The following Fedora 36 Security updates need testing:
Age URL
12
https://bodhi.fedoraproject.org/updates/FEDORA-2022-3793987b02
nodejs-16.17.1-1.fc36
4
https://bodhi.fedoraproject.org/updates/FEDORA-2022-0e313cc582
golang-1.18.7-1.fc36
4
https://bodhi.fedoraproject.org/updates/FEDORA-2022-b81c4781af weechat-3.6-1.fc36
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-d4570fc1a6
python3.6-3.6.15-12.fc36
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-90708b46e3
mod_security-2.9.6-1.fc36 mod_security_crs-3.3.4-1.fc36
2
https://bodhi.fedoraproject.org/updates/FEDORA-2022-0be906c02d
apptainer-1.1.2-1.fc36
The following Fedora 36 Critical Path updates have yet to be approved:
Age URL
13
https://bodhi.fedoraproject.org/updates/FEDORA-2022-2d8d4e23a9 rsync-3.2.6-2.fc36
13
https://bodhi.fedoraproject.org/updates/FEDORA-2022-ad74183245
libbluray-1.3.3-1.fc36
10
https://bodhi.fedoraproject.org/updates/FEDORA-2022-f09bd60ec1
ansible-packaging-1-8.1.fc36
9
https://bodhi.fedoraproject.org/updates/FEDORA-2022-9e56439c8d
libmaxminddb-1.7.1-1.fc36
6
https://bodhi.fedoraproject.org/updates/FEDORA-2022-3a2f9962dd glibc-2.35-18.fc36
4
https://bodhi.fedoraproject.org/updates/FEDORA-2022-3a0e641cd7
ipset-7.15-5.fc36.1
4
https://bodhi.fedoraproject.org/updates/FEDORA-2022-1db5c35cd7
gnome-remote-desktop-42.5-1.fc36
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-961f8d1f36
appstream-0.15.5-1.fc36
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-13aff5aadc
procps-ng-3.3.17-4.fc36.1
2
https://bodhi.fedoraproject.org/updates/FEDORA-2022-21e0b1965e gdb-12.1-2.fc36
The following builds have been pushed to Fedora 36 updates-testing
ags-3.6.0.35-1.fc36
cpuid-20221003-1.fc36
git-archive-all-1.23.1-1.fc36
ibus-typing-booster-2.19.2-1.fc36
imhex-1.24.2-1.fc36
lua-expat-1.5.0-1.fc36
oz-0.18.1-5.fc36
php-phpmailer6-6.6.5-1.fc36
python-patsy-0.5.3-1.fc36
python-tabulate-0.8.10-10.fc36
rpkg-1.65-3.fc36
rpmconf-1.1.7-1.fc36.1
scala-2.13.10-1.fc36
Details about builds:
================================================================================
ags-3.6.0.35-1.fc36 (FEDORA-2022-0443ae7228)
Engine for creating and running videogames of adventure (quest) genre
--------------------------------------------------------------------------------
Update Information:
* Added missing `DrawSprite` function for `agsblend` plugin stubs. * Fixed
loading pre-3.5.0 games on big endian systems. * Fixed parser's textbox not
drawn on the correct position in dialog options. * Fixed
`AudioChannel.PositionMs` incorrectly returning 0 right after Seek. * Fixed
voice-over becoming disabled if `Game.ChangeSpeechVox()` was called again with
the active vox's name. * Fixed `ListBox.FillSaveGameList()` for games with
custom save extension. * Fixed `Overlay.SetText()` could lead to errors and
unexpected behavior. * Fixed overlays drawn as textwindows could be displayed
with offset after restoring a save (again). * Fixed Software renderer displaying
a game frame misaligned in fullscreen, if there are black side borders. * Fixed
mouse cursor could leave the game screen on some systems, and mouse.x, y values
reporting offscreen coordinates. * Fixed pressing '`' key for showing console
did not work if the "new key handling mode" was enabled. * Fixed calling
`System.Log` in script would cause previous log messages overwritten in the game
console. * Fixed Ctrl+Alt was not working for toggling mouse lock. * Fixed
`ShakeScreen` does not work with Software renderer. * Fixed audio may fail to
initialize, if game's config has one driver set, while `SDL_AUDIODRIVER`
enviroment variable has another. * Fixed MP3 clips do not stop at the end (nor
rewind), and continue to play next MP3 files found in a audio.vox. * Fixed
loading pre-2.55 games (2.50 - 2.54 to be precise, as the current engine still
cannot load anything earlier than 2.5). * Fixed `on_key_press` callback causing
errors in some very old games (probably pre-2.6.0). * Fixed restoring legacy
savegame format.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 6 2022 Dominik Mierzejewski <rpm(a)greysector.net> - 3.6.0.35-1
- update to 3.6.0.35 (#2108390)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2108390 - ags-3.6.0.36 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2108390
--------------------------------------------------------------------------------
================================================================================
cpuid-20221003-1.fc36 (FEDORA-2022-cca90c8475)
