The following Fedora 36 Security updates need testing:
Age URL
108
https://bodhi.fedoraproject.org/updates/FEDORA-2022-15729fa33d
perl-Alien-ProtoBuf-0.09-17.fc36 protobuf-3.19.6-1.fc36
8
https://bodhi.fedoraproject.org/updates/FEDORA-2023-de10e674ae
libpcap-1.10.4-1.fc36 tcpdump-4.99.4-1.fc36
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-5d51a42413
insight-13.0.50.20220502-9.fc36
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-6c3278c87b
thunderbird-102.10.0-1.fc36
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-d6b219d19a
ceph-16.2.12-1.fc36
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-d6560c7198
mingw-binutils-2.37-8.fc36
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-9992b32c1f
python-setuptools-59.6.0-4.fc36
4
https://bodhi.fedoraproject.org/updates/FEDORA-2023-6edb8fab0d
lilypond-2.24.1-1.fc36 lilypond-doc-2.24.1-1.fc36
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-04239b5758
redis-6.2.12-1.fc36
0
https://bodhi.fedoraproject.org/updates/FEDORA-2023-8b0938312e
libsignal-protocol-c-2.3.3-7.fc36
0
https://bodhi.fedoraproject.org/updates/FEDORA-2023-b37722768e
rust-askama-0.11.1-4.fc36 rust-askama_shared-0.12.2-4.fc36 rust-comrak-0.18.0-1.fc36
0
https://bodhi.fedoraproject.org/updates/FEDORA-2023-8900b35c6f
webkit2gtk3-2.40.1-1.fc36
The following Fedora 36 Critical Path updates have yet to be approved:
Age URL
123
https://bodhi.fedoraproject.org/updates/FEDORA-2022-fabaf54050 gdb-12.1-3.fc36
108
https://bodhi.fedoraproject.org/updates/FEDORA-2022-15729fa33d
perl-Alien-ProtoBuf-0.09-17.fc36 protobuf-3.19.6-1.fc36
12
https://bodhi.fedoraproject.org/updates/FEDORA-2023-5e94578a27
ghc-srpm-macros-1.6.1-1.fc36
9
https://bodhi.fedoraproject.org/updates/FEDORA-2023-f0e79e95cb
python3-docs-3.10.11-1.fc36 python3.10-3.10.11-1.fc36
9
https://bodhi.fedoraproject.org/updates/FEDORA-2023-1569ae67e7
httpd-2.4.57-1.fc36
8
https://bodhi.fedoraproject.org/updates/FEDORA-2023-ddcb7e8a30
annobin-12.02-1.fc36
8
https://bodhi.fedoraproject.org/updates/FEDORA-2023-de10e674ae
libpcap-1.10.4-1.fc36 tcpdump-4.99.4-1.fc36
7
https://bodhi.fedoraproject.org/updates/FEDORA-2023-86dff4f7d6
firewalld-1.2.5-1.fc36
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-9992b32c1f
python-setuptools-59.6.0-4.fc36
6
https://bodhi.fedoraproject.org/updates/FEDORA-2023-6c3278c87b
thunderbird-102.10.0-1.fc36
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-fb80a4fff2
pyproject-rpm-macros-1.7.0-1.fc36
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-f482f0efd1
firefox-112.0.1-1.fc36
2
https://bodhi.fedoraproject.org/updates/FEDORA-2023-9c568e54e3
libmediainfo-23.03-2.fc36 libzen-0.4.41-1.fc36
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-af1aaae396
mariadb-connector-c-3.3.4-2.fc36
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-72ef70f677
fedora-appstream-metadata-20230419-1.fc36
1
https://bodhi.fedoraproject.org/updates/FEDORA-2023-460849706f
linux-firmware-20230404-149.fc36
0
https://bodhi.fedoraproject.org/updates/FEDORA-2023-8900b35c6f
webkit2gtk3-2.40.1-1.fc36
0
https://bodhi.fedoraproject.org/updates/FEDORA-2023-1e8b5040e2
evolution-3.44.4-3.fc36
0
https://bodhi.fedoraproject.org/updates/FEDORA-2023-0355ccf850
pipewire-0.3.70-1.fc36
The following builds have been pushed to Fedora 36 updates-testing
csdiff-3.0.2-1.fc36
erlang-24.3.4.11-1.fc36
goaccess-1.7.2-1.fc36
kernel-6.2.12-100.fc36
mkvtoolnix-75.0.0-1.fc36
mtr-0.95-5.fc36
python-engineio-4.4.1-1.fc36
rust-cpufeatures-0.2.7-1.fc36
rust-matrixmultiply-0.3.3-1.fc36
rust-nasm-rs-0.2.5-1.fc36
rust-tracing-serde-0.1.3-1.fc36
scd2html-1.0.0-1.fc36
Details about builds:
================================================================================
csdiff-3.0.2-1.fc36 (FEDORA-2023-1631ce97a1)
