The following Fedora 34 Security updates need testing: Age URL 77 https://bodhi.fedoraproject.org/updates/FEDORA-2022-6aba96e1b8 radare2-5.6.4-1.fc34 29 https://bodhi.fedoraproject.org/updates/FEDORA-2022-63de6726ce libinput-1.19.4-1.fc34 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9ce9716352 thunderbird-91.9.0-1.fc34 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-8277bef335 curl-7.76.1-16.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-44f5e9e219 php-openpsa-universalfeedcreator-1.8.4.1-1.fc34 3 https://bodhi.fedoraproject.org/updates/FEDORA-2022-1cf3c9578f plib-1.8.5-30.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-7846cac830 ignition-2.14.0-1.fc34 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-a49babed75 clash-1.6.5-2.fc34 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d044e7e0b4 vim-8.2.4975-1.fc34 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-bd4457bcc4 moodle-3.11.7-1.fc34
The following Fedora 34 Critical Path updates have yet to be approved: Age URL 407 https://bodhi.fedoraproject.org/updates/FEDORA-2021-1300e131b6 ddpt-0.96-4.fc34 ledmon-0.95-4.fc34 libgpod-0.8.3-38.fc34 libzfcphbaapi-2.2.0-12.fc34 lsvpd-1.7.11-6.fc34 sg3_utils-1.46-1.fc34 udisks-1.0.5-18.fc34 129 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e3b891fe11 gdb-11.1-7.fc34 77 https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f3103b973 hwdata-0.357-1.fc34 58 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dab75a01b8 gnome-shell-40.10-1.fc34 gnome-shell-extensions-40.7-1.fc34 mutter-40.10-1.fc34 44 https://bodhi.fedoraproject.org/updates/FEDORA-2022-eb1d10aba3 libldb-2.3.3-1.fc34 samba-4.14.13-0.fc34 29 https://bodhi.fedoraproject.org/updates/FEDORA-2022-63de6726ce libinput-1.19.4-1.fc34 11 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9ce9716352 thunderbird-91.9.0-1.fc34 9 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9434036d03 firefox-100.0-4.fc34 8 https://bodhi.fedoraproject.org/updates/FEDORA-2022-8277bef335 curl-7.76.1-16.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b9a676a6de libretls-3.5.2-1.fc34 netcat-1.218-5.fc34 rpki-client-7.8-2.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4f0b4a4d73 linux-firmware-20220509-132.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-43cfd2bbc1 rsync-3.2.4-1.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9ea855c65c gnutls-3.7.5-1.fc34 0 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d044e7e0b4 vim-8.2.4975-1.fc34
The following builds have been pushed to Fedora 34 updates-testing
ansible-collection-community-rabbitmq-1.2.1-1.fc34 ansible-packaging-1-5.fc34 cacti-1.2.21-1.fc34 cacti-spine-1.2.21-1.fc34 ceph-16.2.8-1.fc34 distribution-gpg-keys-1.71-1.fc34 gron-0.6.1-2.fc34 kernel-5.17.9-100.fc34 mock-core-configs-37.4-1.fc34 perl-libwww-perl-6.66-1.fc34 python-fastavro-1.4.12-1.fc34 python-munch-2.5.0-8.fc34 redhat-rpm-config-184-1.fc34 remmina-1.4.26-1.fc34 rubygem-git-1.11.0-1.fc34 umockdev-0.17.12-1.fc34
Details about builds:
================================================================================ ansible-collection-community-rabbitmq-1.2.1-1.fc34 (FEDORA-2022-24d172098b) RabbitMQ collection for Ansible -------------------------------------------------------------------------------- Update Information:
Update to 1.2.1. Fixes rhbz#2086332. -------------------------------------------------------------------------------- ChangeLog:
* Wed May 18 2022 Maxwell G gotmax@e.email - 1.2.1-1 - Update to 1.2.1. Fixes rhbz#2086332. * Mon May 16 2022 Maxwell G gotmax@e.email - 1.1.0-2 - Rebuild for new ansible-packaging. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2086332 - ansible-collection-community-rabbitmq-1.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2086332 --------------------------------------------------------------------------------
================================================================================ ansible-packaging-1-5.fc34 (FEDORA-2022-1180dadb39) RPM packaging macros and generators for Ansible collections -------------------------------------------------------------------------------- Update Information:
Make `%ansible_collection_url` available in the default buildroot. -------------------------------------------------------------------------------- ChangeLog:
* Tue May 17 2022 Maxwell G gotmax@e.email - 1-5 - Split macros required for building SRPMs into a separate package. --------------------------------------------------------------------------------
================================================================================ cacti-1.2.21-1.fc34 (FEDORA-2022-bcbbbf8237) An rrd based graphing tool -------------------------------------------------------------------------------- Update Information:
- Update to 1.2.21 Release notes: https://www.cacti.net/info/changelog/1.2.21 -------------------------------------------------------------------------------- ChangeLog:
* Thu May 19 2022 Morten Stevens mstevens@fedoraproject.org - 1.2.21-1 - Update to 1.2.21 --------------------------------------------------------------------------------
