--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-769192f49c
2023-12-31 01:18:57.026392
--------------------------------------------------------------------------------
Name : rpki-client
Product : Fedora 38
Version : 8.7
Release : 1.fc38
URL : https://www.rpki-client.org/
Summary : OpenBSD RPKI validator to support BGP Origin Validation
Description :
The OpenBSD rpki-client is a free, easy-to-use implementation of the
Resource Public Key Infrastructure (RPKI) for Relying Parties (RP) to
facilitate validation of the Route Origin of a BGP announcement. The
program queries the RPKI repository system, downloads and validates
Route Origin Authorisations (ROAs) and finally outputs Validated ROA
Payloads (VRPs) in the configuration format of OpenBGPD, BIRD, and
also as CSV or JSON objects for consumption by other routing stacks.
--------------------------------------------------------------------------------
Update Information:
# rpki-client 8.7 - Add ability to constrain an RPKI Trust Anchor's effective
signing authority to a limited set of Internet numbers. This allows Relying
Parties to enjoy the potential benefits of assuming trust, but within a bounded
scope. This distribution includes curated constraints files. More information:
https://datatracker.ietf.org/doc/html/draft-snijders-constraining-rpki-trus…
anchors - Following a 'failed fetch' (described in RFC 9286), emit a warning
and continue with a previously cached Manifest file, if present and still valid.
- Emit a warning when the same `manifestNumber` is re-used across multiple
issuances. - Emit a warning when the remote repository presents a Manifest
with an unexpected `manifestNumber`. Purported new manifests are expected to
have a higher `manifestNumber` than previously validated manifests. Otherwise
fall back to the previously cached manifest, if it is still valid. This warning
can be indicative of manifest replays or of out-of-order publishing. - Require
RPKI object files to be of a minimum of 100 bytes in both the RRDP and RSYNC
transports. - No longer synchronize directory modtimes in the local cache to
align with remote RSYNC repository sources. - Improved CRL extension checking.
- Experimental support for the P-256 signature algorithm. - Various
refactoring work.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Robert Scheck <robert(a)fedoraproject.org> 8.7-1
- Upgrade to 8.7 (#2255458)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2255458 - rpki-client-8.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2255458
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-769192f49c' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-88ffd517b6
2023-12-31 01:18:57.026384
--------------------------------------------------------------------------------
Name : asio-grpc
Product : Fedora 38
Version : 2.8.0
Release : 1.fc38
URL : https://github.com/Tradias/asio-grpc
Summary : Asynchronous gRPC with Asio/unified executors
Description :
An Executor, Networking TS and std::execution interface to
grpc::CompletionQueue for writing asynchronous gRPC clients and servers using
C++20 coroutines, Boost.Coroutines, Asio's stackless coroutines, callbacks,
sender/receiver and more.
--------------------------------------------------------------------------------
Update Information:
New package: asio-grpc - Asynchronous gRPC with Asio/unified executors
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Tom Callaway <spot(a)fedoraproject.org> - 2.8.0-1
- update to 2.8.0
* Wed Nov 22 2023 Tom Callaway <spot(a)fedoraproject.org> - 2.7.0-1
- Initial packaging
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2255630 - Review Request: asio-grpc - Asynchronous gRPC with Asio/unified executors
https://bugzilla.redhat.com/show_bug.cgi?id=2255630
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-88ffd517b6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-0713d6c2e2
2023-12-31 01:18:57.026374
--------------------------------------------------------------------------------
Name : perl-Authen-WebAuthn
Product : Fedora 38
Version : 0.002
Release : 1.fc38
URL : https://metacpan.org/dist/Authen-WebAuthn
Summary : Library to add Web Authentication support to server applications
Description :
This module lets you validate WebAuthn registration and authentication
responses.
Currently, it does not handle the generation of registration and
authentication requests.
The transmission of requests and responses from the application server to the
user's browser, and interaction with the WebAuthn browser API is also out of
scope and could be handled by a dedicated JS library.
--------------------------------------------------------------------------------
Update Information:
New features: * Supported attestation types: none, packed, fido-u2f * Mandatory
attestation trust chain validation
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Xavier Bachelot <xavier(a)bachelot.org> - 0.002-1
- Update to 0.002
- Convert License to SPDX
- Cleanup specfile
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.001-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2255628 - perl-Authen-WebAuthn-0.002 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2255628
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-0713d6c2e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-1d912d1aac
2023-12-31 01:18:57.026365
--------------------------------------------------------------------------------
Name : python-nose2
Product : Fedora 38
Version : 0.14.0
Release : 3.fc38
URL : https://nose2.io/
Summary : The successor to nose, based on unittest2
Description :
nose2 is the successor to nose.
