The following Fedora 36 Security updates need testing: Age URL 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e699dd5247 python3-docs-3.10.9-1.fc36 python3.10-3.10.9-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b916a7f4a1 suricata-6.0.9-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-15729fa33d protobuf-3.19.6-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-07d49bd9a8 insight-13.0.50.20220502-4.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-6d2b6ad1a6 golang-1.18.9-1.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-7f424ef67a firefox-108.0-2.fc36 3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-6beaa3bd0c mod_auth_openidc-2.4.12.2-1.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dd3eb7e0a8 xorg-x11-server-1.20.14-12.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3f40d00dd9 xorg-x11-server-Xwayland-22.1.7-1.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ccc68b06cc libtar-1.2.20-26.fc36
The following Fedora 36 Critical Path updates have yet to be approved: Age URL 37 https://bodhi.fedoraproject.org/updates/FEDORA-2022-beaae40a8f python-rpmautospec-0.3.1-1.fc36 35 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ca291a78cf glibc-2.35-21.fc36 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-df7e4caec9 gnome-shell-42.7-1.fc36 mutter-42.7-1.fc36 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e7d50924ec selinux-policy-36.17-1.fc36 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-2e6b534152 lua-5.4.4-7.fc36 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1935fff22b elfutils-0.188-3.fc36 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e699dd5247 python3-docs-3.10.9-1.fc36 python3.10-3.10.9-1.fc36 10 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4ef522eb04 pungi-4.3.7-1.fc36 10 https://bodhi.fedoraproject.org/updates/FEDORA-2022-a4cd218f9d librepo-1.15.1-1.fc36 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1cd3550b91 xmlrpc-c-1.51.08-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-939b6a00b6 grub2-2.06-58.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-15729fa33d protobuf-3.19.6-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-55ba74effb breeze-icon-theme-5.101.0-1.fc36 extra-cmake-modules-5.101.0-1.fc36 kf5-5.101.0-1.fc36 kf5-attica-5.101.0-1.fc36 kf5-baloo-5.101.0-1.fc36 kf5-bluez-qt-5.101.0-1.fc36 kf5-frameworkintegration-5.101.0-1.fc36 kf5-kactivities-5.101.0-1.fc36 kf5-kactivities-stats-5.101.0-1.fc36 kf5-kapidox-5.101.0-1.fc36 kf5-karchive-5.101.0-1.fc36 kf5-kauth-5.101.0-1.fc36 kf5-kbookmarks-5.101.0-1.fc36 kf5-kcalendarcore-5.101.0-1.fc36 kf5-kcmutils-5.101.0-1.fc36 kf5-kcodecs-5.101.0-1.fc36 kf5-kcompletion-5.101.0-1.fc36 kf5-kconfig-5.101.0-1.fc36 kf5-kconfigwidgets-5.101.0-2.fc36 kf5-kcontacts-5.101.0-1.fc36 kf5-kcoreaddons-5.101.0-1.fc36 kf5-kcrash-5.101.0-1.fc36 kf5-kdav-5.101.0-1.fc36 kf5-kdbusaddons-5.101.0-1.fc36 kf5-kdeclarative-5.101.0-1.fc36 kf5-kded-5.101.0-1.fc36 kf5-kdelibs4support-5.101.0-1.fc36 kf5-kdesignerplugin-5.101.0-1.fc36 kf5-kdesu-5.101.0-1.fc36 kf5-kdewebkit-5.101.0-1.fc36 kf5-kdnssd-5.101.0-1.fc36 kf5-kdoctools-5. 101.0-1.fc36 kf5-kemoticons-5.101.0-1.fc36 kf5-kfilemetadata-5.101.0-1.fc36 kf5-kglobalaccel-5.101.0-1.fc36 kf5-kguiaddons-5.101.0-1.fc36 kf5-kholidays-5.101.0-1.fc36 kf5-khtml-5.101.0-1.fc36 kf5-ki18n-5.101.0-1.fc36 kf5-kiconthemes-5.101.0-1.fc36 kf5-kidletime-5.101.0-1.fc36 kf5-kimageformats-5.101.0-1.fc36 kf5-kinit-5.101.0-1.fc36 kf5-kio-5.101.0-1.fc36 kf5-kirigami2-5.101.0-1.fc36 kf5-kitemmodels-5.101.0-1.fc36 kf5-kitemviews-5.101.0-1.fc36 kf5-kjobwidgets-5.101.0-1.fc36 kf5-kjs-5.101.0-1.fc36 kf5-kjsembed-5.101.0-1.fc36 kf5-kmediaplayer-5.101.0-1.fc36 kf5-knewstuff-5.101.0-1.fc36 kf5-knotifications-5.101.0-1.fc36 kf5-knotifyconfig-5.101.0-1.fc36 kf5-kpackage-5.101.0-1.fc36 kf5-kparts-5.101.0-1.fc36 kf5-kpeople-5.101.0-1.fc36 kf5-kplotting-5.101.0-1.fc36 kf5-kpty-5.101.0-1.fc36 kf5-kquickcharts-5.101.0-1.fc36 kf5-kross-5.101.0-1.fc36 kf5-krunner-5.101.0-1.fc36 kf5-kservice-5.101.0-1.fc36 kf5-ktexteditor-5.101.0-1.fc36 kf5-ktextwidgets-5.101.0-1.fc36 kf5-kunitconversion-5.101.0-1. fc36 kf5-kwallet-5.101.0-1.fc36 kf5-kwayland-5.101.0-1.fc36 kf5-kwidgetsaddons-5.101.0-1.fc36 kf5-kwindowsystem-5.101.0-1.fc36 kf5-kxmlgui-5.101.0-1.fc36 kf5-kxmlrpcclient-5.101.0-1.fc36 kf5-modemmanager-qt-5.101.0-1.fc36 kf5-networkmanager-qt-5.101.0-1.fc36 kf5-plasma-5.101.0-1.fc36 kf5-prison-5.101.0-1.fc36 kf5-purpose-5.101.0-1.fc36 kf5-solid-5.101.0-1.fc36 kf5-sonnet-5.101.0-1.fc36 kf5-syndication-5.101.0-1.fc36 kf5-syntax-highlighting-5.101.0-1.fc36 kf5-threadweaver-5.101.0-1.fc36 oxygen-icon-theme-5.101.0-1.fc36 qqc2-desktop-style-5.101.0-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-eaeaba89c5 vim-9.0.1054-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-eab2323e98 wireplumber-0.4.13-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-94f19142ab gnome-bluetooth-42.5-1.fc36 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ef64b1b39e libxcrypt-4.4.33-4.