Fedora 36 updates-testing report
by updates@fedoraproject.org
The following Fedora 36 Security updates need testing:
Age URL
6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d718af66d1 kitty-0.26.3-2.fc36
6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-164cf7837e unbound-1.16.3-1.fc36
6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-0cc77b384a efl-1.26.3-1.fc36 enlightenment-0.25.4-1.fc36
3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d7d49b2fac postgresql-jdbc-42.3.1-4.fc36
3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b49c9bc07a chromium-105.0.5195.125-2.fc36
3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-c8cad41c95 squid-5.7-1.fc36
3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-34acf878fb scala-2.13.9-1.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-0b77fbd9e7 php-8.1.11-1.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3793987b02 nodejs-16.17.1-1.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-6744980220 booth-1.0-262.3.d0ac26c.git.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1695454935 php-twig-1.44.7-1.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1fd94a54a1 nheko-0.10.2-1.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9d8ee4a6de php-twig2-2.15.3-1.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b7dcd1cde4 php-twig3-3.4.3-1.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-15ec504440 expat-2.4.9-1.fc36
The following Fedora 36 Critical Path updates have yet to be approved:
Age URL
37 https://bodhi.fedoraproject.org/updates/FEDORA-2022-610322a65f ipset-7.15-5.fc36
12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e5e6a98b04 xen-4.16.2-1.fc36
10 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1d26b49e2b mtools-4.0.41-1.fc36
8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9ea05d4c5e edk2-20220826gitba0e0e4c6a17-1.fc36
6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-164cf7837e unbound-1.16.3-1.fc36
3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ad74183245 libbluray-1.3.3-1.fc36
3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-fbb55c3cf8 shadow-utils-4.11.1-5.fc36
3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3feab163aa tzdata-2022d-1.fc36
2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-2d8d4e23a9 rsync-3.2.6-2.fc36
2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-88eae95f8a dracut-057-3.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3ce9373615 mutter-42.5-2.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b7abc4b67a linux-firmware-20220913-140.fc36
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-15ec504440 expat-2.4.9-1.fc36
The following builds have been pushed to Fedora 36 updates-testing
ansible-packaging-1-8.1.fc36
archlinux-keyring-20220927-1.fc36
buildah-1.27.2-1.fc36
dotnet3.1-3.1.423-1.fc36
fapolicyd-1.1.5-2.fc36
fluidsynth-2.3.0-1.fc36
gitqlient-1.5.0-2.fc36
golang-github-task-3.16.0-1.fc36
google-api-python-client-2.63.0-1.fc36
mame-0.248-1.fc36
openldap-2.6.3-1.fc36
php-getid3-1.9.22-1.fc36
php-symfony4-4.4.46-1.fc36
pipewire-0.3.59-1.fc36
python-docstring-parser-0.14.1-2.fc36
python-joblib-1.2.0-1.fc36
river-0.1.3-1.fc36
rust-sha1collisiondetection-0.2.6-1.fc36
rust-tzfile-0.1.3-5.fc36
selinux-policy-36.16-1.fc36
sysmontask-1.3.9-8.fc36
testssl-3.0.8-1.fc36
Details about builds:
================================================================================
ansible-packaging-1-8.1.fc36 (FEDORA-2022-f09bd60ec1)
RPM packaging macros and generators for Ansible collections
--------------------------------------------------------------------------------
Update Information:
- Refactor %%ansible_collection_url, %%ansible_collection_install,
%%ansible_test_unit. - Specfiles no longer need to define %%collection_namespace
or %%collection_name for the macros to work. - Add new
%%ansible_collections_dir, %%ansible_roles_dir, and
%%ansible_collection_filelist macros. - Prepare to deprecate
%%ansible_collection_files - Undefine %%_package_note_file to stop that file
from leaking into collection artifacts.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 24 2022 Maxwell G <gotmax(a)e.email> - 1-8.1
- Refactor %ansible_collection_url, %ansible_collection_install,
%ansible_test_unit.
- Specfiles no longer need to define %collection_namespace or %collection_name
for the macros to work.
- Add new %ansible_collections_dir, %ansible_roles_dir, and
%ansible_collection_filelist macros.
- Prepare to deprecate %ansible_collection_files
- Undefine %_package_note_file to stop that file from leaking into collection
artifacts.