Dumps information about the CPU(s)
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release 20221003 (closes rhbz#2131725)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 10 2022 Fabian Affolter <mail(a)fabian-affolter.ch> 20221003-1
- Update to latest upstream release 20221003 (closes rhbz#2131725)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2131725 - cpuid-20221003.src is available
https://bugzilla.redhat.com/show_bug.cgi?id=2131725
--------------------------------------------------------------------------------
================================================================================
git-archive-all-1.23.1-1.fc36 (FEDORA-2022-2d1ecb5a5c)
Archive git repository with its submodules
--------------------------------------------------------------------------------
Update Information:
Include typing information in PyPI and source distributions.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 9 2022 Richard Shaw <hobbes1069(a)gmail.com> - 1.23.1-1
- Update to 1.23.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2131826 - git-archive-all-1.23.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2131826
--------------------------------------------------------------------------------
================================================================================
ibus-typing-booster-2.19.2-1.fc36 (FEDORA-2022-49b15b7636)
A completion input method
--------------------------------------------------------------------------------
Update Information:
Update to 2.19.2 Do not commit by index when OSK is visible (Resolves:
https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/5865) Translation update
from Weblate (sw 100% complete) ---- Update to 2.19.1 Update emoji annotations
from CLDR Make search for input methods which contain uppercase in their names
work (Resolves:
https://github.com/mike-fabian/ibus-typing-booster/issues/387)
Translation update from Weblate (bn 73.8% complete)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 9 2022 Mike FABIAN <mfabian(a)redhat.com> - 2.19.2-1
- Update to 2.19.2
- Do not commit by index when OSK is visible
(Resolves:
https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/5865)
- Translation update from Weblate (sw 100% complete)
* Wed Oct 5 2022 Mike FABIAN <mfabian(a)redhat.com> - 2.19.1-1
- Update to 2.19.1
- Update emoji annotations from CLDR
- Make search for input methods which contain uppercase in their names work
(Resolves:
https://github.com/mike-fabian/ibus-typing-booster/issues/387)
- Translation update from Weblate (bn 73.8% complete)
--------------------------------------------------------------------------------
================================================================================
imhex-1.24.2-1.fc36 (FEDORA-2022-9016d3d4ed)
A hex editor for reverse engineers and programmers
--------------------------------------------------------------------------------
Update Information:
update to 1.24.2 ---- Update to 1.24.1 ---- update to 1.24.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 10 2022 Jonathan Wright <jonathan(a)almalinux.org> - 1.24.2-1
- update to 1.24.2
* Mon Oct 10 2022 Jonathan Wright <jonathan(a)almalinux.org> - 1.24.1-1
- update to 1.24.1
* Mon Oct 10 2022 Jonathan Wright <jonathan(a)almalinux.org> - 1.24.0-1
- Update to 1.24.0 rhbz#2133163
--------------------------------------------------------------------------------
================================================================================
lua-expat-1.5.0-1.fc36 (FEDORA-2022-d697e81a47)
SAX XML parser based on the Expat library
--------------------------------------------------------------------------------
Update Information:
# LuaExpat 1.5.0 * Warning: this update requires a minimum libexpat version
of 2.4.0. Though at the time of writing a minimum version of 2.4.6 is
recommended [due to CVEs
fixed](https://www.cvedetails.com/vulnerability-
list.php?vendor_id=16735) in the intermediate versions. * Added option
`allowDTD` to the threat protection parser. * Add configuration for Billion
Laughs Attack prevention. This includes adding `#include "expat_config.h"`,
since these functions are conditionally included in the exposed API of Expat.
This means that LuaExpat will now be compiled using the same options used to
compile Expat itself. * Expose Expat compile time constants
(`lxp._EXPAT_FEATURES`), see [Expat
documentation](https://libexpat.github.io/doc/api/latest/#XML_GetFeatureList).
