Fedora 34 Update: rust-debug-helper-0.3.11-1.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-018522463d
2021-04-30 00:54:33.976750
--------------------------------------------------------------------------------
Name : rust-debug-helper
Product : Fedora 34
Version : 0.3.11
Release : 1.fc34
URL : https://crates.io/crates/debug-helper
Summary : Declarative macros to help you implement the Debug trait manually
Description :
Declarative macros to help you implement the `Debug` trait manually.
--------------------------------------------------------------------------------
Update Information:
Update to version 0.3.11.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Fabio Valentini <decathorpe(a)gmail.com> - 0.3.11-1
- Update to version 0.3.11.
- Fixes RHBZ#1952082
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-018522463d' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
Fedora 34 Update: tucnak-4.28-1.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-5b072eddb3
2021-04-30 00:54:33.976740
--------------------------------------------------------------------------------
Name : tucnak
Product : Fedora 34
Version : 4.28
Release : 1.fc34
URL : http://tucnak.nagano.cz/
Summary : VHF contest logging program
Description :
Tucnak is VHF/UHF/SHF log for hamradio contests. It supports multi
bands, free input, networking, voice and CW keyer, WWL database and
much more.
--------------------------------------------------------------------------------
Update Information:
This is an update for Tucnak.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.28-1
- New version
Resolves: rhbz#1952087
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-5b072eddb3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
Fedora 34 Update: libzia-4.28-1.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-5b072eddb3
2021-04-30 00:54:33.976740
--------------------------------------------------------------------------------
Name : libzia
Product : Fedora 34
Version : 4.28
Release : 1.fc34
URL : http://tucnak.nagano.cz/
Summary : Platform abstraction layer for the tucnak package
Description :
Platform abstraction layer for the tucnak package.
--------------------------------------------------------------------------------
Update Information:
This is an update for Tucnak.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.28-1
- New version
Related: rhbz#1952087
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-5b072eddb3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
[SECURITY] Fedora 34 Update: nginx-1.20.0-2.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-3aa9ac7fd1
2021-04-30 00:54:33.976730
--------------------------------------------------------------------------------
Name : nginx
Product : Fedora 34
Version : 1.20.0
Release : 2.fc34
URL : https://nginx.org
Summary : A high performance web server and reverse proxy server
Description :
Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and
IMAP protocols, with a strong focus on high concurrency, performance and low
memory usage.
--------------------------------------------------------------------------------
Update Information:
Note that the ownership of log files has changed to `root:root` and the mode
changed to `700` (from `770`) to address CVE-2016-1247. This should not affect
general operation, as this is the default for log directories and also what
httpd uses but if you use external tools to process the log files you may want
to check continued operation after this update. Upstream changelog:
[nginx-1.20.0](http://nginx.org/en/download.html) stable version has been
released, incorporating new features and bug fixes from the 1.19.x mainline
branch ��� including [OCSP
validation](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ocsp) of
client SSL certificates, the [ssl_reject_handshake](http://nginx.org/en/docs/htt
p/ngx_http_ssl_module.html#ssl_reject_handshake) and [ssl_conf_command](http://n
ginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_conf_command) directives,
simplified and improved handling of HTTP/2 connections with the [lingering_close
](http://nginx.org/en/docs/http/ngx_http_core_module.html#lingering_close), [kee
palive_timeout](http://nginx.org/en/docs/http/ngx_http_core_module.html#k...
e_timeout), and [keepalive_requests](http://nginx.org/en/docs/http/ngx_http_core
_module.html#keepalive_requests) directives, the [keepalive_time](http://nginx.o
rg/en/docs/http/ngx_http_core_module.html#keepalive_time) directive, stricter
handling of upstream server responses, [cookie flags](http://nginx.org/en/docs/h
ttp/ngx_http_proxy_module.html#proxy_cookie_flags) handling, cache clearing
based on the [minimum amount of free space](http://nginx.org/en/docs/http/ngx_ht
tp_proxy_module.html#proxy_cache_path_max_size), PROXY protocol support [from
clients](http://nginx.org/en/docs/mail/ngx_mail_core_module.html#proxy_pr...
and [to backend servers](http://nginx.org/en/docs/mail/ngx_mail_proxy_module.htm
l#proxy_protocol) in the mail proxy, [proxying SMTP authentication](http://nginx
.org/en/docs/mail/ngx_mail_proxy_module.html#proxy_smtp_auth), the
[set](http://nginx.org/en/docs/stream/ngx_stream_set_module.html) directive in
the stream module, and more. ----
[nginx-1.20.0](http://nginx.org/en/download.html) stable version has been
released, incorporating new features and bug fixes from the 1.19.x mainline
branch ��� including [OCSP
validation](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ocsp) of
client SSL certificates, the [ssl_reject_handshake](http://nginx.org/en/docs/htt
p/ngx_http_ssl_module.html#ssl_reject_handshake) and [ssl_conf_command](http://n
ginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_conf_command) directives,
simplified and improved handling of HTTP/2 connections with the [lingering_close
](http://nginx.org/en/docs/http/ngx_http_core_module.html#lingering_close), [kee
palive_timeout](http://nginx.org/en/docs/http/ngx_http_core_module.html#k...
