The following Fedora 29 Security updates need testing:
Age URL
65
https://bodhi.fedoraproject.org/updates/FEDORA-2018-51ce232320
xerces-c27-2.7.0-28.fc29
16
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4003413459
mingw-uriparser-0.9.0-1.fc29
16
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c5c72a45ea
uriparser-0.9.0-1.fc29
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3fbc181b3e
keepalived-2.0.10-1.fc29
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-e14840a7f5
pdns-recursor-4.1.8-1.fc29
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-42555731d2
nagios-4.4.2-3.fc29
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c42a144c65
nbdkit-1.8.2-1.fc29
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-36115ae788
mysql-selinux-1.0.0-5.fc29
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5904d0794d
kernel-tools-4.19.7-300.fc29 kernel-headers-4.19.7-300.fc29 kernel-4.19.7-300.fc29
The following Fedora 29 Critical Path updates have yet to be approved:
Age URL
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-6682778e13
pungi-4.1.31-1.fc29
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4418fc329b kobo-0.8.0-1.fc29
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3edec78f47
NetworkManager-1.12.6-1.fc29
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1cc39ff643 pam-1.3.1-13.fc29
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-99d3e43f1a
libnetfilter_conntrack-1.0.7-1.fc29
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5904d0794d
kernel-tools-4.19.7-300.fc29 kernel-headers-4.19.7-300.fc29 kernel-4.19.7-300.fc29
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-8c1d362806 file-5.34-7.fc29
The following builds have been pushed to Fedora 29 updates-testing
HepMC-2.06.09-22.fc29
cairo-1.16.0-3.fc29
calligra-3.1.0-11.fc29
clover2-8.1.1-1.D20181208gitd8b1b9a.fc29
codeblocks-17.12-9.fc29
corosync-2.99.5-1.fc29
eclipse-egit-5.2.0-1.fc29
eclipse-egit-github-5.2.0-1.fc29
eclipse-jgit-5.2.0-2.fc29
ed25519-java-0.3.0-2.fc29
elementary-icon-theme-5.0.1-1.fc29
gala-0.3.1-0.17.20181205.git66a95e0.fc29
geolite2-20181204-1.fc29
golang-github-namedotcom-0-0.1.20181207git08470be.fc29
golang-github-ovh-0-0.2.20181207gitba5adb4.fc29
golang-github-timewasted-linode-0-0.1.20181207git37e8452.fc29
google-noto-fonts-20170919-2.fc29
ibus-typing-booster-2.3.1-1.fc29
irclog2html-2.17.1-1.fc29
libburn-1.5.0-1.fc29
libisoburn-1.5.0-1.fc29
libisofs-1.5.0-1.fc29
libmicrohttpd-0.9.61-1.fc29
libreport-2.9.7-1.fc29
livecd-tools-26.1-1.fc29
lorax-29.22-1.fc29
lvm2-2.02.183-1.fc29
mbedtls-2.14.1-1.fc29
midori-7.0-1.fc29
module-build-service-2.9.1-1.fc29
origin-3.11.1-1.fc29
perl-Config-Model-2.129-1.fc29
perl-Test-WWW-Mechanize-1.52-1.fc29
perl-Types-DateTime-0.002-2.fc29
perl-Web-ID-1.927-1.fc29
perl-match-simple-0.010-1.fc29
perl-match-simple-XS-0.001-2.fc29
php-7.2.13-2.fc29
php-pecl-apcu-5.1.15-1.fc29
php-sebastian-environment4-4.0.1-1.fc29
php-symfony-2.8.49-1.fc29
php-symfony3-3.4.20-1.fc29
php-symfony4-4.1.9-1.fc29
phpunit7-7.5.0-1.fc29
podman-0.12.1.1-1.git66d3499.fc29
polkit-0.115-4.1.fc29
python-asyncssh-1.15.0-1.fc29
python-bleach-2.1.4-1.fc29
python-transitions-0.6.8-1.fc29
qsynth-0.5.4-1.fc29
qt5-qtwebengine-5.11.3-1.fc29
rust-1.31.0-8.fc29
rust-packaging-6-2.fc29
selinux-policy-3.14.2-44.fc29
switchboard-plug-about-2.5.2-1.fc29
vacuum-im-1.3.0-0.13.20181129git52c2a8c.fc29
vile-9.8t-1.fc29
wingpanel-applications-menu-2.4.1-1.fc29
Details about builds:
================================================================================
HepMC-2.06.09-22.fc29 (FEDORA-2018-7dfd53f004)
C++ Event Record for Monte Carlo Generators
--------------------------------------------------------------------------------
Update Information:
Fix segmentation fault.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 2.06.09-22
- Fix a segmentation fault (continue vs. break)
--------------------------------------------------------------------------------
================================================================================
cairo-1.16.0-3.fc29 (FEDORA-2018-3a195026f5)
A 2D graphics library
--------------------------------------------------------------------------------
Update Information:
This update lowers amount of color artefacts around glyphs when subpixel
rendering is enabled for text by using freetype's default LCD filter. It also
fixes a crash caused by using of wrong function for freeing of memory
(CVE-2018-19876).
