April 2022 - package-announce - Fedora Mailing-Lists

[SECURITY] Fedora 34 Update: golang-github-appc-docker2aci-0.17.2-8.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : golang-github-appc-docker2aci Product : Fedora 34 Version : 0.17.2 Release : 8.fc34 URL : https://github.com/appc/docker2aci Summary : Library and CLI tool to convert Docker images to ACIs Description : Docker2aci is a small library and CLI binary that converts Docker images to ACI. It takes as input either a file generated by "docker save" or a Docker registry URL. It gets all the layers of a Docker image and squashes them into an ACI image. Optionally, it can generate one ACI for each layer, setting the correct dependencies. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> - 0.17.2-8 - Rebuilt for CVE-2022-27191 * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.17.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.17.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: golang-gioui-0-7.20201225git18d4dbf.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : golang-gioui Product : Fedora 34 Version : 0 Release : 7.20201225git18d4dbf.fc34 URL : https://github.com/gioui/gio Summary : Immediate mode GUI programs in Go Description : Immediate mode GUI programs in Go for Android, iOS, macOS, Linux, FreeBSD, OpenBSD, Windows, and WebAssembly (experimental). See the project page gioui.org for documentation and more information. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> 0-7 - Rebuilt for CVE-2022-27191 * Tue Feb 22 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 0-6 - Add missing BR for tests Close: rhbz#2045461 * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0-0.4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0-0.3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: gobuster-3.1.0-2.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : gobuster Product : Fedora 34 Version : 3.1.0 Release : 2.fc34 URL : https://github.com/OJ/gobuster Summary : Directory/File, DNS and VHost busting tool written in Go Description : Directory/File, DNS and VHost busting tool written in Go. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> 3.1.0-2 - Rebuilt for CVE-2022-27191 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: containerd-1.6.2-3.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : containerd Product : Fedora 34 Version : 1.6.2 Release : 3.fc34 URL : https://github.com/containerd/containerd Summary : Open and reliable container runtime Description : Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision, low-level storage and network attachments, etc. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: chisel-1.7.7-2.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : chisel Product : Fedora 34 Version : 1.7.7 Release : 2.fc34 URL : https://github.com/jpillora/chisel Summary : TCP tunnel over HTTP Description : A fast TCP tunnel over HTTP. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> - 1.7.7-2 - Rebuilt for CVE-2022-27191 * Wed Feb 23 2022 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.7.7-1 - Update to latest upstream release 1.7.7 (closes rhbz#2048610) * Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.7.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.7.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: golang-contrib-opencensus-resource-0.1.2-6.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : golang-contrib-opencensus-resource Product : Fedora 34 Version : 0.1.2 Release : 6.fc34 URL : https://github.com/census-ecosystem/opencensus-go-resource Summary : Go packages for auto discovery of resource information in various environments Description : Go packages for auto discovery of resource information in various environments. The resourcekeys packages defines well-known type and label key strings that are used by the other packages. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> - 0.1.2-6 - Rebuilt for CVE-2022-27191 * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: golang-github-appc-goaci-0.1.1-10.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : golang-github-appc-goaci Product : Fedora 34 Version : 0.1.1 Release : 10.fc34 URL : https://github.com/appc/goaci Summary : Tool to build Go projects into ACIs Description : Goaci is a simple command-line tool to build Go projects into ACIs which conform to the app container specification. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> 0.1.1-10 - Rebuilt for CVE-2022-27191 * Wed Feb 23 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 0.1.1-9 - Fix FTBFS Close: rhbz#2045471 * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: golang-github-appc-spec-0.8.11-13.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : golang-github-appc-spec Product : Fedora 34 Version : 0.8.11 Release : 13.fc34 URL : https://github.com/appc/spec Summary : App Container Specification and Tooling Description : This package contains schema definitions and tools for the App Container (appc) specification. These include technical details on how an appc image is downloaded over a network, cryptographically verified, and executed on a host. See SPEC.md for details of the specification itself. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> - 0.8.11-13 - Rebuilt for CVE-2022-27191 * Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.11-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.11-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: commit-stream-0.1.2-6.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : commit-stream Product : Fedora 34 Version : 0.1.2 Release : 6.fc34 URL : https://github.com/x1sec/commit-stream Summary : Github event API consumer Description : OSINT tool for finding Github repositories by extracting commit logs in real time from the Github event API. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> - 0.1.2-6 - Rebuilt for CVE-2022-27191 * Wed Jan 26 2022 Maxwell G <gotmax(a)e.email> - 0.1.2-5 - Fix FTBFS. Closes rhbz#2045270. - Use %autopatch macro. * Wed Jan 26 2022 Alejandro S��ez <asm(a)redhat.com> - 0.1.2-5 - Add patch fixing print in code * Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

[SECURITY] Fedora 34 Update: bettercap-2.28-9.fc34

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 -------------------------------------------------------------------------------- Name : bettercap Product : Fedora 34 Version : 2.28 Release : 9.fc34 URL : https://github.com/bettercap/bettercap Summary : Tool for 802.11, BLE and Ethernet reconnaissance and MITM attacks Description : The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks. -------------------------------------------------------------------------------- Update Information: Rebuild for CVE-2022-27191 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati <me(a)fale.io> - 2.28-9 - Rebuilt for CVE-2022-27191 * Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.28-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Wed Jul 21 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.28-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

2 years

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce April 2022