--------------------------------------------------------------------------------
================================================================================
archlinux-keyring-20220927-1.fc36 (FEDORA-2022-c9f4d21774)
GPG keys used by Arch distribution to sign packages
--------------------------------------------------------------------------------
Update Information:
Version 20220927 (#2130137)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Frantisek Sumsal <frantisek(a)sumsal.cz> 20220927-1
- Version 20220927 (#2130137)
--------------------------------------------------------------------------------
================================================================================
buildah-1.27.2-1.fc36 (FEDORA-2022-958a98e21e)
A command line tool used for creating OCI Images
--------------------------------------------------------------------------------
Update Information:
bump to v1.27.2 ---- auto bump to v1.27.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Lokesh Mandvekar <lsm5(a)fedoraproject.org> 1.27.2-1
- bump to v1.27.2
* Fri Sep 9 2022 RH Container Bot <rhcontainerbot(a)fedoraproject.org> 1.27.1-1
- auto bump to v1.27.1
* Wed Aug 17 2022 Lokesh Mandvekar <lsm5(a)fedoraproject.org> 1.27.0-3
- use easier tag macros to make both fedora and debbuild happy
* Wed Aug 17 2022 Lokesh Mandvekar <lsm5(a)fedoraproject.org> 1.27.0-2
- Fix debbuild maintainer issue
--------------------------------------------------------------------------------
================================================================================
dotnet3.1-3.1.423-1.fc36 (FEDORA-2022-980d492c98)
.NET Core Runtime and SDK
--------------------------------------------------------------------------------
Update Information:
Update to the September 2022 update release of .NET Core 3.1 Release Notes:
https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.29/3.1.29.md
This includes a fix for CVE-2022-38013
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 27 2022 Omair Majid <omajid(a)redhat.com> - 3.1.423-1
- Update to .NET SDK 3.1.423 and Runtime 3.1.29
--------------------------------------------------------------------------------
================================================================================
fapolicyd-1.1.5-2.fc36 (FEDORA-2022-3f8217267f)
Application Whitelisting Daemon
--------------------------------------------------------------------------------
Update Information:
rebase to 1.1.5
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 29 2022 Radovan Sroka <rsroka(a)redhat.com> - 1.1.5.2
- rebase to 1.1.5
* Wed Aug 31 2022 Radovan Sroka <rsroka(a)redhat.com> - 1.1.4-4
- fix bash completition definition in spec
Resolves: rhbz#2123065
* Tue Aug 30 2022 Radovan Sroka <rsroka(a)redhat.com> - 1.1.4-3
- rebuild with correct openssl and systemd dependency
* Thu Aug 18 2022 Radovan Sroka <rsroka(a)redhat.com> - 1.1.4-1
- rebase to 1.1.4
* Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
fluidsynth-2.3.0-1.fc36 (FEDORA-2022-97a4dd4f1e)
Real-time software synthesizer
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.0 Add Pipewire audio driver
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Christoph Karl <pampelmuse [AT] gmx [DOT] at> - 2.3.0-1
- Update to 2.3.0
--------------------------------------------------------------------------------
================================================================================
gitqlient-1.5.0-2.fc36 (FEDORA-2022-784d729f30)
Multi-platform Git client written with Qt
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> 1.5.0-2
- build: Add qt5-qtsvg dep | rhbz#2001086
* Thu Sep 29 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> 1.5.0-1
- chore(update): 1.5.0
* Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2090574 - CVE-2022-21680 gitqlient: marked: regular expression block.def may lead Denial of Service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2090574
[ 2 ] Bug #2092717 - CVE-2022-21681 gitqlient: marked: regular expression inline.reflinkSearch may lead Denial of Service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2092717
--------------------------------------------------------------------------------
================================================================================
golang-github-task-3.16.0-1.fc36 (FEDORA-2022-20109808d9)
A task runner / simpler Make alternative written in Go
--------------------------------------------------------------------------------
Update Information:
update to v3.16.0 (closes rhbz#2131132) and switch to autorelease/changelog
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Mark E. Fuller <mark.e.fuller(a)gmx.de> - 3.16.0-1
- Update to v3.16.0 (close rhbz#2131132)
* Tue Sep 20 2022 Mark E. Fuller <mark.e.fuller(a)gmx.de> - 3.15.2-1
- Update to v3.15.2 (closes rhbz#2125765)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2131132 - golang-github-task-3.16.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2131132
--------------------------------------------------------------------------------
================================================================================