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Marek Kasik <mkasik(a)redhat.com> - 1.16.0-3
- Use FT_Done_MM_Var instead of free when available in
- cairo_ft_apply_variations
* Fri Dec 7 2018 Marek Kasik <mkasik(a)redhat.com> - 1.16.0-2
- Set default LCD filter to FreeType's default
- Resolves: #1645763
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1645763 - ClearType enablement: strong color fringing that is not present in
vanilla build from freetype git
https://bugzilla.redhat.com/show_bug.cgi?id=1645763
--------------------------------------------------------------------------------
================================================================================
calligra-3.1.0-11.fc29 (FEDORA-2018-7569f3491e)
An integrated office suite
--------------------------------------------------------------------------------
Update Information:
Re-enable building stage application.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Rex Dieter <rdieter(a)fedoraproject.org> - 3.1.0-11
- (re)enable stage (#1518400)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1518400 - (re)enable calligra stage
https://bugzilla.redhat.com/show_bug.cgi?id=1518400
--------------------------------------------------------------------------------
================================================================================
clover2-8.1.1-1.D20181208gitd8b1b9a.fc29 (FEDORA-2018-cd8a4fa7e1)
Yet another compiler language
--------------------------------------------------------------------------------
Update Information:
New version 8.1.1 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Mamoru TASAKA <mtasaka(a)fedoraproject.org> -
8.1.1-1.D20181208gitd8b1b9a
- 8.1.1
* Sun Nov 18 2018 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> -
7.5.0-2.D2018112gitb3d1611
- Use C.UTF-8 locale
See
https://fedoraproject.org/wiki/Changes/Remove_glibc-langpacks-all_from_bu...
--------------------------------------------------------------------------------
================================================================================
codeblocks-17.12-9.fc29 (FEDORA-2018-deee150c92)
An open source, cross platform, free C++ IDE
--------------------------------------------------------------------------------
Update Information:
Rebuild against wx3.0 with gtk2.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Scott Talbert <swt(a)techie.net> - 17.12-9
- Rebuild against wxWidgets 3.0 (GTK+ 2 version)
* Wed Aug 15 2018 Scott Talbert <swt(a)techie.net> - 17.12-8
- Rebuild against wxWidgets 3.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1599539 - Rebuild with wxWidgets 3.0
https://bugzilla.redhat.com/show_bug.cgi?id=1599539
--------------------------------------------------------------------------------
================================================================================
corosync-2.99.5-1.fc29 (FEDORA-2018-1f8278fb9a)
The Corosync Cluster Engine and Application Programming Interfaces
--------------------------------------------------------------------------------
Update Information:
This update improves stability and addresses several bugs ---- Add
libknet1-crypto-nss-plugin dependency
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Jan Friesse <jfriesse(a)redhat.com> - 2.99.5-1
- New upstream release
* Tue Dec 4 2018 Jan Friesse <jfriesse(a)redhat.com> - 2.99.4-2
- Add libknet1-crypto-nss-plugin dependency
--------------------------------------------------------------------------------
================================================================================
eclipse-egit-5.2.0-1.fc29 (FEDORA-2018-553f145668)
Eclipse Git Integration
--------------------------------------------------------------------------------
Update Information:
Update to latest release of JGit and Egit. See the upstream release notes: *
https://wiki.eclipse.org/EGit/New_and_Noteworthy/5.2 *
https://wiki.eclipse.org/JGit/New_and_Noteworthy/5.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Mat Booth <mat.booth(a)redhat.com> - 5.2.0-1
- Update to 5.2.0 release
--------------------------------------------------------------------------------
================================================================================
eclipse-egit-github-5.2.0-1.fc29 (FEDORA-2018-553f145668)
Eclipse EGit Mylyn GitHub Connector
--------------------------------------------------------------------------------
Update Information:
Update to latest release of JGit and Egit. See the upstream release notes: *
https://wiki.eclipse.org/EGit/New_and_Noteworthy/5.2 *
https://wiki.eclipse.org/JGit/New_and_Noteworthy/5.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Mat Booth <mat.booth(a)redhat.com> - 5.2.0-1
- Update to 5.2.0 release
--------------------------------------------------------------------------------
================================================================================
eclipse-jgit-5.2.0-2.fc29 (FEDORA-2018-553f145668)
Eclipse JGit
--------------------------------------------------------------------------------
Update Information:
Update to latest release of JGit and Egit. See the upstream release notes: *
https://wiki.eclipse.org/EGit/New_and_Noteworthy/5.2 *
https://wiki.eclipse.org/JGit/New_and_Noteworthy/5.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Mat Booth <mat.booth(a)redhat.com> - 5.2.0-2
