The following Fedora 36 Security updates need testing: Age URL 15 https://bodhi.fedoraproject.org/updates/FEDORA-2022-15729fa33d protobuf-3.19.6-1.fc36 13 https://bodhi.fedoraproject.org/updates/FEDORA-2022-6d2b6ad1a6 golang-1.18.9-1.fc36 9 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3f40d00dd9 xorg-x11-server-Xwayland-22.1.7-1.fc36 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ef4f57b072 systemd-250.9-1.fc36 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-71121c44a4 webkit2gtk3-2.38.3-1.fc36 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ce04ff8b49 w3m-0.5.3-58.git20220429.fc36 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3727f00e4b binwalk-2.3.3-1.fc36
The following Fedora 36 Critical Path updates have yet to be approved: Age URL 46 https://bodhi.fedoraproject.org/updates/FEDORA-2022-beaae40a8f python-rpmautospec-0.3.1-1.fc36 44 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ca291a78cf glibc-2.35-21.fc36 21 https://bodhi.fedoraproject.org/updates/FEDORA-2022-df7e4caec9 gnome-shell-42.7-1.fc36 mutter-42.7-1.fc36 15 https://bodhi.fedoraproject.org/updates/FEDORA-2022-15729fa33d protobuf-3.19.6-1.fc36 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4848fe117b git-2.39.0-1.fc36 9 https://bodhi.fedoraproject.org/updates/FEDORA-2022-cbee720c8f xen-4.16.3-1.fc36 9 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3f40d00dd9 xorg-x11-server-Xwayland-22.1.7-1.fc36 9 https://bodhi.fedoraproject.org/updates/FEDORA-2022-fabaf54050 gdb-12.1-3.fc36 9 https://bodhi.fedoraproject.org/updates/FEDORA-2022-19e019f39c tpm2-tss-3.2.1-1.fc36 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-290f715c04 grub2-2.06-59.fc36 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3cff953f4b edk2-20221117gitfff6d81270b5-8.fc36 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-a31f25c6a1 samba-4.16.8-1.fc36 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-ef4f57b072 systemd-250.9-1.fc36 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9b30518993 linux-firmware-20221214-145.fc36 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-8d30f218d5 ethtool-6.1-1.fc36 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-71121c44a4 webkit2gtk3-2.38.3-1.fc36 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b6c29072a3 thunderbird-102.6.0-2.fc36 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e7408b527a libksba-1.6.3-1.fc36 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e538a8b8e7 btrfs-progs-6.1-1.fc36 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-2a77cf04a0 libretls-3.7.0-1.fc36 netcat-1.219-2.fc36 rpki-client-8.2-3.fc36
The following builds have been pushed to Fedora 36 updates-testing
GitPython-3.1.30-1.fc36 bear-3.0.21-1.fc36 chordpro-6.000-1.fc36 gh-2.21.1-2.fc36 ibus-typing-booster-2.19.12-1.fc36 klavaro-3.14-1.fc36 librevenge-0.0.5-3.fc36 naev-0.10.1-1.fc36 naev-data-0.10.1-1.fc36 perl-Fsdb-3.1-1.fc36 python-pystemd-0.11.0-1.fc36 rdiff-backup-2.2.2-2.fc36 rednotebook-2.28.1-1.fc36 rubygem-mini_portile2-2.8.1-1.fc36 tin-2.6.2-1.fc36 titools-0.2^20160515gcc7dc08-1.fc36 ykocli-1.0.2-1.fc36
Details about builds:
================================================================================ GitPython-3.1.30-1.fc36 (FEDORA-2022-ce7369b9ec) Python Git Library -------------------------------------------------------------------------------- Update Information:
Latest upstream release with fix for CVE-2022-24439. -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Lubom��r Sedl���� lsedlar@redhat.com - 3.1.30-1 - Rebase to latest version * Wed Jul 20 2022 Fedora Release Engineering releng@fedoraproject.org - 3.1.27-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint python-maint@redhat.com - 3.1.27-2 - Rebuilt for Python 3.11 * Sat May 28 2022 Kevin Fenzi kevin@scrye.com - 3.1.27-1 - Update to 3.1.27. Fixes rhbz#2056218 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2151583 - CVE-2022-24439 GitPython: improper user input validation leads into a RCE https://bugzilla.redhat.com/show_bug.cgi?id=2151583 --------------------------------------------------------------------------------
================================================================================ bear-3.0.21-1.fc36 (FEDORA-2022-954b8da42b) Tool that generates a compilation database for clang tooling -------------------------------------------------------------------------------- Update Information:
Update bear to 3.0.21 -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Benjamin A. Beasley code@musicinmybrain.net 3.0.21-1 - Update to 3.0.21 (close RHBZ#2156922) * Tue Nov 29 2022 Benjamin A. Beasley code@musicinmybrain.net 3.0.20-6 - Update License to SPDX * Tue Nov 15 2022 Benjamin A. Beasley code@musicinmybrain.net 3.0.20-5 - Skip a failing valgrind test on s390x (close RHBZ#2127458, close RHBZ#2140814) * Tue Nov 15 2022 Benjamin A. Beasley code@musicinmybrain.net 3.0.20-4 - Remove an obsolete comment from the spec file * Thu Nov 3 2022 Vitaly Zaitsev vitaly@easycoding.org 3.0.20-3 - Rebuilt due to spdlog update. * Mon Aug 22 2022 Benjamin A. Beasley code@musicinmybrain.net 3.0.20-2 - Rebuilt for abseil-cpp 20220623.0 and grpc 1.48.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2156922 - bear-3.0.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=2156922 --------------------------------------------------------------------------------