google-api-python-client-2.63.0-1.fc36 (FEDORA-2022-5fe1669445)
Google APIs Client Library for Python
--------------------------------------------------------------------------------
Update Information:
Update to 2.63.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 2:2.63.0-1
- Update to 2.63.0 - Closes rhbz#2130929
--------------------------------------------------------------------------------
================================================================================
mame-0.248-1.fc36 (FEDORA-2022-09627a5c80)
Multiple Arcade Machine Emulator
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream release: * https://www.mamedev.org/?p=517
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 29 2022 Julian Sikorski <belegdol(a)fedoraproject.org> 0.248-1
- Update to 0.248
--------------------------------------------------------------------------------
================================================================================
openldap-2.6.3-1.fc36 (FEDORA-2022-8f69bf2f39)
LDAP support libraries
--------------------------------------------------------------------------------
Update Information:
**Changelog** ``` * Wed Aug 17 2022 Simon Pichugin <spichugi(a)redhat.com> -
2.6.3-1 - Rebase to version 2.6.3 Related: rhbz#2119244 ```
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 17 2022 Simon Pichugin <spichugi(a)redhat.com> - 2.6.3-1
- Rebase to version 2.6.3
Related: rhbz#2119231
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2119244 - openldap-2_6_3 is available [f36]
https://bugzilla.redhat.com/show_bug.cgi?id=2119244
--------------------------------------------------------------------------------
================================================================================
php-getid3-1.9.22-1.fc36 (FEDORA-2022-edab348cf3)
The PHP media file parser
--------------------------------------------------------------------------------
Update Information:
**Version 1.9.22**: (2022-09-29) James Heinrich :: 1.9.22-202207161647 * bugfix
#387 fails to detect h265 video codec (QuickTime) * bugfix #385 Quicktime
extended atom size * bugfix #378 AAC bitrate cache warning * bugfix #376
simplexml_load_string improvments * bugfix #374 MOD improved SoundTracker
support * bugfix #371 fragmented MP4 unsupported warning * bugfix #369 fix
remote URLs pattern * bugfix #366 change @error-suppress to isset (quicktime) *
bugfix #365 ZIP array offset on value of type int * bugfix #364 add support for
ANIMEXTS1.0 in GIF files * bugfix #363 ASF improve support of Header Extension
Object data * bugfix #362 version update for ramsey/composer-install * bugfix
#359 MPEG-2 aspect ratio divide-by-zero * bugfix #358 free format mp3 bitrate *
bugfix #355 undefined array key in ID3v2 chapters * bugfix #352 avoid false
detection of Musepack format * bugfix #351 Incorrect length passed to fread on a
flac file * bugfix #348 more targeted usage of clearstatcache calls * bugfix
#347 fixed reported by PHPStan v0.12.99 * bugfix QuickTime support 'ID32' frame
(ID3v2 inside QT) * bugfix fix various PHP 8.1 issues * bugfix PDF prevent
undefined index
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Remi Collet <remi(a)remirepo.net> - 1.9.22-1
- update to 1.9.22
--------------------------------------------------------------------------------
================================================================================
php-symfony4-4.4.46-1.fc36 (FEDORA-2022-ac3bc42a1a)
Symfony PHP framework (version 4)
--------------------------------------------------------------------------------
Update Information:
**Version 4.4.46** (2022-09-30) * bug #47547 [Ldap] Do not run
ldap_set_option on failed connection (tatankat) * bug #47578 [Security] Fix
AbstractFormLoginAuthenticator return types (AndrolGenhald) * bug #47614
[FrameworkBundle] Fix a phpdoc in mailer assertions (HeahDude) * bug #47516
[HttpFoundation] Prevent BinaryFileResponse::prepare from adding content type if
no content is sent (naitsirch) * bug #47533 [Messenger] decode URL-encoded
characters in DSN's usernames/passwords (xabbuh) * bug #47530 [HttpFoundation]
Always return strings from accept headers (ausi) * bug #47497 [Bridge] Fix
mkdir() race condition in ProxyCacheWarmer (andrey-tech) * bug #47415
[HttpClient] Psr18Client ignore invalid HTTP headers (nuryagdym) * bug #47435
[HttpKernel] lock when writting profiles (nicolas-grekas) * bug #47437 [Mime]
Fix email rendering when having inlined parts that are not related to the
content (fabpot) * bug #47434 [HttpFoundation] move flushing outside of
Response::closeOutputBuffers (nicolas-grekas) * bug #47351 [FrameworkBundle] Do
not throw when describing a factory definition (MatTheCat) * bug #47403
[Mailer] Fix edge cases in STMP transports (fabpot)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Remi Collet <remi(a)remirepo.net> - 4.4.46-1
- update to 4.4.46
--------------------------------------------------------------------------------
================================================================================