- Full rebuild
* Fri Dec 7 2018 Mat Booth <mat.booth(a)redhat.com> - 5.2.0-1
- Update to 5.2.0 release
- Port to apache-sshd 2.1.0
--------------------------------------------------------------------------------
================================================================================
ed25519-java-0.3.0-2.fc29 (FEDORA-2018-553f145668)
Implementation of EdDSA (Ed25519) in Java
--------------------------------------------------------------------------------
Update Information:
Update to latest release of JGit and Egit. See the upstream release notes: *
https://wiki.eclipse.org/EGit/New_and_Noteworthy/5.2 *
https://wiki.eclipse.org/JGit/New_and_Noteworthy/5.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Mat Booth <mat.booth(a)redhat.com> - 0.3.0-2
- Make dep on sun.security.x509 optional
--------------------------------------------------------------------------------
================================================================================
elementary-icon-theme-5.0.1-1.fc29 (FEDORA-2018-3b814d9f5e)
Icons from the Elementary Project
--------------------------------------------------------------------------------
Update Information:
Update to version 5.0.1. This release brings minor consistency fixes and some
new icons. Release notes:
https://github.com/elementary/icons/releases/tag/5.0.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Fabio Valentini <decathorpe(a)gmail.com> - 5.0.1-1
- Update to version 5.0.1.
--------------------------------------------------------------------------------
================================================================================
gala-0.3.1-0.17.20181205.git66a95e0.fc29 (FEDORA-2018-648d408dc9)
Gala window manager
--------------------------------------------------------------------------------
Update Information:
Bump to commit 66a95e0. This fixes a glitch that occurred when closing PiP
windows. See:
https://github.com/elementary/gala/commit/66a95e0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Fabio Valentini <decathorpe(a)gmail.com> -
0.3.1-0.17.20181205.git66a95e0
- Bump to commit 66a95e0.
--------------------------------------------------------------------------------
================================================================================
geolite2-20181204-1.fc29 (FEDORA-2018-ac70d47532)
Free IP geolocation databases
--------------------------------------------------------------------------------
Update Information:
- Latest upstream
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Carl George <carl(a)george.computer> - 20181204-1
- Latest upstream
--------------------------------------------------------------------------------
================================================================================
golang-github-namedotcom-0-0.1.20181207git08470be.fc29 (FEDORA-2018-201fe19df1)
Name.com API Go client
--------------------------------------------------------------------------------
Update Information:
- Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655679 - Review Request: golang-github-namedotcom -
Name.com API Go client
https://bugzilla.redhat.com/show_bug.cgi?id=1655679
--------------------------------------------------------------------------------
================================================================================
golang-github-ovh-0-0.2.20181207gitba5adb4.fc29 (FEDORA-2018-e3ff13041b)
Simple Go wrapper for the OVH API
--------------------------------------------------------------------------------
Update Information:
- Initial package - Skip tests on s390x
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655785 - Review Request: golang-github-ovh - Simple Go wrapper for the OVH
API
https://bugzilla.redhat.com/show_bug.cgi?id=1655785
--------------------------------------------------------------------------------
================================================================================
golang-github-timewasted-linode-0-0.1.20181207git37e8452.fc29 (FEDORA-2018-393a0f33d1)
Go library for interacting with the Linode v3 API
--------------------------------------------------------------------------------
Update Information:
- Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655664 - Review Request: golang-github-timewasted-linode - Go library for
interacting with the Linode v3 API
https://bugzilla.redhat.com/show_bug.cgi?id=1655664
--------------------------------------------------------------------------------
================================================================================
google-noto-fonts-20170919-2.fc29 (FEDORA-2018-a23128d01b)
Hinted and Non Hinted OpenType fonts for Unicode scripts
--------------------------------------------------------------------------------
Update Information:
This update provides newer release of Google Noto fonts and fix wrong alias for
Noto Mono.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Akira TAGOh <tagoh(a)redhat.com> - 20170919-2
- Classify Noto Mono to monospace. (#1628812)
* Fri Dec 7 2018 Akira TAGOH <tagoh(a)redhat.com> - 20170919-1
- Updates to 20170919 (#1636511)
- Remove Group tag.
- Don't call fc-cache in scriptlets. this isn't needed anymore.
- Drop BR: fontforge.
