Name : rubygem-mini_portile2
Product : Fedora 34
Version : 2.7.1
Release : 1.fc34
URL : http://github.com/flavorjones/mini_portile
Summary : Simplistic port-like solution for developers
Description :
Simplistic port-like solution for developers. It provides a standard and
simplified way to compile against dependency libraries without messing up your
system.
--------------------------------------------------------------------------------
Update Information:
New version 2.7.1 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 22 2021 Mamoru TASAKA <mtasaka(a)fedoraproject.org> - 2.7.1-1
- 2.7.1
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-855eafb672' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-e87e64fd36
2021-10-31 01:14:01.019281
--------------------------------------------------------------------------------
Name : nq
Product : Fedora 34
Version : 0.4
Release : 1.fc34
URL : https://github.com/leahneukirchen/nq
Summary : Unix command line queue utility
Description :
The nq utility provides a very lightweight queuing system without requiring
setup, maintenance, supervision or any long-running processes.
--------------------------------------------------------------------------------
Update Information:
First nq package
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2013111 - Review Request: nq - Unix command line queue utility
https://bugzilla.redhat.com/show_bug.cgi?id=2013111
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-e87e64fd36' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-9731fc637a
2021-10-31 01:14:01.019272
--------------------------------------------------------------------------------
Name : scrot
Product : Fedora 34
Version : 1.6
Release : 1.fc34
URL : https://github.com/resurrecting-open-source-projects/scrot
Summary : Command line screen capture utility
Description :
scrot is a simple command line screen capture utility.
--------------------------------------------------------------------------------
Update Information:
The scrot package was recently un-retired and this is the update to the latest
upstream version.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2014324 - Review Request: scrot - Command line screen capture utility
https://bugzilla.redhat.com/show_bug.cgi?id=2014324
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-9731fc637a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-56adb1fa43
2021-10-31 01:14:01.019264
--------------------------------------------------------------------------------
Name : perl-CHI
Product : Fedora 34
Version : 0.61
Release : 1.fc34
URL : https://metacpan.org/release/CHI
Summary : Unified cache handling interface
Description :
CHI provides a unified caching API, designed to assist a developer in
persisting data for a specified period of time.
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 21 2021 Ralf Cors��pius <corsepiu(a)fedoraproject.org> - 0.61-1
- Update to 0.61.
- Drop perl-CHI-0.60-perl-5.22-regex.diff.
- Modernize spec.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2015011 - Upgrade perl-CHI to 0.61
https://bugzilla.redhat.com/show_bug.cgi?id=2015011
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-56adb1fa43' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-c6a728a8c4
2021-10-31 01:14:01.019255
--------------------------------------------------------------------------------
Name : python-lazy-object-proxy
Product : Fedora 34
Version : 1.6.0
Release : 4.fc34
URL : https://github.com/ionelmc/python-lazy-object-proxy
Summary : A fast and thorough lazy object proxy
Description :
A fast and thorough lazy object proxy.
--------------------------------------------------------------------------------
Update Information:
1.6.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Thu Jun 3 2021 Python Maint <python-maint(a)redhat.com> - 1.6.0-3
- Rebuilt for Python 3.10
* Wed Mar 24 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 1.6.0-2
- Patch for setuptools-scm >=6.0
* Mon Mar 22 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 1.6.0-1
- 1.6.0
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-c6a728a8c4' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-961f3f1d8a
2021-10-31 01:14:01.019245
--------------------------------------------------------------------------------
Name : python-pystemd
Product : Fedora 34
Version : 0.10.0
Release : 1.fc34
URL : https://github.com/facebookincubator/pystemd
Summary : A thin Cython-based wrapper on top of libsystemd
Description :
This library allows you to talk to systemd over D-Bus from Python,
without actually thinking that you are talking to systemd over D-Bus.
This allows you to programmatically start/stop/restart/kill and verify
service status from systemd point of view, avoiding subprocessing systemctl
and then parsing the output to know the result.
--------------------------------------------------------------------------------
Update Information:
Update to 0.10.0
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 20 2021 Davide Cavalca <dcavalca(a)fedoraproject.org> - 0.10.0-1
- Update to 0.10.0
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-961f3f1d8a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------