e_timeout), and [keepalive_requests](http://nginx.org/en/docs/http/ngx_http_core
_module.html#keepalive_requests) directives, the [keepalive_time](http://nginx.o
rg/en/docs/http/ngx_http_core_module.html#keepalive_time) directive, stricter
handling of upstream server responses, [cookie flags](http://nginx.org/en/docs/h
ttp/ngx_http_proxy_module.html#proxy_cookie_flags) handling, cache clearing
based on the [minimum amount of free space](http://nginx.org/en/docs/http/ngx_ht
tp_proxy_module.html#proxy_cache_path_max_size), PROXY protocol support [from
clients](http://nginx.org/en/docs/mail/ngx_mail_core_module.html#proxy_pr...
and [to backend servers](http://nginx.org/en/docs/mail/ngx_mail_proxy_module.htm
l#proxy_protocol) in the mail proxy, [proxying SMTP authentication](http://nginx
.org/en/docs/mail/ngx_mail_proxy_module.html#proxy_smtp_auth), the
[set](http://nginx.org/en/docs/stream/ngx_stream_set_module.html) directive in
the stream module, and more.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Felix Kaechele <heffer(a)fedoraproject.org> - 1:1.20.0-2
- sync rawhide and EPEL7 spec files again
- systemd service reload now checks config file (rhbz#1565377)
- drop nginx requirement on nginx-all-modules (rhbz#1708799)
- let nginx handle log creation on logrotate (rhbz#1683388)
- have log directory owned by root (rhbz#1390183, CVE-2016-1247)
- remove obsolete --with-ipv6 (src PR#8)
- correction: pcre2 is actually not supported by nginx, reintroduce pcre
* Wed Apr 21 2021 Felix Kaechele <heffer(a)fedoraproject.org> - 1:1.20.0-1
- update to 1.20.0
- sync with mainline spec file
- order configure options alphabetically for easier comparinggit
- add --with-compat option (rhbz#1834452)
- add patch to fix PIDFile race condition (rhbz#1869026)
- use pcre2 instead of pcre (rhbz#1938984)
- add Wants=network-online.target to systemd unit (rhbz#1943779)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1390183 - CVE-2016-1247 nginx: Local privilege escalation via log files [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1390183
[ 2 ] Bug #1565377 - Service reload should check configuration file
https://bugzilla.redhat.com/show_bug.cgi?id=1565377
[ 3 ] Bug #1683388 - Log file ownership created by logrotate inconsistent with the one created by systemd
https://bugzilla.redhat.com/show_bug.cgi?id=1683388
[ 4 ] Bug #1708799 - Drop nginx requirement on nginx-all-modules
https://bugzilla.redhat.com/show_bug.cgi?id=1708799
[ 5 ] Bug #1834452 - Enable --with-compat configure option
https://bugzilla.redhat.com/show_bug.cgi?id=1834452
[ 6 ] Bug #1869026 - nginx.service fails to parse /run/nginx.pid
https://bugzilla.redhat.com/show_bug.cgi?id=1869026
[ 7 ] Bug #1943779 - nginx.service wants wrong network target - causes race condition on boot
https://bugzilla.redhat.com/show_bug.cgi?id=1943779
[ 8 ] Bug #1944738 - nginx-1.20.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1944738
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-3aa9ac7fd1' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
Fedora 34 Update: nv-codec-headers-11.0.10.1-1.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-a5311ef996
2021-04-30 00:54:33.976721
--------------------------------------------------------------------------------
Name : nv-codec-headers
Product : Fedora 34
Version : 11.0.10.1
Release : 1.fc34
URL : https://github.com/FFmpeg/nv-codec-headers
Summary : FFmpeg version of Nvidia Codec SDK headers
Description :
FFmpeg version of headers required to interface with Nvidias codec APIs.
--------------------------------------------------------------------------------
Update Information:
- Update
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Leigh Scott <leigh123linux(a)gmail.com> - 11.0.10.1-1
- Update to 11.0.10.1
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-a5311ef996' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
Fedora 34 Update: python-uamqp-1.3.0-1.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-6fc467a4e6
2021-04-30 00:54:33.976711
--------------------------------------------------------------------------------
Name : python-uamqp
Product : Fedora 34
Version : 1.3.0
Release : 1.fc34
URL : https://github.com/Azure/azure-uamqp-python/
Summary : AMQP 1.0 client library for Python
Description :
An AMQP 1.0 client library for Python.