- Fix sub-packaging
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1636511 - update Google Noto to 2017-09-19 release
https://bugzilla.redhat.com/show_bug.cgi?id=1636511
[ 2 ] Bug #1628812 - typo in 66-google-noto-mono.conf
https://bugzilla.redhat.com/show_bug.cgi?id=1628812
--------------------------------------------------------------------------------
================================================================================
ibus-typing-booster-2.3.1-1.fc29 (FEDORA-2018-9d5bf12326)
A completion input method
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.1; Update translations from zanata (cs, de, es, fr, ja, pl, pt_BR,
uk, zh_CN updated); Update emoji data;
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Mike FABIAN <mfabian(a)redhat.com> - 2.3.1-1
- Update to 2.3.1
- Update translations from zanata (cs, de, es, fr, ja, pl, pt_BR, uk, zh_CN updated)
- Avoid some PyGTKDeprecationWarnings
- Don���t show Unicode 12.0 draft emoji by default in emoji-picker
- Update emoji data to Unicode 12.0 draft
- Update emoji annotations from CLDR
--------------------------------------------------------------------------------
================================================================================
irclog2html-2.17.1-1.fc29 (FEDORA-2018-6fab558966)
A script to convert IRC logs to HTML and other formats
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release 2.17.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Fabian Affolter <mail(a)fabian-affolter.ch> - 2.17.1-1
- Update to latest upstream release 2.17.1
--------------------------------------------------------------------------------
================================================================================
libburn-1.5.0-1.fc29 (FEDORA-2018-470945e132)
Library for reading, mastering and writing optical discs
--------------------------------------------------------------------------------
Update Information:
libisofs 1.5.0 ============== * New API call iso_image_get_ignore_aclea(),
new iso_image_set_ignore_aclea() and iso_file_source_get_aa_string() flag bit3
to import all xattr namespaces * New API calls iso_image_was_blind_attrs(),
iso_local_set_attrs_errno(). * New flag bit7 with iso_local_set_attrs() to
avoid unnecessary write attempts. * New return value 2 of
IsoFileSource.get_aa_string() and iso_local_get_attrs(). * Now putting user
defined padding after appended partitions. * Bug fix: Add-on sessions with
partition offset claimed too many blocks as size. Regression of version 1.4.8.
* Bug fix: Long Joliet names without dot were mangled with one character too
many. Long Joliet names with leading dot were mangled one char too short. *
Bug fix: Reading beyond array end for HFS+ production caused SIGSEGV with
FreeBSD 11 CLANG -O2. Thanks ASX of GhostBSD. libburn 1.5.0 ============= *
Bug fix: cdrskin threw errno 22 on data file input if libburn is configured with
--enable-track-src-odirect * Bug fix: SIGSEGV could happen if a track ended by
reaching its fixed size while the track source still was willing to deliver
bytes. Thanks to user swordragon. * Bug fix: Device file comparison parameters
were recorded wrong with Linux sg libisoburn 1.5.0 ================ * Bug
fix: Multi-session emulation was not recognized with non-zero partition offset
* New bit10 of isoburn_drive_aquire() to accept all xattr namespaces * New
-xattr mode "any" to process all xattr namespaces of local filesystem * New
-as mkisofs option --xattr-any * New -as mkisofs options -uid and -gid
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Robert Scheck <robert(a)fedoraproject.org> 1.5.0-1
- Upgrade to 1.5.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1633872 - RPM installs "extract ISO-image" service menu for KDE4
but nothing for KDE 5
https://bugzilla.redhat.com/show_bug.cgi?id=1633872
--------------------------------------------------------------------------------
================================================================================
libisoburn-1.5.0-1.fc29 (FEDORA-2018-470945e132)
Library to enable creation and expansion of ISO-9660 filesystems
--------------------------------------------------------------------------------
Update Information:
libisofs 1.5.0 ============== * New API call iso_image_get_ignore_aclea(),
new iso_image_set_ignore_aclea() and iso_file_source_get_aa_string() flag bit3
to import all xattr namespaces * New API calls iso_image_was_blind_attrs(),
iso_local_set_attrs_errno(). * New flag bit7 with iso_local_set_attrs() to
avoid unnecessary write attempts. * New return value 2 of
IsoFileSource.get_aa_string() and iso_local_get_attrs(). * Now putting user
defined padding after appended partitions. * Bug fix: Add-on sessions with
partition offset claimed too many blocks as size. Regression of version 1.4.8.