pipewire-0.3.59-1.fc36 (FEDORA-2022-ac9cbc4e02)
Media Sharing Server
--------------------------------------------------------------------------------
Update Information:
Update version to 0.3.59
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Wim Taymans <wtaymans(a)redhat.com> - 0.3.59-1
- Update version to 0.3.59
--------------------------------------------------------------------------------
================================================================================
python-docstring-parser-0.14.1-2.fc36 (FEDORA-2022-7d35b4b0c3)
Parse Python docstrings
--------------------------------------------------------------------------------
Update Information:
Add python-docstring-parser to Fedora 36
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 20 2022 Piotr Szubiakowski <pszubiak(a)eso.org> - 0.14.1-2
- Apply code review fixes
* Thu May 19 2022 Piotr Szubiakowski <pszubiak(a)eso.org> - 0.14.1-1
- Init
--------------------------------------------------------------------------------
================================================================================
python-joblib-1.2.0-1.fc36 (FEDORA-2022-c0bfe37ae5)
Lightweight pipelining: using Python functions as pipeline jobs
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2022-21797
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 29 2022 Sergio Pascual <sergiopr(a)fedoraproject.org> - 1.2.0-1
- New upstream source 1.2.0. Fixes bz#2129824 CVE-2022-21797
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2129823 - CVE-2022-21797 joblib: Arbitrary Code Execution in joblib
https://bugzilla.redhat.com/show_bug.cgi?id=2129823
--------------------------------------------------------------------------------
================================================================================
river-0.1.3-1.fc36 (FEDORA-2022-af294de87c)
Dynamic tiling Wayland compositor
--------------------------------------------------------------------------------
Update Information:
Dynamic tiling Wayland compositor - https://github.com/riverwm/river
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 25 2022 Aleksei Bavshin <alebastr(a)fedoraproject.org> - 0.1.3-1
- Initial import (#2051062)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2051062 - Review Request: river - Dynamic tiling Wayland compositor
https://bugzilla.redhat.com/show_bug.cgi?id=2051062
--------------------------------------------------------------------------------
================================================================================
rust-sha1collisiondetection-0.2.6-1.fc36 (FEDORA-2022-14a464cf9e)
SHA-1 hash function with collision detection and mitigation
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.6.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Fabio Valentini <decathorpe(a)gmail.com> 0.2.6-1
- Update to version 0.2.6; Fixes RHBZ#2122032
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 0.2.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue Feb 15 2022 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> 0.2.5-2
- Rebuild with package notes
--------------------------------------------------------------------------------
================================================================================
rust-tzfile-0.1.3-5.fc36 (FEDORA-2022-ee708decd5)
Chrono::TimeZone implementation using system tz database
--------------------------------------------------------------------------------
Update Information:
Skip tests that fail with tzdata 2022b and newer. Fixes FTBFS issues on all
branches of Fedora.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.3-5
- Skip a test that fails with tzdata 2022b and newer.
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.3-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
selinux-policy-36.16-1.fc36 (FEDORA-2022-0c59a07653)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
New F36 selinux-policy build
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 29 2022 Zdenek Pytela <zpytela(a)redhat.com> - 36.16-1
- Allow init map its private tmp files
- Allow xenstored change its hard resource limits
- Allow init remount all file_type filesystems
- Add bgpd sys_chroot capability
- Allow samba-dcerpcd work with sssd
- Allow smbd_t process noatsecure permission for winbind_rpcd_t
- Allow samba-bgqd to read a printer list
- Allow winbind-rpcd write to winbind pid files
- Allow samba-bgqd get a printer list
- added policy for systemd-socket-proxyd
- nut-upsd: kernel_read_system_state, fs_getattr_cgroup
- Add numad the ipc_owner capability
- Allow gst-plugin-scanner read virtual memory sysctls
- Allow init read/write inherited user fifo files
- Add the new 'cmd' permission to the 'io_uring' class
- Allow winbind-rpcd read and write its key ring
- Label /run/NetworkManager/no-stub-resolv.conf net_conf_t
- Do not run restorecon /etc/NetworkManager/dispatcher.d in mls and minimum
- Run restorecon for nm-dispatcher directory only if it exists
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2025808 - SELinux is preventing gst-plugin-scan from 'open' accesses on the file /proc/sys/vm/mmap_min_addr.