--------------------------------------------------------------------------------
Update Information:
- Added support for AMQP Sequence as the body type of an amqp message. - Added
new class `uamqp.MessageBodyType` to represent the body type of an amqp message,
including: - `Data`: The body consists of one or more data sections and
each section contains opaque binary data. - `Sequence`: The body consists of
one or more sequence sections and each section contains an arbitrary number of
structured data elements. - `Value`: The body consists of one amqp-value
section and the section contains a single AMQP value. - Added new parameters to
the constructor of `uamqp.Message`: - `body_type` which takes
`uamqp.MessageBodyType` to specify the body type of an amqp message. -
`footer` which takes a dict to set the footer of an amqp message. -
`delivery_annotations` which takes a dict to set the delivery annotations of an
amqp message. - Added support for pickling `uamqp.Message`. - Fixed bug that
sending message of large size triggering segmentation fault when the underlying
socket connection is lost. - Fixed bug in link flow control where link credit
and delivery count should be calculated based on per message instead of per
transfer frame.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 1.3.0-1
- Update to 1.3.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1946215 - python-uamqp-1.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1946215
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-6fc467a4e6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
Fedora 34 Update: perl-CPAN-Perl-Releases-5.20210420-1.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-7883d76468
2021-04-30 00:54:33.976700
--------------------------------------------------------------------------------
Name : perl-CPAN-Perl-Releases
Product : Fedora 34
Version : 5.20210420
Release : 1.fc34
URL : https://metacpan.org/release/CPAN-Perl-Releases
Summary : Mapping Perl releases on CPAN to the location of the tarballs
Description :
CPAN::Perl::Releases is a module that contains the mappings of all perl
releases that have been uploaded to CPAN to the authors/id/ path that the
tarballs reside in.
--------------------------------------------------------------------------------
Update Information:
Updated for v5.33.9
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 5.20210420-1
- 5.20210420 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1951972 - perl-CPAN-Perl-Releases-5.20210420 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1951972
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-7883d76468' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
Fedora 34 Update: sourcextractor++-0.14-1.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-a38aa9c6e6
2021-04-30 00:54:33.976683
--------------------------------------------------------------------------------
Name : sourcextractor++
Product : Fedora 34
Version : 0.14
Release : 1.fc34
URL : https://github.com/astrorama/sourcextractorplusplus
Summary : A program that extracts a catalog of sources from astronomical images, and the successor of SExtractor
Description :
sourcextractor++ is a program that extracts a catalog of sources from
astronomical images. It is the successor to the original SExtractor
package.
--------------------------------------------------------------------------------
Update Information:
New release of sourcextractor++
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Alejandro Alvarez Ayllon <aalvarez(a)fedoraproject.org> - 0.14-1
- Release 0.14
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-a38aa9c6e6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
[SECURITY] Fedora 34 Update: jetty-9.4.40-1.fc34
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-fd66b2bd53
2021-04-30 00:54:33.976483
--------------------------------------------------------------------------------
Name : jetty
Product : Fedora 34
Version : 9.4.40
Release : 1.fc34
URL : http://www.eclipse.org/jetty/
Summary : Java Webserver and Servlet Container
Description :
Jetty is a 100% Java HTTP Server and Servlet Container. This means that you
do not need to configure and run a separate web server (like Apache) in order
to use Java, servlets and JSPs to generate dynamic content. Jetty is a fully
featured web server for static and dynamic content. Unlike separate
server/container solutions, this means that your web server and web
application run in the same process, without interconnection overheads
and complications. Furthermore, as a pure java component, Jetty can be simply
included in your application for demonstration, distribution or deployment.
Jetty is available on all Java supported platforms.
--------------------------------------------------------------------------------
Update Information:
Update to Jetty 9.4.40 (fixes multiple CVEs)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Alexander Kurtakov <akurtako(a)redhat.com> 9.4.40-1
- Update to Jetty 9.4.40 (fixes multiple CVEs)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1945710 - CVE-2021-28163 jetty: Symlink directory exposes webapp directory contents
https://bugzilla.redhat.com/show_bug.cgi?id=1945710
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-fd66b2bd53' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months
Fedora 33 Update: openhantek-3.2.2-1.fc33
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-516c56f083
2021-04-29 19:05:02.666241
--------------------------------------------------------------------------------
Name : openhantek
Product : Fedora 33
Version : 3.2.2
Release : 1.fc33
URL : https://github.com/OpenHantek/OpenHantek6022
Summary : Hantek and compatible USB digital signal oscilloscope
Description :
OpenHantek is a free software for Hantek and compatible
(Voltcraft/Darkwire/Protek/Acetech) USB digital signal oscilloscopes.
Supported devices: 6022BE/BL.
--------------------------------------------------------------------------------
Update Information:
Update to 3.2.2.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Vasiliy Glazov <vascom2(a)gmail.com> - 3.2.2-1
- Update to 3.2.2
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-516c56f083' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
2 years, 12 months