* Bug fix: Long Joliet names without dot were mangled with one character too
many. Long Joliet names with leading dot were mangled one char too short. *
Bug fix: Reading beyond array end for HFS+ production caused SIGSEGV with
FreeBSD 11 CLANG -O2. Thanks ASX of GhostBSD. libburn 1.5.0 ============= *
Bug fix: cdrskin threw errno 22 on data file input if libburn is configured with
--enable-track-src-odirect * Bug fix: SIGSEGV could happen if a track ended by
reaching its fixed size while the track source still was willing to deliver
bytes. Thanks to user swordragon. * Bug fix: Device file comparison parameters
were recorded wrong with Linux sg libisoburn 1.5.0 ================ * Bug
fix: Multi-session emulation was not recognized with non-zero partition offset
* New bit10 of isoburn_drive_aquire() to accept all xattr namespaces * New
-xattr mode "any" to process all xattr namespaces of local filesystem * New
-as mkisofs option --xattr-any * New -as mkisofs options -uid and -gid
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Robert Scheck <robert(a)fedoraproject.org> 1.5.0-1
- Upgrade to 1.5.0
- Provide KDE service menu entry for KDE 4 and 5 (#1633872)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1633872 - RPM installs "extract ISO-image" service menu for KDE4
but nothing for KDE 5
https://bugzilla.redhat.com/show_bug.cgi?id=1633872
--------------------------------------------------------------------------------
================================================================================
libisofs-1.5.0-1.fc29 (FEDORA-2018-470945e132)
Library to create ISO 9660 disk images
--------------------------------------------------------------------------------
Update Information:
libisofs 1.5.0 ============== * New API call iso_image_get_ignore_aclea(),
new iso_image_set_ignore_aclea() and iso_file_source_get_aa_string() flag bit3
to import all xattr namespaces * New API calls iso_image_was_blind_attrs(),
iso_local_set_attrs_errno(). * New flag bit7 with iso_local_set_attrs() to
avoid unnecessary write attempts. * New return value 2 of
IsoFileSource.get_aa_string() and iso_local_get_attrs(). * Now putting user
defined padding after appended partitions. * Bug fix: Add-on sessions with
partition offset claimed too many blocks as size. Regression of version 1.4.8.
* Bug fix: Long Joliet names without dot were mangled with one character too
many. Long Joliet names with leading dot were mangled one char too short. *
Bug fix: Reading beyond array end for HFS+ production caused SIGSEGV with
FreeBSD 11 CLANG -O2. Thanks ASX of GhostBSD. libburn 1.5.0 ============= *
Bug fix: cdrskin threw errno 22 on data file input if libburn is configured with
--enable-track-src-odirect * Bug fix: SIGSEGV could happen if a track ended by
reaching its fixed size while the track source still was willing to deliver
bytes. Thanks to user swordragon. * Bug fix: Device file comparison parameters
were recorded wrong with Linux sg libisoburn 1.5.0 ================ * Bug
fix: Multi-session emulation was not recognized with non-zero partition offset
* New bit10 of isoburn_drive_aquire() to accept all xattr namespaces * New
-xattr mode "any" to process all xattr namespaces of local filesystem * New
-as mkisofs option --xattr-any * New -as mkisofs options -uid and -gid
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Robert Scheck <robert(a)fedoraproject.org> 1.5.0-1
- Upgrade to 1.5.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1633872 - RPM installs "extract ISO-image" service menu for KDE4
but nothing for KDE 5
https://bugzilla.redhat.com/show_bug.cgi?id=1633872
--------------------------------------------------------------------------------
================================================================================
libmicrohttpd-0.9.61-1.fc29 (FEDORA-2018-2ecaaa1060)
Lightweight library for embedding a webserver in applications
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.61-1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 1:0.9.61-1
- Update to latest version
- Drop obsolete scriptlets
--------------------------------------------------------------------------------
================================================================================
libreport-2.9.7-1.fc29 (FEDORA-2018-67d5c02581)
Generic library for reporting various problems
--------------------------------------------------------------------------------
Update Information:
- reportclient: Find and download required debuginfo packages
- lib: Add a null guard
- gui-wizard-gtk: Require GTK+ 3.10
- gui-wizard-gtk: Don���t set GtkButton:xalign
- gui-wizard-gtk: Replace use of GtkTable
- gui-wizard-gtk: Show warnings inline on progress page
- gui-wizard-gtk: Remove unused size group
- gui-wizard-gtk: Replace Gtk{H,V}Box with GtkBox
- gui-wizard-gtk: Remove unneeded windows
- gtk-helpers: config_dialog: Hide tree view header
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Matej Marusak <mmarusak(a)redhat.com> 2.9.7-1