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-7f424ef67a firefox-108.0-2.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1182e2eaa6 pipewire-0.3.63-1.fc36 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4848fe117b git-2.39.0-1.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-70925bf048 kernel-6.0.14-200.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-cbee720c8f xen-4.16.3-1.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3f40d00dd9 xorg-x11-server-Xwayland-22.1.7-1.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-fabaf54050 gdb-12.1-3.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-19e019f39c tpm2-tss-3.2.1-1.fc36 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dd3eb7e0a8 xorg-x11-server-1.20.14-12.fc36
The following builds have been pushed to Fedora 36 updates-testing
8088_bios-0.9.8-3.fc36 composer-2.5.0-1.fc36 containerd-1.6.14-2.fc36 ethtool-6.1-1.fc36 golang-github-containerd-cgroups-1.0.4-3.fc36 golang-github-projectdiscovery-ratelimit-0.0.3-1.fc36 linux-firmware-20221214-145.fc36 mingw-pcre-8.45-1.fc36 moby-engine-20.10.21-1.fc36 php-doctrine-persistence3-3.1.2-1.fc36 python-doxypypy-0.8.8.6-1.fc36 rdiff-backup-2.2.0-2.fc36 rust-anyhow-1.0.68-1.fc36 rust-automod-1.0.6-1.fc36 rust-bitmaps-2.1.0-9.fc36 rust-io-uring-0.5.10-1.fc36 rust-proc-macro2-1.0.49-1.fc36 rust-proptest-derive-0.3.0-1.fc36 rust-quote-1.0.23-1.fc36 rust-rustversion-1.0.11-1.fc36 rust-semver-1.0.16-1.fc36 rust-serde_json-1.0.91-1.fc36 rust-serde_yaml-0.9.16-1.fc36 rust-syn-1.0.107-1.fc36 rust-trybuild-1.0.73-1.fc36 rust-unicode-ident-1.0.6-1.fc36 rust-unsafe-libyaml-0.2.5-1.fc36 samba-4.16.8-1.fc36 signify-31-1.fc36 systemd-250.9-1.fc36 tio-2.5-1.fc36 trafficserver-9.1.4-1.fc36 xq-1.1.1-1.fc36
Details about builds:
================================================================================ 8088_bios-0.9.8-3.fc36 (FEDORA-2022-78a9f651ab) BIOS for Intel 8088 based computers -------------------------------------------------------------------------------- Update Information:
pad the xtide bios image to 8 kB before using -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Davide Cavalca dcavalca@fedoraproject.org 0.9.8-3 - Add BuildRequires on coreutils * Sun Dec 11 2022 Dan Hor��k dan@danny.cz 0.9.8-2 - pad the xtide bios image to 8 kB before using --------------------------------------------------------------------------------
================================================================================ composer-2.5.0-1.fc36 (FEDORA-2022-ce50ca751d) Dependency Manager for PHP -------------------------------------------------------------------------------- Update Information:
**Version 2.5.0** - 2022-12-20 * BC Warning: To prevent abuse of our includeFile() function it is now gone, it was not part of the official API but may still cause issues if some code incorrectly relied on it (#11015) * Improved version guessing of `require` command to use the dependency resolution result instead of using the latest available version (except if you run with --no-update) (#11160) * Improved version selection in `archive` command (#11230) * Added autocompletion of config option names in the `config` command (#11130) * Added support for writing [custom commands as Command classes](https://getcomposer.org/doc/articles/scripts.md#writing-custom- commands) (#11151) * Added hard failure when installing from a lock file which does not satisfy the composer.json requirements (#11195) * Added warning when the outdated command rejects a new package due to unmet platform requirements (#11113) * Added support for `bump` command to bump `>=x` to `>=installed- version` (#11179) * Added `--download-only` flag to `install` command to only download and prime the cache with the package archives (#11041) * Added autoconfiguration of `github-domains`/`gitlab-domains` when GitHub/GitLab credentials are configured for a custom domain (#11062) * Added hard failure (throw) if COMPOSER_AUTH is present and malformed JSON (#11085) * Added interactive prompt to `run-script` and `exec` commands if run without any argument (#11157) * Added interactive prompt where to store credentials when a project-local auth.json exists (#11188) * Fixed full disk warning to be shown when less than 100MiB is available (#11190) * Fixed cache keys to allow `_` to avoid conflicts between package names like `a-b` and `a_b` (#11229) * Fixed docker compatibility by making paths more portable even if the project is installed at `/` (#11169) -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Remi Collet remi@remirepo.net - 2.5.0-1 - update to 2.5.0 --------------------------------------------------------------------------------
================================================================================ containerd-1.6.14-2.fc36 (FEDORA-2022-db674bafd9) Open and reliable container runtime -------------------------------------------------------------------------------- Update Information:
## golang-github-containerd-cgroups Fix bodhi bug of making epoch version obsolete ## containerd Update to 1.6.14 (rhbz#2154183) -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Maxwell G gotmax@e.email 1.6.14-2 - Fixes: rhbz##2154183 * Mon Dec 19 2022 Dalton Hubble dghubble@gmail.com 1.6.14-1 - Update to 1.6.14 * Fri Dec 9 2022 Maxwell G gotmax@e.email 1.6.12-1 - Update to 1.6.12. Fixes rhbz#2151471. * Wed Dec 7 2022 Dalton Hubble dghubble@gmail.com 1.6.11-1 - Update to v1.6.11 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2134573 - CVE-2022-29153 moby-engine: consul: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2134573 [ 2 ] Bug #2148176 - CVE-2022-3920 moby-engine: consul: Consul Cluster Peering Leaks Imported Nodes/Services Information [fedora-36] https://bugzilla.redhat.com/show_bug.cgi?id=2148176 [ 3 ] Bug #2150799 - F36FailsToInstall: containerd-devel https://bugzilla.redhat.com/show_bug.cgi?id=2150799 --------------------------------------------------------------------------------
================================================================================ ethtool-6.1-1.fc36 (FEDORA-2022-8d30f218d5) Settings tool for Ethernet NICs -------------------------------------------------------------------------------- Update Information:
# ethtool 6.1 * Feature: update link mode tables * Feature: register dump for NXP ENETC driver (`-d`) * Feature: report TCP header-data split (`-g`) * Feature: support new message types in pretty print * Fix: fix compiler warnings * Fix: man page syntax fixes -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Robert Scheck robert@fedoraproject.org - 2:6.1-1 - Upgrade to 6.1 (#2155096) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2155096 - ethtool-6.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2155096 --------------------------------------------------------------------------------
================================================================================ golang-github-containerd-cgroups-1.0.4-3.fc36 (FEDORA-2022-db674bafd9) Cgroups package for Go -------------------------------------------------------------------------------- Update Information:
## golang-github-containerd-cgroups Fix bodhi bug of making epoch version obsolete ## containerd Update to 1.6.14 (rhbz#2154183) -------------------------------------------------------------------------------- ChangeLog:
* Fri Dec 16 2022 S��rgio M. Basto sergio@serjux.com - 1:1.0.4-3 - Fix bodhi bug of making epoch version obsolete Bump release version and update changelog -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2134573 - CVE-2022-29153 moby-engine: consul: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2134573 [ 2 ] Bug #2148176 - CVE-2022-3920 moby-engine: consul: Consul Cluster Peering Leaks Imported Nodes/Services Information [fedora-36] https://bugzilla.redhat.com/show_bug.cgi?id=2148176 [ 3 ] Bug #2150799 - F36FailsToInstall: containerd-devel https://bugzilla.redhat.com/show_bug.cgi?id=2150799 --------------------------------------------------------------------------------
================================================================================ golang-github-projectdiscovery-ratelimit-0.0.3-1.fc36 (FEDORA-2022-7176dfe3e0) A Golang blocking rate limit implementation -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Mikel Olasagasti Uranga mikel@olasagasti.info 0.0.3-1 - Initial package - Closes rhbz#2144157 --------------------------------------------------------------------------------
