The following Fedora 37 Security updates need testing: Age URL 33 https://bodhi.fedoraproject.org/updates/FEDORA-2022-243616c548 ntfs-3g-2022.10.3-1.fc37 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dbb811d203 python3-docs-3.11.1-1.fc37 python3.11-3.11.1-1.fc37 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-51316e38ce suricata-6.0.9-1.fc37 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3efcae2a46 insight-13.0.50.20220502-4.fc37 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-3b4c68d85d golang-1.19.4-1.fc37 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e139408490 mod_auth_openidc-2.4.12.2-1.fc37 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-88772d0a2d libtar-1.2.20-26.fc37
The following Fedora 37 Critical Path updates have yet to be approved: Age URL 48 https://bodhi.fedoraproject.org/updates/FEDORA-2022-700705c81b unbound-1.17.0-1.fc37 38 https://bodhi.fedoraproject.org/updates/FEDORA-2022-a1bfac29ac python-rpmautospec-0.3.1-1.fc37 33 https://bodhi.fedoraproject.org/updates/FEDORA-2022-243616c548 ntfs-3g-2022.10.3-1.fc37 27 https://bodhi.fedoraproject.org/updates/FEDORA-2022-26a1391176 annobin-10.93-1.fc37 13 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e1a31a23fd xorg-x11-drv-intel-2.99.917-54.20210115.fc37 13 https://bodhi.fedoraproject.org/updates/FEDORA-2022-98a5fdea32 libphonenumber-8.12.57-3.fc37 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-a799145f70 lua-5.4.4-7.fc37 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-28dc37634d dnsmasq-2.88-1.fc37 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dbb811d203 python3-docs-3.11.1-1.fc37 python3.11-3.11.1-1.fc37 10 https://bodhi.fedoraproject.org/updates/FEDORA-2022-7129e598e3 pungi-4.3.7-1.fc37 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-bf8feea173 lorax-37.10-1.fc37 7 https://bodhi.fedoraproject.org/updates/FEDORA-2022-f35fa714a0 wireplumber-0.4.13-1.fc37 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d1073ce971 libshout-2.4.6-1.fc37 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-2bc7296765 clevis-18-14.fc37 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-8d5a645cc6 openal-soft-1.22.2-6.fc37 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-16b288b12d git-2.39.0-1.fc37 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-efa47f0eed kernel-6.0.14-300.fc37 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-bb36bea121 xen-4.16.3-1.fc37 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-541d239cb5 samba-4.17.4-1.fc37 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-f44938861b xorg-x11-server-Xwayland-22.1.7-1.fc37 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-106a8e01bc tpm2-tss-3.2.1-1.fc37
The following builds have been pushed to Fedora 37 updates-testing
8088_bios-0.9.8-3.fc37 Cython-0.29.32-2.fc37 composer-2.5.0-1.fc37 containerd-1.6.14-2.fc37 ethtool-6.1-1.fc37 eureka-1.27b-1.fc37 golang-github-containerd-cgroups-1.0.4-3.fc37 golang-github-projectdiscovery-ratelimit-0.0.3-1.fc37 libgusb-0.4.3-1.fc37 linux-firmware-20221214-145.fc37 mingw-pcre-8.45-1.fc37 moby-engine-20.10.21-1.fc37 palp-2.11-5.fc37 php-doctrine-annotations-1.14.2-1.fc37 php-doctrine-orm-2.14.0-1.fc37 php-doctrine-persistence3-3.1.2-1.fc37 php-ramsey-uuid-4.7.0-1.fc37 python-doxypypy-0.8.8.6-1.fc37 python-sphinxext-opengraph-0.7.4-1.fc37 rdiff-backup-2.2.0-2.fc37 rpm-ostree-2022.19-2.fc37 rust-anyhow-1.0.68-1.fc37 rust-automod-1.0.6-1.fc37 rust-bitmaps-2.1.0-9.fc37 rust-io-uring-0.5.10-1.fc37 rust-proc-macro2-1.0.49-1.fc37 rust-proptest-derive-0.3.0-1.fc37 rust-quote-1.0.23-1.fc37 rust-rustversion-1.0.11-1.fc37 rust-semver-1.0.16-1.fc37 rust-serde_json-1.0.91-1.fc37 rust-serde_yaml-0.9.16-1.fc37 rust-syn-1.0.107-1.fc37 rust-trybuild-1.0.73-1.fc37 rust-unicode-ident-1.0.6-1.fc37 rust-unsafe-libyaml-0.2.5-1.fc37 signify-31-1.fc37 sjasm-0.42c-1.fc37 systemd-251.10-588.fc37 tio-2.5-1.fc37 trafficserver-9.1.4-1.fc37 xdg-user-dirs-0.18-1.fc37 xdg-user-dirs-gtk-0.11-1.fc37 xq-1.1.1-1.fc37
Details about builds:
================================================================================ 8088_bios-0.9.8-3.fc37 (FEDORA-2022-3cd6bb1384) BIOS for Intel 8088 based computers -------------------------------------------------------------------------------- Update Information:
pad the xtide bios image to 8 kB before using -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Davide Cavalca dcavalca@fedoraproject.org 0.9.8-3 - Add BuildRequires on coreutils * Sun Dec 11 2022 Dan Hor��k dan@danny.cz 0.9.8-2 - pad the xtide bios image to 8 kB before using --------------------------------------------------------------------------------
================================================================================ Cython-0.29.32-2.fc37 (FEDORA-2022-9801dd34a1) Language for writing Python extension modules -------------------------------------------------------------------------------- Update Information:
