April 2023 - package-announce - Fedora Mailing-Lists

[SECURITY] Fedora 38 Update: rubygem-activestorage-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-activestorage Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : http://rubyonrails.org Summary : Local and cloud file storage framework Description : Attach cloud and local files in Rails applications. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1 - Update to activestorage 7.0.4.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

[SECURITY] Fedora 38 Update: rubygem-activejob-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-activejob Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : http://rubyonrails.org Summary : Job framework with pluggable queues Description : Declare job classes that can be run by a variety of queueing backends. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1 - Update to activejob 7.0.4.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

[SECURITY] Fedora 38 Update: rubygem-actionmailbox-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-actionmailbox Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : https://rubyonrails.org Summary : Inbound email handling framework Description : Receive and process incoming emails in Rails applications. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1 - Update to actionmailbox 7.0.4.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

[SECURITY] Fedora 38 Update: rubygem-actionpack-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-actionpack Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : http://rubyonrails.org Summary : Web-flow and rendering framework putting the VC in MVC (part of Rails) Description : Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling easy unit/integration testing that doesn't require a browser. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 1:7.0.4.3-1 - Update to actionpack 7.0.4.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

[SECURITY] Fedora 38 Update: rubygem-activemodel-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-activemodel Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : http://rubyonrails.org Summary : A toolkit for building modeling frameworks (part of Rails) Description : A toolkit for building modeling frameworks like Active Record. Rich support for attributes, callbacks, validations, serialization, internationalization, and testing. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1 - Update to activemodel 7.0.4.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

[SECURITY] Fedora 38 Update: rubygem-actionmailer-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-actionmailer Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : https://rubyonrails.org Summary : Email composition and delivery framework (part of Rails) Description : Email on Rails. Compose, deliver, and test emails using the familiar controller/view pattern. First-class support for multipart email and attachments. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 1:7.0.4.3-1 - Update to actionmailer 7.0.4.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

[SECURITY] Fedora 38 Update: rubygem-activerecord-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-activerecord Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : http://rubyonrails.org Summary : Object-relational mapper framework (part of Rails) Description : Implements the ActiveRecord pattern (Fowler, PoEAA) for ORM. It ties database tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 1:7.0.4.3-1 - Update to activerecord 7.0.4.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

[SECURITY] Fedora 38 Update: rubygem-actiontext-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-actiontext Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : https://rubyonrails.org Summary : Rich text framework Description : Edit and display rich text in Rails applications. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1 - Update to actiontext 7.0.4.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

[SECURITY] Fedora 38 Update: rubygem-actioncable-7.0.4.3-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 -------------------------------------------------------------------------------- Name : rubygem-actioncable Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : http://rubyonrails.org Summary : WebSocket framework for Rails Description : Structure many real-time application concerns into channels over a single WebSocket connection. -------------------------------------------------------------------------------- Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel... -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1 - Update to actioncable 7.0.4.3. - Disable JS recompilation, because it does not do anything useful ATM apart from unnecessarily pulling in CoffeeScript. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

Fedora 38 Update: perl-YAML-Tiny-1.74-1.fc38

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-653edaaea3 2023-04-01 00:15:35.161360 -------------------------------------------------------------------------------- Name : perl-YAML-Tiny Product : Fedora 38 Version : 1.74 Release : 1.fc38 URL : https://metacpan.org/release/YAML-Tiny Summary : Read/Write YAML files with as little code as possible Description : YAML::Tiny is a Perl class for reading and writing YAML-style files, written with as little code as possible, reducing load time and memory overhead. -------------------------------------------------------------------------------- Update Information: Current upstream maintenance release. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 23 2023 Paul Howarth <paul(a)city-fan.org> - 1.74-1 - Update to 1.74 (rhbz#2181091) - A few documentation tweaks - Use SPDX-format license tag -------------------------------------------------------------------------------- References: [ 1 ] Bug #2181091 - perl-YAML-Tiny-1.74 is available https://bugzilla.redhat.com/show_bug.cgi?id=2181091 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-653edaaea3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 year, 1 month

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce April 2023