================================================================================ chordpro-6.000-1.fc36 (FEDORA-2022-ec62826ce8) Print songbooks (lyrics + chords) -------------------------------------------------------------------------------- Update Information:
Upgrade to upstream. -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Johan Vromans jvromans@squirrel.nl - 6.000-1 - Upgrade to upstream. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2156933 - chordpro-6.000 is available https://bugzilla.redhat.com/show_bug.cgi?id=2156933 --------------------------------------------------------------------------------
================================================================================ gh-2.21.1-2.fc36 (FEDORA-2022-430d496513) GitHub���s official command line tool -------------------------------------------------------------------------------- Update Information:
Update to 2.21.1 -------------------------------------------------------------------------------- ChangeLog:
* Sat Dec 24 2022 Mikel Olasagasti Uranga mikel@olasagasti.info 2.21.1-2 - Update to 2.21.1 - Closes rhbz#2156132 * Sat Dec 24 2022 Mikel Olasagasti Uranga mikel@olasagasti.info 2.21.1-1 - Update to 2.21.1 - Closes rhbz#2156132 --------------------------------------------------------------------------------
================================================================================ ibus-typing-booster-2.19.12-1.fc36 (FEDORA-2022-7dfeadd002) A completion input method -------------------------------------------------------------------------------- Update Information:
Update to 2.19.12 Try not to fail if the database contains invalid UTF-8 or is otherwise malformed (Resolves: https://github.com/mike-fabian/ibus-typing- booster/issues/409) -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 28 2022 Mike FABIAN mfabian@redhat.com - 2.19.12-1 - Update to 2.19.12 - Try not to fail if the database contains invalid UTF-8 or is otherwise malformed (Resolves: https://github.com/mike-fabian/ibus-typing-booster/issues/409) --------------------------------------------------------------------------------
================================================================================ klavaro-3.14-1.fc36 (FEDORA-2022-3714f731e2) Typing tutor -------------------------------------------------------------------------------- Update Information:
Update to 3.14. -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Vasiliy N. Glazov vascom2@gmail.com - 3.14-1 - Update to 3.14 * Thu Jul 21 2022 Fedora Release Engineering releng@fedoraproject.org - 3.13-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ librevenge-0.0.5-3.fc36 (FEDORA-2022-f119fed32d) A base library for writing document import filters -------------------------------------------------------------------------------- Update Information:
New release 0.0.5. -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 David Tardon dtardon@redhat.com 0.0.5-3 - Remove stray / * Thu Dec 29 2022 David Tardon dtardon@redhat.com 0.0.5-2 - Compile .py files * Thu Dec 29 2022 David Tardon dtardon@redhat.com 0.0.5-1 - New upstream release * Mon Nov 21 2022 David Tardon dtardon@redhat.com - 0.0.4-24 - Convert license to SPDX * Thu Jul 21 2022 Fedora Release Engineering releng@fedoraproject.org - 0.0.4-23 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ naev-0.10.1-1.fc36 (FEDORA-2022-c7844235db) 2d action, RPG space game -------------------------------------------------------------------------------- Update Information:
New version with new missions and new storylines -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Jonathan Dieter jdieter@gmail.com - 0.10.1-1 - Update to 0.10.1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2150419 - naev-0.10.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2150419 --------------------------------------------------------------------------------
================================================================================ naev-data-0.10.1-1.fc36 (FEDORA-2022-c7844235db) Data files for NAEV -------------------------------------------------------------------------------- Update Information:
New version with new missions and new storylines -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Jonathan Dieter jdieter@gmail.com - 0.10.1-1 - Update to 0.10.1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2150419 - naev-0.10.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2150419 --------------------------------------------------------------------------------
================================================================================ perl-Fsdb-3.1-1.fc36 (FEDORA-2022-87dfa5d8bb) A set of commands for manipulating flat-text databases from the shell -------------------------------------------------------------------------------- Update Information:
See http://www.isi.edu/~johnh/SOFTWARE/FSDB/ -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 22 2022 John Heidemann johnh@isi.edu 3.1-1 - See http://www.isi.edu/~johnh/SOFTWARE/FSDB/ --------------------------------------------------------------------------------
================================================================================ python-pystemd-0.11.0-1.fc36 (FEDORA-2022-de8f260ff6) A thin Cython-based wrapper on top of libsystemd -------------------------------------------------------------------------------- Update Information:
Update `pystemd` to the latest upstream release. Changes: - native support for stop_cmd, (pre|post)_start_cmd and post_stop_cmd in pystemd.run. - adding lxml as a dependency. - drop support for python 3.4 and 3.5 (yey welcome f-strings) - change using select.select to use DefaultSelector in pystemd.run -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 6 2022 Davide Cavalca dcavalca@fedoraproject.org - 0.11.0-1 - Update to 0.11.0 (#2151054) - Convert license tag to SPDX * Fri Jul 22 2022 Fedora Release Engineering releng@fedoraproject.org - 0.10.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint python-maint@redhat.com - 0.10.0-5 - Rebuilt for Python 3.11 * Mon Apr 11 2022 Davide Cavalca dcavalca@fedoraproject.org - 0.10.0-4 - Drop unnecessary BuildRequires for deprecated package * Thu Apr 7 2022 Davide Cavalca dcavalca@fedoraproject.org - 0.10.0-3 - Add new upstream dependency to BuildRequires -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2151054 - python-pystemd-0.11.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2151054 --------------------------------------------------------------------------------
================================================================================ rdiff-backup-2.2.2-2.fc36 (FEDORA-2022-a1eb116a00) Convenient and transparent local/remote incremental mirror/backup -------------------------------------------------------------------------------- Update Information:
Bugfix Oops release v2.2.2 - Fedora/EPEL Release -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Frank Crawford frank@crawford.emu.id.au - 2.2.2-2 - Bugfix Oops release v2.2.2 - Fedora/EPEL Release * Thu Dec 29 2022 Frank Crawford frank@crawford.emu.id.au - 2.2.2-1 - Bugfix Oops release v2.2.2 - COPR Release * Wed Dec 28 2022 Frank Crawford frank@crawford.emu.id.au - 2.2.1-1 - Bugfix release v2.2.1 - COPR Release * Wed Dec 28 2022 Frank Crawford frank@crawford.emu.id.au - 2.2.0-3 - Patch to fix issue with function in debug mode --------------------------------------------------------------------------------
================================================================================ rednotebook-2.28.1-1.fc36 (FEDORA-2022-ac3e5640a9) Daily journal with calendar, templates and keyword searching -------------------------------------------------------------------------------- Update Information:
New upstream version 2.28.1. ---- New upstream version 2.28. -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Phil Wyett philip.wyett@kathenas.org - 2.28.1-1 - New upstream version 2.28.1 * Wed Dec 28 2022 Phil Wyett philip.wyett@kathenas.org - 2.28-1 - New upstream version 2.28 --------------------------------------------------------------------------------
================================================================================ rubygem-mini_portile2-2.8.1-1.fc36 (FEDORA-2022-4ad97d2431) Simplistic port-like solution for developers -------------------------------------------------------------------------------- Update Information:
New version 2.8.1 is released. -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Mamoru TASAKA mtasaka@fedoraproject.org - 2.8.1-1 - 2.8.1 * Sat Jul 23 2022 Fedora Release Engineering releng@fedoraproject.org - 2.8.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ tin-2.6.2-1.fc36 (FEDORA-2022-f5881c086b) Basic Internet news reader -------------------------------------------------------------------------------- Update Information:
* Numerous bugfixes (see `/usr/share/doc/tin/CHANGES`) * New feature: NNTPS support using OpenSSL. -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 28 2022 Dominik Mierzejewski dominik@greysector.net 2.6.2-1 - update to 2.6.2 (#2156181) - enable NNTPS support using OpenSSL -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2156181 - tin-2.6.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2156181 --------------------------------------------------------------------------------
================================================================================ titools-0.2^20160515gcc7dc08-1.fc36 (FEDORA-2022-887aec97d5) Command-line programs for communicating with a TI calculator -------------------------------------------------------------------------------- Update Information:
Initial import; Fixes: RHBZ#2107911 -------------------------------------------------------------------------------- ChangeLog:
* Thu Dec 29 2022 Davide Cavalca dcavalca@fedoraproject.org 0.2^20160515gcc7dc08-1 - Initial import; Fixes: RHBZ#2107911 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2107911 - Review Request: titools - Command-line programs for communicating with a TI calculator https://bugzilla.redhat.com/show_bug.cgi?id=2107911 --------------------------------------------------------------------------------
================================================================================ ykocli-1.0.2-1.fc36 (FEDORA-2022-47fddafbdf) Front-end script for ykman to obtain TOTP tokens -------------------------------------------------------------------------------- Update Information:
Add optional background mode -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 28 2022 Gerald Cox gbcox@fedoraproject.org - 1.0.2-1 - Add optional background mode --------------------------------------------------------------------------------
test-reports@lists.fedoraproject.org