- reportclient: Search for required packages recursively
- event_config: Modify unusable backtrace message
- reportclient: Find and download required debuginfo packages
- lib: Explicitly do not use DST
- autogen: List make in sysdeps command
- lib: Seek beginning of mountinfo file
- report-client: Find debuginfos in own method
- lib: Add a null guard
- gui-wizard-gtk: Require GTK+ 3.10
- gui-wizard-gtk: Don���t set GtkButton:xalign
- gui-wizard-gtk: Replace use of GtkTable
- gui-wizard-gtk: Show warnings inline on progress page
- gui-wizard-gtk: Remove unused size group
- gui-wizard-gtk: Replace Gtk{H,V}Box with GtkBox
- gui-wizard-gtk: Remove unneeded windows
- gtk-helpers: config_dialog: Hide tree view header
- augeas: Use generic augeas modules
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1515265 - Reporting disabled because the backtrace is unusable
https://bugzilla.redhat.com/show_bug.cgi?id=1515265
[ 2 ] Bug #1327813 - "Processing failed" message is visually broken
https://bugzilla.redhat.com/show_bug.cgi?id=1327813
[ 3 ] Bug #1220158 - Part of the window is invisible and buttons are unable to get
clicked
https://bugzilla.redhat.com/show_bug.cgi?id=1220158
--------------------------------------------------------------------------------
================================================================================
livecd-tools-26.1-1.fc29 (FEDORA-2018-82f85b0db9)
Tools for building live CDs
--------------------------------------------------------------------------------
Update Information:
Update to 26.1 to fix issues with making SELinux-enabled images
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Neal Gompa <ngompa13(a)gmail.com> - 1:26.1-1
- Bump version to 26.1 (ngompa13)
- Run setfiles after chroot (noto.kazufumi)
- imgcreate/dnfinst: Force latest packages from only specified repos (ngompa13)
--------------------------------------------------------------------------------
================================================================================
lorax-29.22-1.fc29 (FEDORA-2018-dfed1220ef)
Tool for creating the anaconda install images
--------------------------------------------------------------------------------
Update Information:
- lorax-composer: Handle packages with multiple builds - lorax-composer: Check
the queue and results at startup ---- - New lorax documentation - 29.21
(bcl(a)redhat.com) - lorax-composer: Install selinux-policy-targeted in images
(bcl(a)redhat.com) - Remove setfiles from mkrootfsimage (bcl(a)redhat.com) -
Remove SELinux Permissive checks (bcl(a)redhat.com) - Add --no-system-repos to
lorax-composer (bcl(a)redhat.com)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 6 2018 Brian C. Lane <bcl(a)redhat.com> 29.22-1
- lorax-composer: Handle packages with multiple builds (bcl(a)redhat.com)
- lorax-composer: Check the queue and results at startup (bcl(a)redhat.com)
* Thu Nov 29 2018 Brian C. Lane <bcl(a)redhat.com> 29.21-1
- New lorax documentation - 29.21 (bcl(a)redhat.com)
- lorax-composer: Install selinux-policy-targeted in images (bcl(a)redhat.com)
- Remove setfiles from mkrootfsimage (bcl(a)redhat.com)
- Remove SELinux Permissive checks (bcl(a)redhat.com)
- Add --no-system-repos to lorax-composer (bcl(a)redhat.com)
* Mon Oct 29 2018 Brian C. Lane <bcl(a)redhat.com> 29.20-1
- New lorax documentation - 29.20 (bcl(a)redhat.com)
- Add tests for ltmpl.py (bcl(a)redhat.com)
- Move get_dnf_base_object into a module (bcl(a)redhat.com)
- Build manpages for composer-cli and lorax-composer (bcl(a)redhat.com)
- Fix singlerepo test for f29 (bcl(a)redhat.com)
- Update the projects tests to use DNF Repo object (bcl(a)redhat.com)
- dnf changed the type of gpgkey to a tuple (bcl(a)redhat.com)
- Install python3-librepo in the test container (bcl(a)redhat.com)
* Fri Oct 12 2018 Brian C. Lane <bcl(a)redhat.com> 29.19-1
- Update depsolving with suggestions from dnf (#1636239) (bcl(a)redhat.com)
- Disable false context-manager pylint error (bcl(a)redhat.com)
- Fix directory creation for blueprints (bcl(a)redhat.com)
- Update the tests for new make_dnf_dir arguments. (bcl(a)redhat.com)
- Change make_dnf_dirs to be run as root (bcl(a)redhat.com)
--------------------------------------------------------------------------------
================================================================================
lvm2-2.02.183-1.fc29 (FEDORA-2018-4f678211c1)
Userland logical volume management tools
--------------------------------------------------------------------------------
Update Information:
Bug fix release addressing issus with MD RAID version 1.0 and 0.90.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Marian Csontos <mcsontos(a)redhat.com> - 2.02.183-1
- Bug fix release addressing issus with MD RAID version 1.0 and 0.90.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1589444 - Cannot activate LVs in VG xxx while PVs appear on duplicate
devices.