It���s unittest with plugins.
nose2���s purpose is to extend unittest to make testing nicer and easier to
understand.
--------------------------------------------------------------------------------
Update Information:
Fix test reporter output in Python 3.12.1 and later ---- Skip
test_skip_reason_in_message on Python 3.12.1 and later
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.14.0-3
- Fix test reporter output in Python 3.12.1 and later
* Mon Dec 18 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.14.0-2
- Skip test_skip_reason_in_message on Python 3.12.1 and later
- Close RHBZ#2246281
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2246281 - python-nose2 fails to build with Python 3.13: AssertionError: Regex didn't match: 'test \\(test_junitxml_skip_reason.Test\\.test\\) \\.* skip' not found in 'skipped ohai\n
https://bugzilla.redhat.com/show_bug.cgi?id=2246281
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-1d912d1aac' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-739e397833
2023-12-31 01:18:57.026356
--------------------------------------------------------------------------------
Name : imagej
Product : Fedora 38
Version : 1.54h
Release : 1.fc38
URL : https://imagej.net/ij/index.html
Summary : Image Processing and Analysis in Java
Description :
ImageJ is a public domain Java image processing program. It can display, edit,
analyze a wide variety of image data, including image sequences. Imagej can be
used for quantitative analysis of engineering and scientific image data.
--------------------------------------------------------------------------------
Update Information:
Update to 1.54h (close RHBZ#2254747)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1.54h-1
- Update to 1.54h (close RHBZ#2254747)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2254747 - imagej-1.54.h is available
https://bugzilla.redhat.com/show_bug.cgi?id=2254747
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-739e397833' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-ec196242dc
2023-12-31 01:18:57.026343
--------------------------------------------------------------------------------
Name : php-sebastian-diff5
Product : Fedora 38
Version : 5.1.0
Release : 1.fc38
URL : https://github.com/sebastianbergmann/diff
Summary : Diff implementation, version 5
Description :
Diff implementation.
This package provides version 5 of sebastian/diff library.
Autoloader: /usr/share/php/SebastianBergmann/Diff5/autoload.php
--------------------------------------------------------------------------------
Update Information:
**Version 5.1.0** - 2023-12-22 Added *
`SebastianBergmann\Diff\Chunk::start()`,
`SebastianBergmann\Diff\Chunk::startRange()`,
`SebastianBergmann\Diff\Chunk::end()`,
`SebastianBergmann\Diff\Chunk::endRange()`, and
`SebastianBergmann\Diff\Chunk::lines()` * `SebastianBergmann\Diff\Diff::from()`,
`SebastianBergmann\Diff\Diff::to()`, and `SebastianBergmann\Diff\Diff::chunks()`
* `SebastianBergmann\Diff\Line::content()` and
`SebastianBergmann\Diff\Diff::type()` * `SebastianBergmann\Diff\Line::isAdded()`
,`SebastianBergmann\Diff\Line::isRemoved()`, and
`SebastianBergmann\Diff\Line::isUnchanged()` Changed *
`SebastianBergmann\Diff\Diff` now implements `IteratorAggregate`, iterating over
it yields the aggregated `SebastianBergmann\Diff\Chunk` objects *
`SebastianBergmann\Diff\Chunk` now implements `IteratorAggregate`, iterating
over it yields the aggregated `SebastianBergmann\Diff\Line` objects Deprecated
* `SebastianBergmann\Diff\Chunk::getStart()`,
`SebastianBergmann\Diff\Chunk::getStartRange()`,
`SebastianBergmann\Diff\Chunk::getEnd()`,
`SebastianBergmann\Diff\Chunk::getEndRange()`, and
`SebastianBergmann\Diff\Chunk::getLines()` *
`SebastianBergmann\Diff\Diff::getFrom()`,
`SebastianBergmann\Diff\Diff::getTo()`, and
`SebastianBergmann\Diff\Diff::getChunks()` *
`SebastianBergmann\Diff\Line::getContent()` and
`SebastianBergmann\Diff\Diff::getType()`
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Remi Collet <remi(a)remirepo.net> - 5.1.0-1
- update to 5.1.0
- Enable test suite
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-ec196242dc' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-c8d76ea3e8
2023-12-31 01:18:57.026326
--------------------------------------------------------------------------------
Name : php-phpunit-php-code-coverage9
Product : Fedora 38
Version : 9.2.30
Release : 1.fc38
URL : https://github.com/sebastianbergmann/php-code-coverage
Summary : PHP code coverage information, version 9
Description :
Library that provides collection, processing, and rendering functionality
for PHP code coverage information.
This package provides version 9 of phpunit/php-code-coverage library.