================================================================================ linux-firmware-20221214-145.fc36 (FEDORA-2022-9b30518993) Firmware files used by the Linux kernel -------------------------------------------------------------------------------- Update Information:
Update to upstream 20221214 release: * amdgpu: updated various generations to firmware for amd-5.4 * amdgpu: add various new firmware for amd-5.4 * sr150 : Add NXP SR150 UWB firmware * brcm: add/update firmware files for brcmfmac driver * rtl_bt: Update RTL8821C BT(USB I/F) FW to 0x75b8_f098 * QCA: Add Bluetooth firmware 2.0.0-00515 for QCA WCN785x * update firmware for MT7916/MT7915/MT7986/MT7921 * i915: Add DMC v2.08 for DG2, DMC v2.10 for MTL -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Peter Robinson pbrobinson@fedoraproject.org - 20221109-145 - Update to upstream 20221214 release - amdgpu: updated various generations to firmware for amd-5.4 - amdgpu: add various new firmware for amd-5.4 - sr150 : Add NXP SR150 UWB firmware - brcm: add/update firmware files for brcmfmac driver - rtl_bt: Update RTL8821C BT(USB I/F) FW to 0x75b8_f098 - QCA: Add Bluetooth firmware 2.0.0-00515 for QCA WCN785x - update firmware for MT7916/MT7915/MT7986/MT7921 - i915: Add DMC v2.08 for DG2, DMC v2.10 for MTL --------------------------------------------------------------------------------
================================================================================ mingw-pcre-8.45-1.fc36 (FEDORA-2022-28fca7dbb1) MinGW Windows pcre library -------------------------------------------------------------------------------- Update Information:
- update to 8.45 to match native version -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 Thomas Sailer fedora@tsailer.ch - 8.45-1 - Update to 8.45 to match native version * Thu Jul 21 2022 Fedora Release Engineering releng@fedoraproject.org - 8.43-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Fri Mar 25 2022 Sandro Mani manisandro@gmail.com - 8.43-8 - Rebuild with mingw-gcc-12 --------------------------------------------------------------------------------
================================================================================ moby-engine-20.10.21-1.fc36 (FEDORA-2022-db674bafd9) The open-source application container engine -------------------------------------------------------------------------------- Update Information:
## golang-github-containerd-cgroups Fix bodhi bug of making epoch version obsolete ## containerd Update to 1.6.14 (rhbz#2154183) -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 14 2022 Dan ��erm��k dan.cermak@cgc-instruments.com - 20.10.21-1 - Update to 20.10.21 - Fix build, use libnetwork from golang-github-docker-0:22.06.0~beta -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2134573 - CVE-2022-29153 moby-engine: consul: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2134573 [ 2 ] Bug #2148176 - CVE-2022-3920 moby-engine: consul: Consul Cluster Peering Leaks Imported Nodes/Services Information [fedora-36] https://bugzilla.redhat.com/show_bug.cgi?id=2148176 [ 3 ] Bug #2150799 - F36FailsToInstall: containerd-devel https://bugzilla.redhat.com/show_bug.cgi?id=2150799 --------------------------------------------------------------------------------
================================================================================ php-doctrine-persistence3-3.1.2-1.fc36 (FEDORA-2022-4cd81001dd) Doctrine Persistence abstractions, version 3 -------------------------------------------------------------------------------- Update Information:
**Version 3.1.2** Bug * 320: Remove doctrine/annotations dependency thanks to @derrabus ---- **Version 3.1.1** Bug * 318: Add type to ColocatedMappingDriver::isTransient() thanks to @derrabus -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Remi Collet remi@remirepo.net - 3.1.2-1 - update to 3.1.2 * Wed Dec 14 2022 Remi Collet remi@remirepo.net - 3.1.1-1 - update to 3.1.1 --------------------------------------------------------------------------------
================================================================================ python-doxypypy-0.8.8.6-1.fc36 (FEDORA-2022-5a64262e50) A more Pythonic version of doxypy, a Doxygen filter for Python -------------------------------------------------------------------------------- Update Information:
``` * Mon Dec 19 2022 Onuralp SEZER thunderbirdtr@fedoraproject.org - 0.8.8.6-1 - Initial version of package ``` -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 Onuralp SEZER thunderbirdtr@fedoraproject.org - 0.8.8.6-1 - Initial version of package --------------------------------------------------------------------------------