https://bugzilla.redhat.com/show_bug.cgi?id=2025808
[ 2 ] Bug #2026228 - SELinux is preventing cpupower-gui-he from 'map' accesses on the file /var/tmp/ffi6reIpN (deleted).
https://bugzilla.redhat.com/show_bug.cgi?id=2026228
[ 3 ] Bug #2026968 - SELinux is preventing numad from using the 'ipc_owner' capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=2026968
[ 4 ] Bug #2038580 - upsd SELINUX errors with Fedora 35
https://bugzilla.redhat.com/show_bug.cgi?id=2038580
[ 5 ] Bug #2091275 - SELinux is preventing chronyd from 'getattr' accesses on the file /run/NetworkManager/no-stub-resolv.conf.
https://bugzilla.redhat.com/show_bug.cgi?id=2091275
[ 6 ] Bug #2091783 - systemd-socket-proxyd does not allow connecting to unassigned port
https://bugzilla.redhat.com/show_bug.cgi?id=2091783
[ 7 ] Bug #2115691 - selinux-policy AVC during ipa trust-add using selinux-policy-36.13-3.fc36
https://bugzilla.redhat.com/show_bug.cgi?id=2115691
[ 8 ] Bug #2125693 - SELinux policy prevents xenstored from starting
https://bugzilla.redhat.com/show_bug.cgi?id=2125693
[ 9 ] Bug #2127854 - SELinux blocking samba-dcerpcd access to openssl.cnf, breaks Kerberos
https://bugzilla.redhat.com/show_bug.cgi?id=2127854
--------------------------------------------------------------------------------
================================================================================
sysmontask-1.3.9-8.fc36 (FEDORA-2022-bbb14a4874)
Linux system monitor with the compactness and usefulness of WTM
--------------------------------------------------------------------------------
Update Information:
fix: Add libwnck3 dep | rhbz#2130770
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> 1.3.9-8
- chore(update): Add libwnck3 dep | rhbz#2130770
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.9-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.3.9-5
- Rebuilt for Python 3.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2130770 - sysmontask is missing dependency on libwnck3
https://bugzilla.redhat.com/show_bug.cgi?id=2130770
--------------------------------------------------------------------------------
================================================================================
testssl-3.0.8-1.fc36 (FEDORA-2022-2867ab2412)
Testing TLS/SSL encryption
--------------------------------------------------------------------------------
Update Information:
Update to 3.0.8
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 3.0.8-1
- Update to 3.0.8 - Closes rhbz#2131338
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 3.0.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
1 year, 6 months
Fedora 35 updates-testing report
by updates@fedoraproject.org
The following Fedora 35 Security updates need testing:
Age URL
231 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dfc6924a11 mysql-connector-java-8.0.28-1.fc35
7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-204ee3da84 unbound-1.16.3-1.fc35
5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-bafb72fdc0 efl-1.26.3-1.fc35 enlightenment-0.25.4-1.fc35
5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3dd3274ae2 libdxfrw-1.1.0-0.1.rc1.fc35 librecad-2.2.0-0.15.rc4.fc35
4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-cdeabe1bc0 postgresql-jdbc-42.2.26-1.fc35
4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3ca063941b chromium-105.0.5195.125-2.fc35
4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-23e6ee1fb9 squid-5.7-1.fc35
4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-07dd9375b2 scala-2.13.9-1.fc35
2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-c26b19568d lighttpd-1.4.67-1.fc35
2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-5b644a935b bash-5.1.8-3.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-58055cb1ef nodejs-16.17.1-1.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-afdea1c747 php-8.0.24-1.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e0a87993b8 booth-1.0-251.4.bfb2f92.git.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4490a4772d php-twig-1.44.7-1.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d39b2a755b php-twig2-2.15.3-1.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e915614918 php-twig3-3.4.3-1.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-c68d90efc3 expat-2.4.9-1.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1454bee2fa thunderbird-102.3.1-1.fc35
The following Fedora 35 Critical Path updates have yet to be approved:
Age URL
50 https://bodhi.fedoraproject.org/updates/FEDORA-2022-bca7996d14 annobin-10.81-1.fc35
14 https://bodhi.fedoraproject.org/updates/FEDORA-2022-97f6c4fd2a libblockdev-2.28-2.fc35
11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-f292a3fec5 python-urllib3-1.26.12-1.fc35
11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-22e2ce7a16 shadow-utils-4.9-11.fc35
9 https://bodhi.fedoraproject.org/updates/FEDORA-2022-64e32530e5 mtools-4.0.41-1.fc35
8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-68ba1f1566 appstream-data-35-8.fc35
8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ece971e713 langtable-0.0.60-1.fc35
7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-204ee3da84 unbound-1.16.3-1.fc35
7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-642c095091 dnf-plugins-core-4.3.1-1.fc35
5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-341937ef95 hwdata-0.362-2.fc35
4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-38bd922ff7 libbluray-1.3.3-1.fc35
4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-17a4844b47 tzdata-2022d-1.fc35
2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-cd0501fc8f ima-evm-utils-1.3.2-4.fc35
2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-5b644a935b bash-5.1.8-3.fc35
2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-53d671cb30 rsync-3.2.6-2.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1454bee2fa thunderbird-102.3.1-1.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-bdc70ae90d linux-firmware-20220913-140.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-c68d90efc3 expat-2.4.9-1.fc35
1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-55648ecee1 samba-4.15.10-0.fc35
The following builds have been pushed to Fedora 35 updates-testing
ansible-2.9.27-4.fc35
ansible-packaging-1-8.1.fc35
archlinux-keyring-20220927-1.fc35
dotnet3.1-3.1.423-1.fc35
fluidsynth-2.3.0-1.fc35
gitqlient-1.5.0-2.fc35
golang-github-task-3.16.0-1.fc35
google-api-python-client-2.63.0-1.fc35
mame-0.248-1.fc35
php-getid3-1.9.22-1.fc35
php-symfony4-4.4.46-1.fc35
rust-sha1collisiondetection-0.2.6-1.fc35
rust-tzfile-0.1.3-5.fc35
sysmontask-1.3.9-8.fc35
testssl-3.0.8-1.fc35
Details about builds:
================================================================================
ansible-2.9.27-4.fc35 (FEDORA-2022-008f09ea1f)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
## ansible - Drop ansible-packaging dependency ## ansible-packaging - Refactor
%ansible_collection_url, %ansible_collection_install, %ansible_test_unit. -
Specfiles no longer need to define %collection_namespace or %collection_name
for the macros to work. - Add new %ansible_collections_dir, %ansible_roles_dir,
and %ansible_collection_filelist macros. - Prepare to deprecate
%ansible_collection_files - Undefine %_package_note_file to stop that file from
leaking into collection artifacts. - Require ansible-core at buildtime now
that the source of the conflict has been addressed. Relates: 2121892
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 25 2022 Maxwell G <gotmax(a)e.email> - 2.9.27-4
- Remove ansible-packaging dependency
- Related: #2121892 and #2126557.
--------------------------------------------------------------------------------
================================================================================
ansible-packaging-1-8.1.fc35 (FEDORA-2022-008f09ea1f)
RPM packaging macros and generators for Ansible collections
--------------------------------------------------------------------------------
Update Information:
## ansible - Drop ansible-packaging dependency ## ansible-packaging - Refactor
%ansible_collection_url, %ansible_collection_install, %ansible_test_unit. -
Specfiles no longer need to define %collection_namespace or %collection_name
for the macros to work. - Add new %ansible_collections_dir, %ansible_roles_dir,
and %ansible_collection_filelist macros. - Prepare to deprecate
%ansible_collection_files - Undefine %_package_note_file to stop that file from
leaking into collection artifacts. - Require ansible-core at buildtime now
that the source of the conflict has been addressed. Relates: 2121892
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 24 2022 Maxwell G <gotmax(a)e.email> - 1-8.1
- Refactor %ansible_collection_url, %ansible_collection_install,
%ansible_test_unit.
- Specfiles no longer need to define %collection_namespace or %collection_name
for the macros to work.