https://bugzilla.redhat.com/show_bug.cgi?id=1589444
--------------------------------------------------------------------------------
================================================================================
mbedtls-2.14.1-1.fc29 (FEDORA-2018-571ea64f3d)
Light-weight cryptographic and SSL/TLS library
--------------------------------------------------------------------------------
Update Information:
- Update to 2.14.1 - CVE-2018-19608 (#1656784) Release notes:
https://tls.mbed.org/tech-
updates/releases/mbedtls-2.14.1-2.7.8-and-2.1.17-released Security Advisory:
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-
advisory-2018-03 ---- - Update to 2.14.0 Release notes:
https://tls.mbed.org/tech-
updates/releases/mbedtls-2.14.0-2.7.7-and-2.1.16-released
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Morten Stevens <mstevens(a)fedoraproject.org> - 2.14.1-1
- Update to 2.14.1
- CVE-2018-19608 (#1656784)
* Mon Dec 3 2018 Morten Stevens <mstevens(a)fedoraproject.org> - 2.14.0-1
- Update to 2.14.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656784 - CVE-2018-19608 mbedtls: Local timing attack on RSA decryption
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1656784
--------------------------------------------------------------------------------
================================================================================
midori-7.0-1.fc29 (FEDORA-2018-380c88a91a)
a lightweight, fast and free web browser
--------------------------------------------------------------------------------
Update Information:
Update to 7.0
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 6 2018 Kevin Fenzi <kevin(a)scrye.com> - 7.0-1
- Update to 7.0
* Tue Nov 6 2018 Kevin Fenzi <kevin(a)scrye.com> - 6.0-1
- Update to 6.0
* Thu Oct 18 2018 Kevin Fenzi <kevin(a)scrye.com> - 0.6.0-0.1.20181018git
- Update to 20181018
* Sun Sep 23 2018 Kevin Fenzi <kevin(a)scrye.com> - 0.6.0-0.1.20180923git
- Initial versionn of vala based browser
--------------------------------------------------------------------------------
================================================================================
module-build-service-2.9.1-1.fc29 (FEDORA-2018-e181849ec4)
The Module Build Service for Modularity
--------------------------------------------------------------------------------
Update Information:
Release v2.9.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 mprahl <mprahl(a)redhat.com> - 2.9.1-1
- new version
--------------------------------------------------------------------------------
================================================================================
origin-3.11.1-1.fc29 (FEDORA-2018-314913636b)
OpenShift Open Source Container Management by Red Hat
--------------------------------------------------------------------------------
Update Information:
* Rebase to upstream 8de5c3442e56dbe05403990ce0821746673fd588, let's call it
3.11.1 * Fix for CVE-2018-1002105
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Jakub ��ajka <jcajka(a)fedoraproject.org> - 3.11.1-1
- Rebase to upstream 8de5c3442e56dbe05403990ce0821746673fd588, let's call it 3.11.1
- Fix for CVE-2018-1002105
- Resolves: BZ#1656650
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1648138 - CVE-2018-1002105 kubernetes: authentication/authorization bypass in
the handling of non-101 responses
https://bugzilla.redhat.com/show_bug.cgi?id=1648138
--------------------------------------------------------------------------------
================================================================================
perl-Config-Model-2.129-1.fc29 (FEDORA-2018-86bc59da2d)
Framework to create configuration validation tools and editors
--------------------------------------------------------------------------------
Update Information:
Updated to the latest version
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 6 2018 Jitka Plesnikova <jplesnik(a)redhat.com> - 2.129-1
- 2.129 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656894 - Upgrade perl-Config-Model to 2.129
https://bugzilla.redhat.com/show_bug.cgi?id=1656894
--------------------------------------------------------------------------------
================================================================================
perl-Test-WWW-Mechanize-1.52-1.fc29 (FEDORA-2018-ec6166c236)
Testing-specific WWW::Mechanize subclass
--------------------------------------------------------------------------------
Update Information:
Upstream update.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Ralf Cors��pius <corsepiu(a)fedoraproject.org> - 1.52-1
- Update to 1.52.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656899 - Upgrade perl-Test-WWW-Mechanize to 1.52
https://bugzilla.redhat.com/show_bug.cgi?id=1656899
--------------------------------------------------------------------------------
================================================================================
perl-Types-DateTime-0.002-2.fc29 (FEDORA-2018-af0cfd43f0)
Type constraints and coercions for datetime objects
--------------------------------------------------------------------------------
Update Information:
Initial release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656533 - Review Request: perl-Types-DateTime - Type constraints and
coercions for datetime objects
https://bugzilla.redhat.com/show_bug.cgi?id=1656533
--------------------------------------------------------------------------------
================================================================================
perl-Web-ID-1.927-1.fc29 (FEDORA-2018-f74e827977)