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
oz-0.18.1-5.fc36 (FEDORA-2022-6063da17ee)
Library and utilities for automated guest OS installs
--------------------------------------------------------------------------------
Update Information:
Backport upstream patch to fix image generation on aarch64
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 3 2022 Stephen Gallagher <sgallagh(a)redhat.com> - 0.18.1-5
- Backport upstream patch to enable the USB controller on aarch64
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.18.1-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 0.18.1-3
- Rebuilt for Python 3.11
--------------------------------------------------------------------------------
================================================================================
php-phpmailer6-6.6.5-1.fc36 (FEDORA-2022-cce2cca016)
Full-featured email creation and transfer class for PHP
--------------------------------------------------------------------------------
Update Information:
**Version 6.6.5** (October 7th, 2022) * Don't try to issue RSET if there has
been a connection error * Reject attempts to add folders as attachments * Don't
suppress earlier error messages on close() * Handle Host === null better *
Update Danish and Polish translations * Change recommendation for Microsoft
OAuth package to thenetworg/oauth2-azure * Bump some GitHub action versions
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 10 2022 Remi Collet <remi(a)remirepo.net> - 6.6.5-1
- update to 6.6.5
--------------------------------------------------------------------------------
================================================================================
python-patsy-0.5.3-1.fc36 (FEDORA-2022-78ecf5f995)
Describing statistical models in Python using symbolic formulas
--------------------------------------------------------------------------------
Update Information:
Update to 0.5.3: formal support for Python 3.10 and 3.11
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 10 2022 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.5.3-1
- Update to 0.5.3 (close RHBZ#2133307)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2133307 - python-patsy-0.5.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2133307
--------------------------------------------------------------------------------
================================================================================
python-tabulate-0.8.10-10.fc36 (FEDORA-2022-031e512a2a)
Pretty-print tabular data in Python, a library and a command-line utility
--------------------------------------------------------------------------------
Update Information:
Add a man page; various minor packaging enhancements
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 7 2022 Benjamin A. Beasley <code(a)musicinmybrain.net> - 0.8.10-2
- Use pyproject-rpm-macros
- Adjust packaged documentation files
- Run doctests; see tox.ini, not in the sdist
- Tidy up package description
- Switch URL from PyPI project to GitHub project
- Add a man page
--------------------------------------------------------------------------------
================================================================================
rpkg-1.65-3.fc36 (FEDORA-2022-302ff5968f)
Python library for interacting with rpm+git
--------------------------------------------------------------------------------
Update Information:
Some patches: - Fixes for exploded SRPM layouts - mockbuild: escape rpm command
under mock
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 10 2022 Ond��ej Nosek <onosek(a)redhat.com> - 1.65-3
- Patch: Fixes for exploded SRPM layouts
- Patch: mockbuild: escape rpm command under mock
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2130349 - error: %undefine: argument expected
https://bugzilla.redhat.com/show_bug.cgi?id=2130349
--------------------------------------------------------------------------------
================================================================================
rpmconf-1.1.7-1.fc36.1 (FEDORA-2022-b246e4fe4a)
Tool to handle rpmnew and rpmsave files
--------------------------------------------------------------------------------
Update Information:
exclude '/var/run' and do not infinitely loops.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 10 2022 Miroslav Such�� <msuchy(a)redhat.com> 1.1.7-1.1
- 133273] - avoid loops during clean action
* Tue Oct 4 2022 msuchy <msuchy(a)redhat.com> - 1.1.6-2.1
- rebuilt
* Tue Oct 4 2022 msuchy <msuchy(a)redhat.com> - 1.1.6-1.1
- rebuilt
* Mon Aug 29 2022 Miroslav Such�� <msuchy(a)redhat.com> 1.1.6-1
- Automatic commit of package [rpmconf] release [1.1.5-1].
- Create codeql-analysis.yml
* Thu Aug 25 2022 Miroslav Such�� <msuchy(a)redhat.com> 1.1.5-1
- typo
- add distribution buttons
- master to main in releasers
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2133273 - rpmconf -c check all directories because of /var/run/host symlink
https://bugzilla.redhat.com/show_bug.cgi?id=2133273
--------------------------------------------------------------------------------
================================================================================
scala-2.13.10-1.fc36 (FEDORA-2022-a6da0bb480)
Hybrid functional/object-oriented language for the JVM
--------------------------------------------------------------------------------
Update Information:
After release, it was discovered that Scala 2.13.9 has a regression, primarily
affecting library maintainers, where binary-incompatible bytecode is emitted for
case classes which are also value classes (`case class ... extends AnyVal`).
Version 2.13.10 addresses this issue.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 10 2022 Jerry James <loganjerry(a)gmail.com> - 2.13.10-1
- Version 2.13.10
- Remove font dependencies from main package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2133231 - scala-2.13.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2133231
--------------------------------------------------------------------------------