Non-interactive tools for processing code scan results in plain-text
--------------------------------------------------------------------------------
Update Information:
- update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Kamil Dudka <kdudka(a)redhat.com> 3.0.2-1
- update to latest upstream release
--------------------------------------------------------------------------------
================================================================================
erlang-24.3.4.11-1.fc36 (FEDORA-2023-634b2aec5d)
General-purpose programming language and runtime environment
--------------------------------------------------------------------------------
Update Information:
Erlang ver. 24.2.4.11
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Peter Lemenkov <lemenkov(a)gmail.com> - 24.3.4.11-1
- Ver. 24.3.4.11
--------------------------------------------------------------------------------
================================================================================
goaccess-1.7.2-1.fc36 (FEDORA-2023-38409c3ba9)
Real-time web log analyzer and interactive viewer
--------------------------------------------------------------------------------
Update Information:
- Update to 1.7.2, fixes rhbz#2183783
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Filipe Rosset <rosset.filipe(a)gmail.com> - 1.7.2-1
- Update to 1.7.2, fixes rhbz#2183783
--------------------------------------------------------------------------------
================================================================================
kernel-6.2.12-100.fc36 (FEDORA-2023-6325ed25c4)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 6.2.12 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 20 2023 Augusto Caringi <acaringi(a)redhat.com> [6.2.12-0]
- Add bugs fixed by 6.2.12 (Justin M. Forbes)
- Use RHJOBS for create-tarball (Don Zickus)
- Linux v6.2.12
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2184395 - CVE-2023-1859 kernel: Use after free in xen_9pfs_front_remove due
to race condition
https://bugzilla.redhat.com/show_bug.cgi?id=2184395
--------------------------------------------------------------------------------
================================================================================
mkvtoolnix-75.0.0-1.fc36 (FEDORA-2023-5071bbffa1)
Matroska container manipulation utilities
--------------------------------------------------------------------------------
Update Information:
# Version 75.0.0 "Goliath" 2023-03-26 ## New features and enhancements *
mkvmerge: MP4 reader: mkvmerge will now read Timed Text (FourCC `tx3g`)
subtitle tracks & convert them on the fly to Matroska's simple text subtitle
format (`S_TEXT/UTF8`; text only, no styles). Implements #2208, #2242, #2613,
#3000, #3243, #3418 and possibly others. ## Bug fixes * all: switched back to
using `boost::filesystem` functions for creating directories instead of the
ones introduced to work around bugs in `std::filesystem`. The latter didn't
work correctly with UNC paths after the switch to `boost::filesystem::path` in
v74. Fixes #3483. * mkvmerge: VobSub reader: mkvmerge will now probe the `.idx`
file during VobSub identification even if the `.sub` file is passed as the
source. Avoids mis-detection of the `.sub` as MPEG program streams. Fixes
#3489. * MKVToolNix GUI: the GUI could abort with an exception on startup while
looking for the `mkvmerge` or `mediainfo` executables due to inaccessible
folders. Fixes #3481. * MKVToolNix GUI: preferences: when opening the
preferences the first time the UI might pre-select the first entry in the list
of interface languages if the operating system's language is not available for
MKVToolNix. This might also happen on Linux if e.g. `en_GB` is set, even
though `en_US` is available. Now English (`en_US`) will be selected instead.