================================================================================ cacti-spine-1.2.21-1.fc34 (FEDORA-2022-bcbbbf8237) Threaded poller for Cacti written in C -------------------------------------------------------------------------------- Update Information:
- Update to 1.2.21 Release notes: https://www.cacti.net/info/changelog/1.2.21 -------------------------------------------------------------------------------- ChangeLog:
* Thu May 19 2022 Morten Stevens mstevens@fedoraproject.org - 1.2.21-1 - Update to 1.2.21 --------------------------------------------------------------------------------
================================================================================ ceph-16.2.8-1.fc34 (FEDORA-2022-e02a12860c) User space components of the Ceph file system -------------------------------------------------------------------------------- Update Information:
ceph 16.2.8 GA -------------------------------------------------------------------------------- ChangeLog:
* Wed May 18 2022 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 2:16.2.8-1 - 16.2.8 GA --------------------------------------------------------------------------------
================================================================================ distribution-gpg-keys-1.71-1.fc34 (FEDORA-2022-66ff37a5f9) GPG keys of various Linux distributions -------------------------------------------------------------------------------- Update Information:
mock-core-configs - Add AlmaLinux 9 and AlmaLinux 9 + EPEL configs (neal@gompa.dev) - Add RHEL9 templates and configs (carl@george.computer) distribution-gpg-keys - update copr keys - Add RPM Fusion keys for Fedora 38 - Add RHEL9 keys/configs -------------------------------------------------------------------------------- ChangeLog:
* Tue May 17 2022 Miroslav Such�� msuchy@redhat.com 1.71-1 - Refresh AlmaLinux keys to add AlmaLinux 9 key * Tue May 10 2022 Miroslav Such�� msuchy@redhat.com 1.70-1 - update copr keys - Add RHEL9 keys - Add RPM Fusion keys for Fedora 38 * Mon May 2 2022 Miroslav Such�� msuchy@redhat.com 1.69-1 - update copr keys - Add RPM Fusion keys for EL 9 --------------------------------------------------------------------------------
================================================================================ gron-0.6.1-2.fc34 (FEDORA-2022-53f0c619c5) Make JSON greppable -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2022-28327 -------------------------------------------------------------------------------- ChangeLog:
* Wed May 18 2022 Lars Kiesow lkiesow@uos.de - 0.6.1-2 - Rebuild to fix CVE-2022-28327 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2077689 - CVE-2022-28327 golang: crypto/elliptic: panic caused by oversized scalar https://bugzilla.redhat.com/show_bug.cgi?id=2077689 --------------------------------------------------------------------------------
================================================================================ kernel-5.17.9-100.fc34 (FEDORA-2022-633bedcda0) The Linux kernel -------------------------------------------------------------------------------- Update Information:
The 5.17.9 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Wed May 18 2022 Justin M. Forbes jforbes@fedoraproject.org [5.17.9-0] - Fix changelog for 5.17.8 (Justin M. Forbes) --------------------------------------------------------------------------------
================================================================================ mock-core-configs-37.4-1.fc34 (FEDORA-2022-66ff37a5f9) Mock core config files basic chroots -------------------------------------------------------------------------------- Update Information:
mock-core-configs - Add AlmaLinux 9 and AlmaLinux 9 + EPEL configs (neal@gompa.dev) - Add RHEL9 templates and configs (carl@george.computer) distribution-gpg-keys - update copr keys - Add RPM Fusion keys for Fedora 38 - Add RHEL9 keys/configs -------------------------------------------------------------------------------- ChangeLog:
* Thu May 19 2022 Pavel Raiskup praiskup@redhat.com 37.4-1 - Add AlmaLinux 9 and AlmaLinux 9 + EPEL configs (neal@gompa.dev) - Update the AlmaLinux 8 GPG key path (neal@gompa.dev) - Fix description typo on AlmaLinux 8 for x86_64 (neal@gompa.dev) - Add RHEL9 templates and configs (carl@george.computer) --------------------------------------------------------------------------------
================================================================================ perl-libwww-perl-6.66-1.fc34 (FEDORA-2022-540d328b79) A Perl interface to the World-Wide Web -------------------------------------------------------------------------------- Update Information:
Changes: 6.66 2022-05-18 16:44:44Z - Revert automatic follow of meta refresh tags which was added in 6.63 (GH#415) (Olaf Alders) -------------------------------------------------------------------------------- ChangeLog:
* Thu May 19 2022 Michal Josef ��pa��ek mspacek@redhat.com - 6.66-1 - 6.66 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2088118 - perl-libwww-perl-6.66 is available https://bugzilla.redhat.com/show_bug.cgi?id=2088118 --------------------------------------------------------------------------------