================================================================================ rdiff-backup-2.2.0-2.fc36 (FEDORA-2022-ca09d4c99c) Convenient and transparent local/remote incremental mirror/backup -------------------------------------------------------------------------------- Update Information:
Happy Holidays release v2.2.0 - Fedora Release -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Frank Crawford frank@crawford.emu.id.au - 2.2.0-2 - Happy Holidays release v2.2.0 - Fedora Release * Sun Dec 18 2022 Frank Crawford frank@crawford.emu.id.au - 2.2.0-1 - Happy Holidays release v2.2.0 - COPR Release * Mon Nov 21 2022 Frank Crawford frank@crawford.emu.id.au - 2.0.5-10 - SPDX license update * Sat Jul 23 2022 Fedora Release Engineering releng@fedoraproject.org - 2.0.5-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint python-maint@redhat.com - 2.0.5-8 - Rebuilt for Python 3.11 --------------------------------------------------------------------------------
================================================================================ rust-anyhow-1.0.68-1.fc36 (FEDORA-2022-23d323f0a4) Flexible concrete Error type built on std::error::Error -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.68. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.68-1 - Update to version 1.0.68; Fixes RHBZ#2154553 --------------------------------------------------------------------------------
================================================================================ rust-automod-1.0.6-1.fc36 (FEDORA-2022-0dae6ddce6) Pull in every source file in a directory as a module -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.6. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.6-1 - Update to version 1.0.6; Fixes RHBZ#2154556 --------------------------------------------------------------------------------
================================================================================ rust-bitmaps-2.1.0-9.fc36 (FEDORA-2022-8ac905bc0f) Fixed size boolean arrays -------------------------------------------------------------------------------- Update Information:
- Update the proptest-derive crate to version 0.3.0. - Adapt the bitmaps crate to proptest 1.0 and proptest-derive 0.3. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 2.1.0-9 - Bump to proptest 1.0 and proptest-derive 0.3 * Sat Jul 23 2022 Fedora Release Engineering releng@fedoraproject.org - 2.1.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ rust-io-uring-0.5.10-1.fc36 (FEDORA-2022-eb778ee89d) Low-level io_uring userspace interface for Rust -------------------------------------------------------------------------------- Update Information:
Update to version 0.5.10. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 0.5.10-1 - Update to version 0.5.10; Fixes RHBZ#2154497 --------------------------------------------------------------------------------
================================================================================ rust-proc-macro2-1.0.49-1.fc36 (FEDORA-2022-79ee5b1ddf) Substitute implementation of the Rust compiler's proc_macro API -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.49. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.49-1 - Update to version 1.0.49; Fixes RHBZ#2154589 --------------------------------------------------------------------------------
================================================================================ rust-proptest-derive-0.3.0-1.fc36 (FEDORA-2022-8ac905bc0f) Custom-derive for the Arbitrary trait of proptest -------------------------------------------------------------------------------- Update Information:
- Update the proptest-derive crate to version 0.3.0. - Adapt the bitmaps crate to proptest 1.0 and proptest-derive 0.3. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 0.3.0-1 - Update to version 0.3.0; Fixes RHBZ#1931160 * Sat Jul 23 2022 Fedora Release Engineering releng@fedoraproject.org - 0.2.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ rust-quote-1.0.23-1.fc36 (FEDORA-2022-59f7ca1ca5) Quasi-quoting macro quote!(...) -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.23. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.23-1 - Update to version 1.0.23; Fixes RHBZ#2154590 --------------------------------------------------------------------------------