Fixes #3486. * MKVToolNix GUI: multiplexer: when adding files the GUI has
special handling for chapter/tags/segment info files. This is done by
comparing their content to certain patterns. This recognition could wrongfully
be triggered if any such file was embedded in another file verbatim, e.g. with
a chapter XML file attachment in a Matroska file. When trying to add that
Matroska file, the GUI would treat it as a chapter file instead of a regular
one. This content-based detection was fixed. Fixes #3487. ## Other changes *
mkvpropedit, GUI's header editor: removed support for the deprecated "minimum
cache" & "maximum cache" track header elements.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 6 2023 Dominik Mierzejewski <dominik(a)greysector.net> - 75.0.0-1
- update to 75.0.0 (#2181894)
- switch License: to SPDX
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2181894 - mkvtoolnix-75.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2181894
--------------------------------------------------------------------------------
================================================================================
mtr-0.95-5.fc36 (FEDORA-2023-6ff427a7d3)
Network diagnostic tool combining 'traceroute' and 'ping'
--------------------------------------------------------------------------------
Update Information:
- Added upstream patch to fix segmentation fault for `-r` (#2188394)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Robert Scheck <robert(a)fedoraproject.org> - 2:0.95-5
- Added upstream patch to fix segmentation fault for '-r' (#2188394)
* Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:0.95-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:0.95-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2188394 - mtr coredump when using '-r' option
https://bugzilla.redhat.com/show_bug.cgi?id=2188394
--------------------------------------------------------------------------------
================================================================================
python-engineio-4.4.1-1.fc36 (FEDORA-2023-4a30cdc505)
Python Engine.IO server and client
--------------------------------------------------------------------------------
Update Information:
**Release 4.4.1** - 2023-04-19 - Prevent crash when closing simple-websocket
connection - Fix server/client mixup in client docstrings
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 4.4.1-1
- Update to 4.4.1 (close RHBZ#2188426)
* Fri Apr 21 2023 Benjamin A. Beasley <code(a)musicinmybrain.net> - 4.4.0-2
- Patch out test coverage analysis
--------------------------------------------------------------------------------
================================================================================
rust-cpufeatures-0.2.7-1.fc36 (FEDORA-2023-44b5acc49f)
Lightweight runtime CPU feature detection for x86/x86_64 and aarch64
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.7.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.7-1
- Update to version 0.2.7; Fixes RHBZ#2188485
--------------------------------------------------------------------------------
================================================================================
rust-matrixmultiply-0.3.3-1.fc36 (FEDORA-2023-507107a573)
General matrix multiplication for f32 and f64 matrices
--------------------------------------------------------------------------------
Update Information:
Update to version 0.3.3.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.3.3-1
- Update to version 0.3.3; Fixes RHBZ#2188448
* Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-nasm-rs-0.2.5-1.fc36 (FEDORA-2023-8232b681a7)
Run NASM during your Cargo build
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.5.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.2.5-1
- Update to version 0.2.5; Fixes RHBZ#2188463
* Sat Jan 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.4-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Sat Jul 23 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.4-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-tracing-serde-0.1.3-1.fc36 (FEDORA-2023-6adf5d997d)
Compatibility layer for serializing trace data with serde
--------------------------------------------------------------------------------
Update Information:
Initial packaging of the tracing-serde crate.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 21 2023 Fabio Valentini <decathorpe(a)gmail.com> - 0.1.3-1
- Initial import (#2187791)
--------------------------------------------------------------------------------
================================================================================
scd2html-1.0.0-1.fc36 (FEDORA-2023-b427809c69)
Generates HTML for scdoc source files
--------------------------------------------------------------------------------
Update Information:
Initial package (rhbz#2169097).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 15 2022 Maxwell G <gotmax(a)e.email> - 1.0.0-1
- Initial package (rhbz#2169097).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2169097 - Review Request: scd2html - Generates HTML for scdoc source files
https://bugzilla.redhat.com/show_bug.cgi?id=2169097
--------------------------------------------------------------------------------