Autoloader: /usr/share/php/SebastianBergmann/CodeCoverage9/autoload.php
--------------------------------------------------------------------------------
Update Information:
**Version 9.2.30** - 2023-12-22 Changed * This component is now compatible
with `nikic/php-parser` 5.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Remi Collet <remi(a)remirepo.net> - 9.2.30-1
- update to 9.2.30
- raise dependency on nikic/php-parser 4.18 and allow 5.0
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-c8d76ea3e8' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-1a66d35239
2023-12-31 01:18:57.026334
--------------------------------------------------------------------------------
Name : icecat
Product : Fedora 38
Version : 115.6.0
Release : 1.rh1.fc38
URL : http://www.gnu.org/software/gnuzilla/
Summary : GNU version of Firefox browser
Description :
GNU IceCat is the GNU version of the Firefox ESR browser.
Extensions included to this version of IceCat:
* LibreJS
GNU LibreJS aims to address the JavaScript problem described in the article
"The JavaScript Trap" of Richard Stallman.
* HTTPS Everywhere
HTTPS Everywhere is an extension that encrypts your communications with
many major websites, making your browsing more secure.
* A set of companion extensions for LibreJS by Nathan Nichols
are pre-installed, and provide workarounds to use some services at USPS,
RSF.org, SumOfUs.org, pay.gov, McDonalds, goteo.org and Google Docs
without using nonfree JavaScript.
* A series of configuration changes and tweaks were applied to ensure that
IceCat does not initiate network connections that the user has not explicitly
requested. This implies not downloading feeds, updates, blacklists or any
other similar data needed during startup.
--------------------------------------------------------------------------------
Update Information:
- Release 115.6.0
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 20 2023 Antonio Trande <sagitter(a)fedoraproject.org> - 2:115.6.0-1.rh1
- Release 115.6.0 rh1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2255254 - icecat does not launch due to missing dependencies
https://bugzilla.redhat.com/show_bug.cgi?id=2255254
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-1a66d35239' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-a4bea15d76
2023-12-31 01:18:57.026317
--------------------------------------------------------------------------------
Name : php-sebastian-lines-of-code
Product : Fedora 38
Version : 1.0.4
Release : 1.fc38
URL : https://github.com/sebastianbergmann/lines-of-code
Summary : Counting the lines of code in PHP source code, version 1
Description :
Library for counting the lines of code in PHP source code.
This package provides the version 1 of sebastian/lines-of-code library.
Autoloader: /usr/share/php/SebastianBergmann/LinesOfCode/autoload.php
--------------------------------------------------------------------------------
Update Information:
**Version 1.0.4** - 2023-12-22 Changed * This component is now compatible with
`nikic/php-parser` 5.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Remi Collet <remi(a)remirepo.net> - 1.0.4-1
- update to 1.0.4
- raise dependency on nikic/php-parser 4.18 and allow 5.0
- use SPDX License id
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-a4bea15d76' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-52ba628e03
2023-12-31 01:18:57.026309
--------------------------------------------------------------------------------
Name : xerces-c
Product : Fedora 38
Version : 3.2.5
Release : 1.fc38
URL : http://xml.apache.org/xerces-c/
Summary : Validating XML Parser
Description :
Xerces-C is a validating XML parser written in a portable
subset of C++. Xerces-C makes it easy to give your application the
ability to read and write XML data. A shared library is provided for
parsing, generating, manipulating, and validating XML
documents. Xerces-C is faithful to the XML 1.0 recommendation and
associated standards: XML 1.0 (Third Edition), XML 1.1 (First
Edition), DOM Level 1, 2, 3 Core, DOM Level 2.0 Traversal and Range,
DOM Level 3.0 Load and Save, SAX 1.0 and SAX 2.0, Namespaces in XML,
Namespaces in XML 1.1, XML Schema, XML Inclusions).
--------------------------------------------------------------------------------
Update Information:
Update to 3.2.5, fixing CVE-2018-1311 and CVE-2023-37536
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 22 2023 Kalev Lember <klember(a)redhat.com> - 3.2.5-1
- Update to 3.2.5, fixing CVE-2018-1311 and CVE-2023-37536
* Sat Jul 22 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.2.3-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1788472 - CVE-2018-1311 xerces-c: XML parser contains a use-after-free error triggered during the scanning of external DTDs
https://bugzilla.redhat.com/show_bug.cgi?id=1788472
[ 2 ] Bug #2243426 - CVE-2023-37536 xerces-c: An integer overflow issue that allows remote attackers to cause out-of-bound access via HTTP request
https://bugzilla.redhat.com/show_bug.cgi?id=2243426
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-52ba628e03' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------