Avoid `cython-mode.el:109:1: Compiler warning` in Emacs. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Miro Hron��ok mhroncok@redhat.com - 0.29.32-2 - emacs-cython-mode: Wrap the docstring of cython-default-compile-format to 80 characters - Fixes: rhbz#2155090 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2155090 - cython-mode.el:109:1: Compiler warning https://bugzilla.redhat.com/show_bug.cgi?id=2155090 --------------------------------------------------------------------------------
================================================================================ composer-2.5.0-1.fc37 (FEDORA-2022-7d95ccc875) Dependency Manager for PHP -------------------------------------------------------------------------------- Update Information:
**Version 2.5.0** - 2022-12-20 * BC Warning: To prevent abuse of our includeFile() function it is now gone, it was not part of the official API but may still cause issues if some code incorrectly relied on it (#11015) * Improved version guessing of `require` command to use the dependency resolution result instead of using the latest available version (except if you run with --no-update) (#11160) * Improved version selection in `archive` command (#11230) * Added autocompletion of config option names in the `config` command (#11130) * Added support for writing [custom commands as Command classes](https://getcomposer.org/doc/articles/scripts.md#writing-custom- commands) (#11151) * Added hard failure when installing from a lock file which does not satisfy the composer.json requirements (#11195) * Added warning when the outdated command rejects a new package due to unmet platform requirements (#11113) * Added support for `bump` command to bump `>=x` to `>=installed- version` (#11179) * Added `--download-only` flag to `install` command to only download and prime the cache with the package archives (#11041) * Added autoconfiguration of `github-domains`/`gitlab-domains` when GitHub/GitLab credentials are configured for a custom domain (#11062) * Added hard failure (throw) if COMPOSER_AUTH is present and malformed JSON (#11085) * Added interactive prompt to `run-script` and `exec` commands if run without any argument (#11157) * Added interactive prompt where to store credentials when a project-local auth.json exists (#11188) * Fixed full disk warning to be shown when less than 100MiB is available (#11190) * Fixed cache keys to allow `_` to avoid conflicts between package names like `a-b` and `a_b` (#11229) * Fixed docker compatibility by making paths more portable even if the project is installed at `/` (#11169) -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Remi Collet remi@remirepo.net - 2.5.0-1 - update to 2.5.0 --------------------------------------------------------------------------------
================================================================================ containerd-1.6.14-2.fc37 (FEDORA-2022-7e327a20be) Open and reliable container runtime -------------------------------------------------------------------------------- Update Information:
## golang-github-containerd-cgroups Fix bodhi bug of making epoch version obsolete ## containerd Update to 1.6.14 (rhbz#2154183) -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Maxwell G gotmax@e.email 1.6.14-2 - Fixes: rhbz##2154183 * Mon Dec 19 2022 Dalton Hubble dghubble@gmail.com 1.6.14-1 - Update to 1.6.14 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2134573 - CVE-2022-29153 moby-engine: consul: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2134573 [ 2 ] Bug #2151891 - CVE-2022-23471 containerd: host memory exhaustion [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2151891 [ 3 ] Bug #2152870 - F37FailsToInstall: containerd-devel https://bugzilla.redhat.com/show_bug.cgi?id=2152870 [ 4 ] Bug #2154183 - containerd-1.6.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=2154183 --------------------------------------------------------------------------------
================================================================================ ethtool-6.1-1.fc37 (FEDORA-2022-13651af329) Settings tool for Ethernet NICs -------------------------------------------------------------------------------- Update Information:
# ethtool 6.1 * Feature: update link mode tables * Feature: register dump for NXP ENETC driver (`-d`) * Feature: report TCP header-data split (`-g`) * Feature: support new message types in pretty print * Fix: fix compiler warnings * Fix: man page syntax fixes -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Robert Scheck robert@fedoraproject.org - 2:6.1-1 - Upgrade to 6.1 (#2155096) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2155096 - ethtool-6.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2155096 --------------------------------------------------------------------------------
================================================================================ eureka-1.27b-1.fc37 (FEDORA-2022-79174a442b) A cross-platform map editor for the classic DOOM games -------------------------------------------------------------------------------- Update Information:
Update to v1.27b -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 Artur Frenszek-Iwicki fedora@svgames.pl - 1.27b-1 - Update to v1.27b - Include man page in the package - Clean up the spec file --------------------------------------------------------------------------------
================================================================================ golang-github-containerd-cgroups-1.0.4-3.fc37 (FEDORA-2022-7e327a20be) Cgroups package for Go -------------------------------------------------------------------------------- Update Information:
## golang-github-containerd-cgroups Fix bodhi bug of making epoch version obsolete ## containerd Update to 1.6.14 (rhbz#2154183) -------------------------------------------------------------------------------- ChangeLog:
* Fri Dec 16 2022 S��rgio M. Basto sergio@serjux.com - 1:1.0.4-3 - Fix bodhi bug of making epoch version obsolete Bump release version and update changelog -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2134573 - CVE-2022-29153 moby-engine: consul: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2134573 [ 2 ] Bug #2151891 - CVE-2022-23471 containerd: host memory exhaustion [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2151891 [ 3 ] Bug #2152870 - F37FailsToInstall: containerd-devel https://bugzilla.redhat.com/show_bug.cgi?id=2152870 [ 4 ] Bug #2154183 - containerd-1.6.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=2154183 --------------------------------------------------------------------------------
================================================================================ golang-github-projectdiscovery-ratelimit-0.0.3-1.fc37 (FEDORA-2022-09fc5bed5a) A Golang blocking rate limit implementation -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Mikel Olasagasti Uranga mikel@olasagasti.info 0.0.3-1 - Initial package - Closes rhbz#2144157 --------------------------------------------------------------------------------
================================================================================ libgusb-0.4.3-1.fc37 (FEDORA-2022-984c47cd82) GLib wrapper around libusb1 -------------------------------------------------------------------------------- Update Information:
This release fixes the following bugs: * Export g_usb_device_has_tag() * Work around a libusb issue which causes devices to appear twice -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Richard Hughes richard@hughsie.com 0.4.3-1 - New upstream version - Export g_usb_device_has_tag() - Work around a libusb issue which causes devices to appear twice --------------------------------------------------------------------------------
================================================================================ linux-firmware-20221214-145.fc37 (FEDORA-2022-69d193c666) Firmware files used by the Linux kernel -------------------------------------------------------------------------------- Update Information:
Update to upstream 20221214 release: * amdgpu: updated various generations to firmware for amd-5.4 * amdgpu: add various new firmware for amd-5.4 * sr150 : Add NXP SR150 UWB firmware * brcm: add/update firmware files for brcmfmac driver * rtl_bt: Update RTL8821C BT(USB I/F) FW to 0x75b8_f098 * QCA: Add Bluetooth firmware 2.0.0-00515 for QCA WCN785x * update firmware for MT7916/MT7915/MT7986/MT7921 * i915: Add DMC v2.08 for DG2, DMC v2.10 for MTL -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Peter Robinson pbrobinson@fedoraproject.org - 20221109-145 - Update to upstream 20221214 release - amdgpu: updated various generations to firmware for amd-5.4 - amdgpu: add various new firmware for amd-5.4 - sr150 : Add NXP SR150 UWB firmware - brcm: add/update firmware files for brcmfmac driver - rtl_bt: Update RTL8821C BT(USB I/F) FW to 0x75b8_f098 - QCA: Add Bluetooth firmware 2.0.0-00515 for QCA WCN785x - update firmware for MT7916/MT7915/MT7986/MT7921 - i915: Add DMC v2.08 for DG2, DMC v2.10 for MTL --------------------------------------------------------------------------------
================================================================================ mingw-pcre-8.45-1.fc37 (FEDORA-2022-8c0f15a620) MinGW Windows pcre library -------------------------------------------------------------------------------- Update Information:
- update to 8.45 to match native version -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 Thomas Sailer fedora@tsailer.ch - 8.45-1 - Update to 8.45 to match native version --------------------------------------------------------------------------------
================================================================================ moby-engine-20.10.21-1.fc37 (FEDORA-2022-7e327a20be) The open-source application container engine -------------------------------------------------------------------------------- Update Information:
## golang-github-containerd-cgroups Fix bodhi bug of making epoch version obsolete ## containerd Update to 1.6.14 (rhbz#2154183) -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 14 2022 Dan ��erm��k dan.cermak@cgc-instruments.com - 20.10.21-1 - Update to 20.10.21 - Fix build, use libnetwork from golang-github-docker-0:22.06.0~beta -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2134573 - CVE-2022-29153 moby-engine: consul: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2134573 [ 2 ] Bug #2151891 - CVE-2022-23471 containerd: host memory exhaustion [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2151891 [ 3 ] Bug #2152870 - F37FailsToInstall: containerd-devel https://bugzilla.redhat.com/show_bug.cgi?id=2152870 [ 4 ] Bug #2154183 - containerd-1.6.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=2154183 --------------------------------------------------------------------------------
================================================================================ palp-2.11-5.fc37 (FEDORA-2022-ec7c67225f) A Package for Analyzing Lattice Polytopes -------------------------------------------------------------------------------- Update Information:
This update fixes a use-after-free bug. Also, the supposed PDF documentation was not PDF at all, but an XHTML file instructing the user to try downloading the PDF file again. That has been fixed. The PDF is in a new doc subpackage. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Jerry James loganjerry@gmail.com - 2.11-5 - Fix a case of use-after-free - Get a valid PDF for Source1 - Create a doc subpackage for the PDF - Convert License tag to SPDX --------------------------------------------------------------------------------
================================================================================ php-doctrine-annotations-1.14.2-1.fc37 (FEDORA-2022-3fd9f4e49d) PHP docblock annotations parser library -------------------------------------------------------------------------------- Update Information:
**Version 1.14.2** * 464: Specify second template parameter thanks to @greg0ire ---- **Version 1.14.1** Bugfixes * Do not cast null to array thanks to @greg0ire ---- **Version 1.14.0** enhancement * 460: Allow doctrine/lexer 2 thanks to @greg0ire -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Remi Collet remi@remirepo.net - 1.14.2-1 - update to 1.14.2 * Tue Dec 13 2022 Remi Collet remi@remirepo.net - 1.14.1-1 - update to 1.14.1 - allow doctrine/lexer v2 --------------------------------------------------------------------------------
================================================================================ php-doctrine-orm-2.14.0-1.fc37 (FEDORA-2022-e087a4baaa) Doctrine Object-Relational-Mapper (ORM) -------------------------------------------------------------------------------- Update Information:
**Version 2.14.0** New Features * 10313: Add TypedFieldMapper for automatic mapping of typed PHP fields to DBAL types thanks to @michnovka * 10288: Allow enum discriminator columns thanks to @michnovka * 10187: Leverage LazyGhostTrait when possible thanks to @nicolas-grekas * 10040: Add lockMode to EntityManager#refresh() thanks to @michnovka Improvements * 10321: Drop forceful loading of annotations thanks to @greg0ire * 10320: Support doctrine/annotations 2 thanks to @derrabus * 10301: Allow lexer 2 thanks to @greg0ire * 10233: update help for RunDqlCommand thanks to @dmaicher * 10206: Use a more accurate name for $annotationName thanks to @greg0ire * 10123: Allow doctrine/event-manager 2 thanks to @derrabus * 10122: Automap events in AttachEntityListenersListener thanks to @HypeMC * 10070: Add support for doctrine/collection 2 thanks to @greg0ire * 10153: Address dbal deprecations thanks to @greg0ire * 10121: Address deprecation of Table::changeColumn() thanks to @greg0ire * 10116: Address deprecations from DBAL thanks to @greg0ire * 10105: Backport DBAL-related fixes thanks to @greg0ire * 10162: Use error style for notifications thanks to @greg0ire * 10256: Make use statements redundant thanks to @greg0ire Deprecations * 10212: Add a constructor to CacheKey thanks to @derrabus * 10204: Rename internal methods thanks to @greg0ire * 10178: Deprecate the Annotation interface thanks to @derrabus * 10098: Deprecate annotation driver thanks to @greg0ire * 10086: Create dedicated event argument classes thanks to @franmomu * 10045: Deprecate Doctrine\ORM\Proxy\Proxy and decouple a bit more from Doctrine\Common\Proxy thanks to @nicolas-grekas * 9961: Deprecate EntityManager::create() thanks to @derrabus * 10267: Add $not constructor parameter to AST classes thanks to @derrabus Bugfixes * 10165: Fix calls to AbstractSchemaManager::createSchema() thanks to @derrabus ---- **Version 2.13.5** Bugfixes * 10311: add apcu enabled check if apcu extension loaded (#10310) thanks to @aleksejs1 * 10277: Fix changeset computation for enum arrays thanks to @michnovka * 10274: Fix enum IDs in association mappings thanks to @michnovka -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Remi Collet remi@remirepo.net - 2.14.0-1 - update to 2.14.0 - allow doctrine/collections v2 - allow doctrine/event-manager v2 - allow doctrine/lexer v2 - raise dependency on symfony/console 4.2 --------------------------------------------------------------------------------
================================================================================ php-doctrine-persistence3-3.1.2-1.fc37 (FEDORA-2022-cdfb900187) Doctrine Persistence abstractions, version 3 -------------------------------------------------------------------------------- Update Information:
**Version 3.1.2** Bug * 320: Remove doctrine/annotations dependency thanks to @derrabus ---- **Version 3.1.1** Bug * 318: Add type to ColocatedMappingDriver::isTransient() thanks to @derrabus -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Remi Collet remi@remirepo.net - 3.1.2-1 - update to 3.1.2 * Wed Dec 14 2022 Remi Collet remi@remirepo.net - 3.1.1-1 - update to 3.1.1 --------------------------------------------------------------------------------
================================================================================ php-ramsey-uuid-4.7.0-1.fc37 (FEDORA-2022-4ee3b89554) Library for generating and working with UUIDs -------------------------------------------------------------------------------- Update Information:
**Version 4.7.0** - 2022-12-19 Added * Add `Uuid::fromHexadecimal()` and `UuidFactory::fromHexadecimal()`. These methods are not required by the interfaces. Fixed * Ignore MAC addresses consisting of all zeroes (i.e., `00:00:00:00:00:00`). -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Remi Collet remi@remirepo.net - 4.7.0-1 - update to 4.7.0 - raise dependency on ramsey/collection 1.2 --------------------------------------------------------------------------------
================================================================================ python-doxypypy-0.8.8.6-1.fc37 (FEDORA-2022-e87f50f1e9) A more Pythonic version of doxypy, a Doxygen filter for Python -------------------------------------------------------------------------------- Update Information:
``` * Mon Dec 19 2022 Onuralp SEZER thunderbirdtr@fedoraproject.org - 0.8.8.6-1 - Initial version of package ``` -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 Onuralp SEZER thunderbirdtr@fedoraproject.org - 0.8.8.6-1 - Initial version of package --------------------------------------------------------------------------------
================================================================================ python-sphinxext-opengraph-0.7.4-1.fc37 (FEDORA-2022-864917107b) Sphinx extension to generate unique OpenGraph metadata -------------------------------------------------------------------------------- Update Information:
version 0.7.4 -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Yaroslav Sidlovsky zawertun@gmail.com 0.7.4-1 - version 0.7.4 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2155107 - python-sphinxext-opengraph-0.7.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2155107 --------------------------------------------------------------------------------
================================================================================ rdiff-backup-2.2.0-2.fc37 (FEDORA-2022-36dabbe5d9) Convenient and transparent local/remote incremental mirror/backup -------------------------------------------------------------------------------- Update Information:
Happy Holidays release v2.2.0 - Fedora Release -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Frank Crawford frank@crawford.emu.id.au - 2.2.0-2 - Happy Holidays release v2.2.0 - Fedora Release * Sun Dec 18 2022 Frank Crawford frank@crawford.emu.id.au - 2.2.0-1 - Happy Holidays release v2.2.0 - COPR Release * Mon Nov 21 2022 Frank Crawford frank@crawford.emu.id.au - 2.0.5-10 - SPDX license update --------------------------------------------------------------------------------
================================================================================ rpm-ostree-2022.19-2.fc37 (FEDORA-2022-4ad713eb82) Hybrid image/package system -------------------------------------------------------------------------------- Update Information:
- https://github.com/coreos/rpm-ostree/releases/tag/v2022.17 - https://github.com/coreos/rpm-ostree/releases/tag/v2022.18 - https://github.com/coreos/rpm-ostree/releases/tag/v2022.19 -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Colin Walters walters@verbum.org - 2022.19-2 - https://github.com/coreos/rpm-ostree/releases/tag/v2022.19 * Tue Dec 13 2022 Colin Walters walters@verbum.org - 2022.18-2 - https://github.com/coreos/rpm-ostree/releases/tag/v2022.18 * Mon Dec 12 2022 Colin Walters walters@verbum.org - 2022.17-2 - https://github.com/coreos/rpm-ostree/releases/tag/v2022.17 --------------------------------------------------------------------------------
================================================================================ rust-anyhow-1.0.68-1.fc37 (FEDORA-2022-278b1b1f6f) Flexible concrete Error type built on std::error::Error -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.68. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.68-1 - Update to version 1.0.68; Fixes RHBZ#2154553 --------------------------------------------------------------------------------
================================================================================ rust-automod-1.0.6-1.fc37 (FEDORA-2022-fca30f509c) Pull in every source file in a directory as a module -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.6. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.6-1 - Update to version 1.0.6; Fixes RHBZ#2154556 --------------------------------------------------------------------------------
================================================================================ rust-bitmaps-2.1.0-9.fc37 (FEDORA-2022-d955d9a037) Fixed size boolean arrays -------------------------------------------------------------------------------- Update Information:
- Update the proptest-derive crate to version 0.3.0. - Adapt the bitmaps crate to proptest 1.0 and proptest-derive 0.3. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 2.1.0-9 - Bump to proptest 1.0 and proptest-derive 0.3 --------------------------------------------------------------------------------
================================================================================ rust-io-uring-0.5.10-1.fc37 (FEDORA-2022-7639a60d52) Low-level io_uring userspace interface for Rust -------------------------------------------------------------------------------- Update Information:
Update to version 0.5.10. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 0.5.10-1 - Update to version 0.5.10; Fixes RHBZ#2154497 --------------------------------------------------------------------------------
================================================================================ rust-proc-macro2-1.0.49-1.fc37 (FEDORA-2022-947ce98ea9) Substitute implementation of the Rust compiler's proc_macro API -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.49. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.49-1 - Update to version 1.0.49; Fixes RHBZ#2154589 --------------------------------------------------------------------------------
================================================================================ rust-proptest-derive-0.3.0-1.fc37 (FEDORA-2022-d955d9a037) Custom-derive for the Arbitrary trait of proptest -------------------------------------------------------------------------------- Update Information:
- Update the proptest-derive crate to version 0.3.0. - Adapt the bitmaps crate to proptest 1.0 and proptest-derive 0.3. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 0.3.0-1 - Update to version 0.3.0; Fixes RHBZ#1931160 --------------------------------------------------------------------------------
================================================================================ rust-quote-1.0.23-1.fc37 (FEDORA-2022-aefb95e65c) Quasi-quoting macro quote!(...) -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.23. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.23-1 - Update to version 1.0.23; Fixes RHBZ#2154590 --------------------------------------------------------------------------------
================================================================================ rust-rustversion-1.0.11-1.fc37 (FEDORA-2022-494d1d6a4e) Conditional compilation according to rustc compiler version -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.11. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.11-1 - Update to version 1.0.11; Fixes RHBZ#2154593 --------------------------------------------------------------------------------