- Add new %ansible_collections_dir, %ansible_roles_dir, and
%ansible_collection_filelist macros.
- Prepare to deprecate %ansible_collection_files
- Undefine %_package_note_file to stop that file from leaking into collection
artifacts.
- Require ansible-core at buildtime now that the source of the conflict
has been addressed.
Relates: 2121892
--------------------------------------------------------------------------------
================================================================================
archlinux-keyring-20220927-1.fc35 (FEDORA-2022-96bacd8346)
GPG keys used by Arch distribution to sign packages
--------------------------------------------------------------------------------
Update Information:
Version 20220927 (#2130137)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Frantisek Sumsal <frantisek(a)sumsal.cz> 20220927-1
- Version 20220927 (#2130137)
--------------------------------------------------------------------------------
================================================================================
dotnet3.1-3.1.423-1.fc35 (FEDORA-2022-847c67b3cd)
.NET Core Runtime and SDK
--------------------------------------------------------------------------------
Update Information:
Update to the September 2022 update release of .NET Core 3.1 Release Notes:
https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.29/3.1.29.md
This includes a fix for CVE-2022-38013
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 27 2022 Omair Majid <omajid(a)redhat.com> - 3.1.423-1
- Update to .NET SDK 3.1.423 and Runtime 3.1.29
--------------------------------------------------------------------------------
================================================================================
fluidsynth-2.3.0-1.fc35 (FEDORA-2022-c8b9590254)
Real-time software synthesizer
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.0 Add Pipewire audio driver
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Christoph Karl <pampelmuse [AT] gmx [DOT] at> - 2.3.0-1
- Update to 2.3.0
--------------------------------------------------------------------------------
================================================================================
gitqlient-1.5.0-2.fc35 (FEDORA-2022-4b9af31ea5)
Multi-platform Git client written with Qt
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> 1.5.0-2
- build: Add qt5-qtsvg dep | rhbz#2001086
* Thu Sep 29 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> 1.5.0-1
- chore(update): 1.5.0
* Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
golang-github-task-3.16.0-1.fc35 (FEDORA-2022-9e5cc6671c)
A task runner / simpler Make alternative written in Go
--------------------------------------------------------------------------------
Update Information:
update to v3.16.0 (closes rhbz#2131132) and switch to autorelease/changelog
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Mark E. Fuller <mark.e.fuller(a)gmx.de> - 3.16.0-1
- Update to v3.16.0 (close rhbz#2131132)
* Tue Sep 20 2022 Mark E. Fuller <mark.e.fuller(a)gmx.de> - 3.15.2-1
- Update to v3.15.2 (closes rhbz#2125765)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2131132 - golang-github-task-3.16.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2131132
--------------------------------------------------------------------------------
================================================================================
google-api-python-client-2.63.0-1.fc35 (FEDORA-2022-1914b9fb7e)
Google APIs Client Library for Python
--------------------------------------------------------------------------------
Update Information:
Update to 2.63.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 2:2.63.0-1
- Update to 2.63.0 - Closes rhbz#2130929
--------------------------------------------------------------------------------
================================================================================
mame-0.248-1.fc35 (FEDORA-2022-1f19f728bd)
Multiple Arcade Machine Emulator
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream release: * https://www.mamedev.org/?p=517
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 29 2022 Julian Sikorski <belegdol(a)fedoraproject.org> 0.248-1
- Update to 0.248
--------------------------------------------------------------------------------
================================================================================
php-getid3-1.9.22-1.fc35 (FEDORA-2022-f26b2c22df)
The PHP media file parser
--------------------------------------------------------------------------------
Update Information:
**Version 1.9.22**: (2022-09-29) James Heinrich :: 1.9.22-202207161647 * bugfix
#387 fails to detect h265 video codec (QuickTime) * bugfix #385 Quicktime
extended atom size * bugfix #378 AAC bitrate cache warning * bugfix #376
simplexml_load_string improvments * bugfix #374 MOD improved SoundTracker
support * bugfix #371 fragmented MP4 unsupported warning * bugfix #369 fix
remote URLs pattern * bugfix #366 change @error-suppress to isset (quicktime) *
bugfix #365 ZIP array offset on value of type int * bugfix #364 add support for
ANIMEXTS1.0 in GIF files * bugfix #363 ASF improve support of Header Extension