================================================================================ rust-rustversion-1.0.11-1.fc36 (FEDORA-2022-fd9cb50d57) Conditional compilation according to rustc compiler version -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.11. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.11-1 - Update to version 1.0.11; Fixes RHBZ#2154593 --------------------------------------------------------------------------------
================================================================================ rust-semver-1.0.16-1.fc36 (FEDORA-2022-75a45267db) Parser and evaluator for Cargo's flavor of Semantic Versioning -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.16. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.16-1 - Update to version 1.0.16; Fixes RHBZ#2154595 --------------------------------------------------------------------------------
================================================================================ rust-serde_json-1.0.91-1.fc36 (FEDORA-2022-a8748f1bb2) JSON serialization file format -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.91. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.91-1 - Update to version 1.0.91; Fixes RHBZ#2154579 --------------------------------------------------------------------------------
================================================================================ rust-serde_yaml-0.9.16-1.fc36 (FEDORA-2022-016ac92368) YAML data format for Serde -------------------------------------------------------------------------------- Update Information:
Update to version 0.9.16. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 0.9.16-1 - Update to version 0.9.16; Fixes RHBZ#2154582 --------------------------------------------------------------------------------
================================================================================ rust-syn-1.0.107-1.fc36 (FEDORA-2022-afb87d9ba7) Parser for Rust source code -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.107. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.107-1 - Update to version 1.0.107; Fixes RHBZ#2154583 --------------------------------------------------------------------------------
================================================================================ rust-trybuild-1.0.73-1.fc36 (FEDORA-2022-3c3f02772b) Test harness for ui tests of compiler diagnostics -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.73. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.73-1 - Update to version 1.0.73; Fixes RHBZ#2154601 --------------------------------------------------------------------------------
================================================================================ rust-unicode-ident-1.0.6-1.fc36 (FEDORA-2022-aef185df36) Determine whether characters have the XID_Start or XID_Continue properties -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.6. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.6-1 - Update to version 1.0.6; Fixes RHBZ#2154602 --------------------------------------------------------------------------------
================================================================================ rust-unsafe-libyaml-0.2.5-1.fc36 (FEDORA-2022-b1887810d6) Libyaml transpiled to rust by c2rust -------------------------------------------------------------------------------- Update Information:
Update to version 0.2.5. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 0.2.5-1 - Update to version 0.2.5; Fixes RHBZ#2154603 --------------------------------------------------------------------------------
================================================================================ samba-4.16.8-1.fc36 (FEDORA-2022-a31f25c6a1) Server and Client software to interoperate with Windows machines -------------------------------------------------------------------------------- Update Information:
Move libpac and libauth4 to dc-libs -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Pavel Filipensk�� pfilipenn@redhat.com - 4.16.8-1 - Move libpac and libauth4 to dc-libs - Create a new 'samba-dcerpc' sub-package for DCERPC services --------------------------------------------------------------------------------
================================================================================ signify-31-1.fc36 (FEDORA-2022-a5fab998d9) Sign and verify signatures on files -------------------------------------------------------------------------------- Update Information:
- Update to release v31 -------------------------------------------------------------------------------- ChangeLog:
* Thu Nov 24 2022 Robert Scheck robert@fedoraproject.org - 31-1 - Update to release v31 * Sat Jul 23 2022 Fedora Release Engineering releng@fedoraproject.org - 30-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ systemd-250.9-1.fc36 (FEDORA-2022-ef4f57b072) System and Service Manager -------------------------------------------------------------------------------- Update Information:
- Latest bugfix release with a bunch of fixes (homed, networkd, manager, resolved, documentation): rhbz#2133792, rhbz#2135778, rhbz#2152685, and also #2031810, #2121106. - CVE-2022-4415: systemd: coredump not respecting fs.suid_dumpable kernel setting No need to log out or reboot. -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #2133792 - StartTransientUnitContext as unprivileged user fails with slice already existing https://bugzilla.redhat.com/show_bug.cgi?id=2133792 [ 2 ] Bug #2135778 - systemd-coredump times out while processing a crash, gdb can't attach to a stuck process https://bugzilla.redhat.com/show_bug.cgi?id=2135778 [ 3 ] Bug #2152685 - systemdcoredump: invalid char in logs https://bugzilla.redhat.com/show_bug.cgi?id=2152685 --------------------------------------------------------------------------------
================================================================================ tio-2.5-1.fc36 (FEDORA-2022-a6da0ffa74) Simple TTY terminal I/O application -------------------------------------------------------------------------------- Update Information:
# tio v2.5 * Update configuration file documentation Rename `.tiorc` to `.tioconfig`, `tiorc` to `config`, etc. * Add support for `$HOME/.tioconfig` Replaces what used to be `$HOME/.tiorc * Fix double prefix key regression * Better error checking in config file, rename the file Accept `true`, `enable`, `on`, `yes`, `1` as true values, their counterparts as false ones. Check integer values for errors and range. Warn about ignored (e.g. misspelled) options. Check `getenv()` return value for `NULL`. Rename `tiorc` to `config`, as it's a static INI file, not an executable "run commands". -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Robert Scheck robert@fedoraproject.org 2.5-1 - Upgrade to 2.5 (#2154614) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2154614 - tio-2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2154614 --------------------------------------------------------------------------------
================================================================================ trafficserver-9.1.4-1.fc36 (FEDORA-2022-489ea47e69) Fast, scalable and extensible HTTP/1.1 and HTTP/2 caching proxy server -------------------------------------------------------------------------------- Update Information:
Update to 9.1.4, resolves CVE-2022-32749, CVE-2022-37392, CVE-2022-40743 -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 Jered Floyd jered@redhat.com 9.1.4-1 - Update to 9.1.4, resolves CVE-2022-32749, CVE-2022-37392, CVE-2022-40743 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2154123 - trafficserver-9.1.4-rc0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2154123 [ 2 ] Bug #2154896 - CVE-2022-32749 trafficserver: server crash under certain conditions [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154896 [ 3 ] Bug #2154897 - CVE-2022-32749 trafficserver: server crash under certain conditions [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154897 [ 4 ] Bug #2154899 - CVE-2022-37392 trafficserver: ATS is vulnerable to smuggle, cache poison, and DOS attacks [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154899 [ 5 ] Bug #2154900 - CVE-2022-37392 trafficserver: ATS is vulnerable to smuggle, cache poison, and DOS attacks [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154900 [ 6 ] Bug #2154902 - CVE-2022-40743 trafficserver: Security issues with the xdebug plugin [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154902 [ 7 ] Bug #2154903 - CVE-2022-40743 trafficserver: Security issues with the xdebug plugin [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154903 --------------------------------------------------------------------------------
================================================================================ xq-1.1.1-1.fc36 (FEDORA-2022-aef79dc66d) Command-line XML and HTML beautifier and content extractor -------------------------------------------------------------------------------- Update Information:
Update to 1.1.1 -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Mikel Olasagasti Uranga mikel@olasagasti.info 1.1.1-1 - Update to 1.1.1 --------------------------------------------------------------------------------
test-reports@lists.fedoraproject.org