================================================================================ python-fastavro-1.4.12-1.fc34 (FEDORA-2022-52e88e3749) Fast Avro for Python -------------------------------------------------------------------------------- Update Information:
### 2022-05-18 version 1.4.12 - Fix issue where custom logical types were not working for the `json_reader` -------------------------------------------------------------------------------- ChangeLog:
* Thu May 19 2022 Benjamin A. Beasley code@musicinmybrain.net 1.4.12-1 - Update to 1.4.12 (close RHBZ#2088391) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2088391 - python-fastavro-1.4.12 is available https://bugzilla.redhat.com/show_bug.cgi?id=2088391 --------------------------------------------------------------------------------
================================================================================ python-munch-2.5.0-8.fc34 (FEDORA-2022-cabdb76f29) A dot-accessible dictionary (a la JavaScript objects) -------------------------------------------------------------------------------- Update Information:
This update adds a missing runtime dependency to the package. -------------------------------------------------------------------------------- ChangeLog:
* Thu May 19 2022 Nils Philippsen nils@redhat.com - 2.5.0-8 - Fix runtime dependency on setuptools - Modernize how the package is built * Fri Jan 21 2022 Fedora Release Engineering releng@fedoraproject.org - 2.5.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jul 23 2021 Fedora Release Engineering releng@fedoraproject.org - 2.5.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint python-maint@redhat.com - 2.5.0-5 - Rebuilt for Python 3.10 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2035475 - python3-setuptools is not brought in as a dependency https://bugzilla.redhat.com/show_bug.cgi?id=2035475 --------------------------------------------------------------------------------
================================================================================ redhat-rpm-config-184-1.fc34 (FEDORA-2022-1180dadb39) Red Hat specific rpm configuration files -------------------------------------------------------------------------------- Update Information:
Make `%ansible_collection_url` available in the default buildroot. -------------------------------------------------------------------------------- ChangeLog:
* Tue May 17 2022 Maxwell G gotmax@e.email - 184-1 - Add `Requires: ansible-srpm-macros` --------------------------------------------------------------------------------
================================================================================ remmina-1.4.26-1.fc34 (FEDORA-2022-3159428d1a) Remote Desktop Client -------------------------------------------------------------------------------- Update Information:
* Wed May 18 2022 Phil Wyett philip.wyett@kathenas.org - 1.4.26-1 - New upstream version 1.4.26. - New python plugin enabled. - Drop patches as no longer needed. - EL9 - Disable avahi-ui and avahi-ui-gtk support. - Disable libappindicator support. - Disable spice plugin. - Disable x2go plugin. -------------------------------------------------------------------------------- ChangeLog:
* Wed May 18 2022 Phil Wyett philip.wyett@kathenas.org - 1.4.26-1 - New upstream version 1.4.26. - New python plugin enabled. - Drop patches as no longer needed. - EL9 - Disable avahi-ui and avahi-ui-gtk support. - Disable libappindicator support. - Disable spice plugin. - Disable x2go plugin. --------------------------------------------------------------------------------
================================================================================ rubygem-git-1.11.0-1.fc34 (FEDORA-2022-353e1cf8b6) Ruby/Git is a Ruby library that can be used to create, read and manipulate Git repositories by wrapping system calls to the git binary -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2022-25648 -------------------------------------------------------------------------------- ChangeLog:
* Fri May 13 2022 Steve Traylen steve.traylen@cern.ch - 1.11.0-1 - Up to 1.11.0. CVE-2022-25648 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2076843 - CVE-2022-25648 ruby-git: package vulnerable to Command Injection via git argument injection https://bugzilla.redhat.com/show_bug.cgi?id=2076843 --------------------------------------------------------------------------------
================================================================================ umockdev-0.17.12-1.fc34 (FEDORA-2022-dcf53f9127) Mock hardware devices -------------------------------------------------------------------------------- Update Information:
New upstream release: 0.17.12 -------------------------------------------------------------------------------- ChangeLog:
* Thu May 19 2022 Packit hello@packit.dev - 0.17.12-1 - Work around packit propose_downstream bug * Tue May 10 2022 Packit hello@packit.dev - 0.17.10-1 - Adjust to systemd 251-rc2: Set $SYSTEMD_DEVICE_VERIFY_SYSFS, parse new udevadm format, update tests * Sun Apr 10 2022 Packit hello@packit.dev - 0.17.9-1 - preload: Wrap fortified version of readlinkat (thanks Martin Liska) --------------------------------------------------------------------------------