Object data * bugfix #362 version update for ramsey/composer-install * bugfix
#359 MPEG-2 aspect ratio divide-by-zero * bugfix #358 free format mp3 bitrate *
bugfix #355 undefined array key in ID3v2 chapters * bugfix #352 avoid false
detection of Musepack format * bugfix #351 Incorrect length passed to fread on a
flac file * bugfix #348 more targeted usage of clearstatcache calls * bugfix
#347 fixed reported by PHPStan v0.12.99 * bugfix QuickTime support 'ID32' frame
(ID3v2 inside QT) * bugfix fix various PHP 8.1 issues * bugfix PDF prevent
undefined index
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Remi Collet <remi(a)remirepo.net> - 1.9.22-1
- update to 1.9.22
--------------------------------------------------------------------------------
================================================================================
php-symfony4-4.4.46-1.fc35 (FEDORA-2022-90d31ff089)
Symfony PHP framework (version 4)
--------------------------------------------------------------------------------
Update Information:
**Version 4.4.46** (2022-09-30) * bug #47547 [Ldap] Do not run
ldap_set_option on failed connection (tatankat) * bug #47578 [Security] Fix
AbstractFormLoginAuthenticator return types (AndrolGenhald) * bug #47614
[FrameworkBundle] Fix a phpdoc in mailer assertions (HeahDude) * bug #47516
[HttpFoundation] Prevent BinaryFileResponse::prepare from adding content type if
no content is sent (naitsirch) * bug #47533 [Messenger] decode URL-encoded
characters in DSN's usernames/passwords (xabbuh) * bug #47530 [HttpFoundation]
Always return strings from accept headers (ausi) * bug #47497 [Bridge] Fix
mkdir() race condition in ProxyCacheWarmer (andrey-tech) * bug #47415
[HttpClient] Psr18Client ignore invalid HTTP headers (nuryagdym) * bug #47435
[HttpKernel] lock when writting profiles (nicolas-grekas) * bug #47437 [Mime]
Fix email rendering when having inlined parts that are not related to the
content (fabpot) * bug #47434 [HttpFoundation] move flushing outside of
Response::closeOutputBuffers (nicolas-grekas) * bug #47351 [FrameworkBundle] Do
not throw when describing a factory definition (MatTheCat) * bug #47403
[Mailer] Fix edge cases in STMP transports (fabpot)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Remi Collet <remi(a)remirepo.net> - 4.4.46-1
- update to 4.4.46
--------------------------------------------------------------------------------
================================================================================
rust-sha1collisiondetection-0.2.6-1.fc35 (FEDORA-2022-bd1ba94168)
SHA-1 hash function with collision detection and mitigation
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.6.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Fabio Valentini <decathorpe(a)gmail.com> 0.2.6-1
- Update to version 0.2.6; Fixes RHBZ#2122032
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 0.2.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue Feb 15 2022 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> 0.2.5-2
- Rebuild with package notes
--------------------------------------------------------------------------------
================================================================================
rust-tzfile-0.1.3-5.fc35 (FEDORA-2022-f4e7b5f5be)
Chrono::TimeZone implementation using system tz database
--------------------------------------------------------------------------------
Update Information:
Skip tests that fail with tzdata 2022b and newer. Fixes FTBFS issues on all
branches of Fedora.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.3-5
- Skip a test that fails with tzdata 2022b and newer.
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.3-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.1.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
sysmontask-1.3.9-8.fc35 (FEDORA-2022-decff36f65)
Linux system monitor with the compactness and usefulness of WTM
--------------------------------------------------------------------------------
Update Information:
fix: Add libwnck3 dep | rhbz#2130770
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> 1.3.9-8
- chore(update): Add libwnck3 dep | rhbz#2130770
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.9-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.3.9-5
- Rebuilt for Python 3.11
* Sat Jan 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.9-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2130770 - sysmontask is missing dependency on libwnck3
https://bugzilla.redhat.com/show_bug.cgi?id=2130770
--------------------------------------------------------------------------------
================================================================================
testssl-3.0.8-1.fc35 (FEDORA-2022-8afc7f0eb7)
Testing TLS/SSL encryption
--------------------------------------------------------------------------------
Update Information:
Update to 3.0.8
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 30 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 3.0.8-1
- Update to 3.0.8 - Closes rhbz#2131338
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 3.0.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
1 year, 6 months