================================================================================ rust-semver-1.0.16-1.fc37 (FEDORA-2022-c584527232) Parser and evaluator for Cargo's flavor of Semantic Versioning -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.16. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.16-1 - Update to version 1.0.16; Fixes RHBZ#2154595 --------------------------------------------------------------------------------
================================================================================ rust-serde_json-1.0.91-1.fc37 (FEDORA-2022-8b3528435a) JSON serialization file format -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.91. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.91-1 - Update to version 1.0.91; Fixes RHBZ#2154579 --------------------------------------------------------------------------------
================================================================================ rust-serde_yaml-0.9.16-1.fc37 (FEDORA-2022-024650c7a4) YAML data format for Serde -------------------------------------------------------------------------------- Update Information:
Update to version 0.9.16. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 0.9.16-1 - Update to version 0.9.16; Fixes RHBZ#2154582 --------------------------------------------------------------------------------
================================================================================ rust-syn-1.0.107-1.fc37 (FEDORA-2022-516d912eee) Parser for Rust source code -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.107. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.107-1 - Update to version 1.0.107; Fixes RHBZ#2154583 --------------------------------------------------------------------------------
================================================================================ rust-trybuild-1.0.73-1.fc37 (FEDORA-2022-335a23c92f) Test harness for ui tests of compiler diagnostics -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.73. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.73-1 - Update to version 1.0.73; Fixes RHBZ#2154601 --------------------------------------------------------------------------------
================================================================================ rust-unicode-ident-1.0.6-1.fc37 (FEDORA-2022-5f40e7cef9) Determine whether characters have the XID_Start or XID_Continue properties -------------------------------------------------------------------------------- Update Information:
Update to version 1.0.6. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 1.0.6-1 - Update to version 1.0.6; Fixes RHBZ#2154602 --------------------------------------------------------------------------------
================================================================================ rust-unsafe-libyaml-0.2.5-1.fc37 (FEDORA-2022-5285d25cdc) Libyaml transpiled to rust by c2rust -------------------------------------------------------------------------------- Update Information:
Update to version 0.2.5. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Fabio Valentini decathorpe@gmail.com 0.2.5-1 - Update to version 0.2.5; Fixes RHBZ#2154603 --------------------------------------------------------------------------------
================================================================================ signify-31-1.fc37 (FEDORA-2022-42338c2c27) Sign and verify signatures on files -------------------------------------------------------------------------------- Update Information:
- Update to release v31 -------------------------------------------------------------------------------- ChangeLog:
* Thu Nov 24 2022 Robert Scheck robert@fedoraproject.org - 31-1 - Update to release v31 --------------------------------------------------------------------------------
================================================================================ sjasm-0.42c-1.fc37 (FEDORA-2022-3826121980) A z80 cross assembler -------------------------------------------------------------------------------- Update Information:
- Update to version 0.42c -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 22 2022 Lubomir Rintel lkundrak@v3.sk - 0.42c-1 - Update to version 0.42c --------------------------------------------------------------------------------
================================================================================ systemd-251.10-588.fc37 (FEDORA-2022-6919a53ea9) System and Service Manager -------------------------------------------------------------------------------- Update Information:
Bugfix release for CVE-2022-4415. No need to log out or reboot. -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - Version 251.10 - CVE-2022-4415: systemd: coredump not respecting fs.suid_dumpable kernel setting --------------------------------------------------------------------------------
================================================================================ tio-2.5-1.fc37 (FEDORA-2022-f6d0947e56) Simple TTY terminal I/O application -------------------------------------------------------------------------------- Update Information:
# tio v2.5 * Update configuration file documentation Rename `.tiorc` to `.tioconfig`, `tiorc` to `config`, etc. * Add support for `$HOME/.tioconfig` Replaces what used to be `$HOME/.tiorc * Fix double prefix key regression * Better error checking in config file, rename the file Accept `true`, `enable`, `on`, `yes`, `1` as true values, their counterparts as false ones. Check integer values for errors and range. Warn about ignored (e.g. misspelled) options. Check `getenv()` return value for `NULL`. Rename `tiorc` to `config`, as it's a static INI file, not an executable "run commands". -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Robert Scheck robert@fedoraproject.org 2.5-1 - Upgrade to 2.5 (#2154614) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2154614 - tio-2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2154614 --------------------------------------------------------------------------------
================================================================================ trafficserver-9.1.4-1.fc37 (FEDORA-2022-62b61a8542) Fast, scalable and extensible HTTP/1.1 and HTTP/2 caching proxy server -------------------------------------------------------------------------------- Update Information:
Update to 9.1.4, resolves CVE-2022-32749, CVE-2022-37392, CVE-2022-40743 -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 Jered Floyd jered@redhat.com 9.1.4-1 - Update to 9.1.4, resolves CVE-2022-32749, CVE-2022-37392, CVE-2022-40743 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2154123 - trafficserver-9.1.4-rc0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2154123 [ 2 ] Bug #2154896 - CVE-2022-32749 trafficserver: server crash under certain conditions [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154896 [ 3 ] Bug #2154897 - CVE-2022-32749 trafficserver: server crash under certain conditions [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154897 [ 4 ] Bug #2154899 - CVE-2022-37392 trafficserver: ATS is vulnerable to smuggle, cache poison, and DOS attacks [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154899 [ 5 ] Bug #2154900 - CVE-2022-37392 trafficserver: ATS is vulnerable to smuggle, cache poison, and DOS attacks [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154900 [ 6 ] Bug #2154902 - CVE-2022-40743 trafficserver: Security issues with the xdebug plugin [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154902 [ 7 ] Bug #2154903 - CVE-2022-40743 trafficserver: Security issues with the xdebug plugin [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2154903 --------------------------------------------------------------------------------
================================================================================ xdg-user-dirs-0.18-1.fc37 (FEDORA-2022-b5cd15651f) Handles user special directories -------------------------------------------------------------------------------- Update Information:
Update to latest versions -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 David King amigadave@amigadave.com - 0.18-1 - Update to 0.18 (#2135324) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2135324 - Update to 0.18 https://bugzilla.redhat.com/show_bug.cgi?id=2135324 [ 2 ] Bug #2135328 - Update to 0.11 https://bugzilla.redhat.com/show_bug.cgi?id=2135328 --------------------------------------------------------------------------------
================================================================================ xdg-user-dirs-gtk-0.11-1.fc37 (FEDORA-2022-b5cd15651f) Gnome integration of special directories -------------------------------------------------------------------------------- Update Information:
Update to latest versions -------------------------------------------------------------------------------- ChangeLog:
* Mon Dec 19 2022 David King amigadave@amigadave.com - 0.11-1 - Update to 0.11 (#2135328) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2135324 - Update to 0.18 https://bugzilla.redhat.com/show_bug.cgi?id=2135324 [ 2 ] Bug #2135328 - Update to 0.11 https://bugzilla.redhat.com/show_bug.cgi?id=2135328 --------------------------------------------------------------------------------
================================================================================ xq-1.1.1-1.fc37 (FEDORA-2022-3e46bb1243) Command-line XML and HTML beautifier and content extractor -------------------------------------------------------------------------------- Update Information:
Update to 1.1.1 -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 20 2022 Mikel Olasagasti Uranga mikel@olasagasti.info 1.1.1-1 - Update to 1.1.1 --------------------------------------------------------------------------------
test-reports@lists.fedoraproject.org