Implementation of WebID (a.k.a. FOAF+SSL)
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656536 - Review Request: perl-Web-ID - Implementation of WebID
https://bugzilla.redhat.com/show_bug.cgi?id=1656536
--------------------------------------------------------------------------------
================================================================================
perl-match-simple-0.010-1.fc29 (FEDORA-2018-a273ccaebe)
Simplified clone of smartmatch operator
--------------------------------------------------------------------------------
Update Information:
Initial release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656535 - Review Request: perl-match-simple - Simplified clone of smartmatch
operator
https://bugzilla.redhat.com/show_bug.cgi?id=1656535
--------------------------------------------------------------------------------
================================================================================
perl-match-simple-XS-0.001-2.fc29 (FEDORA-2018-f4ccdad5ec)
XS backend for match::simple
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656537 - Review Request: perl-match-simple-XS - XS backend for
match::simple
https://bugzilla.redhat.com/show_bug.cgi?id=1656537
--------------------------------------------------------------------------------
================================================================================
php-7.2.13-2.fc29 (FEDORA-2018-7ebfe1e6f2)
PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:
**PHP version 7.2.13** (06 Dec 2018) **ftp:** * Fixed bug php#77151
(ftp_close(): SSL_read on shutdown). (Remi) **CLI:** * Fixed bug php#77111
(php-win.exe corrupts unicode symbols from cli parameters). (Anatol)
**Fileinfo:** * Fixed bug php#77095 (slowness regression in 7.2/7.3 (compared
to 7.1)). (Anatol) **iconv:** * Fixed bug php#77147 (Fixing 60494 ignored
ICONV_MIME_DECODE_CONTINUE_ON_ERROR). (cmb) **Core:** * Fixed bug php#77231
(Segfault when using convert.quoted-printable-encode filter). (Stas) **IMAP:**
* Fixed bug php#77153 (imap_open allows to run arbitrary shell commands via
mailbox parameter). (Stas) **ODBC:** * Fixed bug php#77079 (odbc_fetch_object
has incorrect type signature). (Jon Allen) **Opcache:** * Fixed bug php#77058
(Type inference in opcache causes side effects). (Nikita) * Fixed bug php#77092
(array_diff_key() - segmentation fault). (Nikita) **Phar:** * Fixed bug
php#77022 (PharData always creates new files with mode 0666). (Stas) * Fixed bug
php#77143 (Heap Buffer Overflow (READ: 4) in phar_parse_pharfile). (Stas)
**PGSQL:** * Fixed bug php#77047 (pg_convert has a broken regex for the 'TIME
WITHOUT TIMEZONE' data type). (Andy Gajetzki) **SOAP:** * Fixed bug php#50675
(SoapClient can't handle object references correctly). (Cameron Porter) * Fixed
bug php#76348 (WSDL_CACHE_MEMORY causes Segmentation fault). (cmb) * Fixed bug
php#77141 (Signedness issue in SOAP when precision=-1). (cmb) **Sockets:** *
Fixed bug php#67619 (Validate length on socket_write). (thiagooak) ---- **From
upstream** **IMAP** * Fix php#77020 null pointer dereference in imap_mail
CVE-2018-19935
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Remi Collet <remi(a)remirepo.net> - 7.2.13-2
- Fix null pointer dereference in imap_mail CVE-2018-19935
* Wed Dec 5 2018 Remi Collet <remi(a)remirepo.net> - 7.2.13-1
- Update to 7.2.13 -
http://www.php.net/releases/7_2_13.php
* Wed Nov 21 2018 Remi Collet <remi(a)remirepo.net> - 7.2.13-0.1.RC1
- update to 7.2.13RC1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1654228 - CVE-2018-19518 php: imap_open() allows running arbitrary shell
commands via mailbox parameter
https://bugzilla.redhat.com/show_bug.cgi?id=1654228
--------------------------------------------------------------------------------
================================================================================
php-pecl-apcu-5.1.15-1.fc29 (FEDORA-2018-48ba596b99)
APC User Cache
--------------------------------------------------------------------------------
Update Information:
**Version 5.1.15** * Restore `apc.serializer=php` as the default, as the
`default` serializer still/again has issues. * Fix possible issues in
persistence of arrays with the `default` serializer. * Attempt to reduce
shared memory fragmentation.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 5.1.15-1
- update to 5.1.15
--------------------------------------------------------------------------------
================================================================================
php-sebastian-environment4-4.0.1-1.fc29 (FEDORA-2018-542430e4bb)
Handle HHVM/PHP environments
--------------------------------------------------------------------------------
Update Information:
This component provides functionality that helps writing PHP code that has
runtime-specific (PHP / HHVM) execution paths.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655423 - Review Request: php-sebastian-environment4 - Handle HHVM/PHP
environments
https://bugzilla.redhat.com/show_bug.cgi?id=1655423
--------------------------------------------------------------------------------
================================================================================
php-symfony-2.8.49-1.fc29 (FEDORA-2018-b38a4dd0c7)
PHP framework for web projects
--------------------------------------------------------------------------------
Update Information:
**Version 2.8.49** (2018-12-06) * security
[
CVE-2018-19790](https://symfony.com/cve-2018-19790) [Security\Http] detect bad
redirect targets using backslashes (@xabbuh) * security
[
CVE-2018-19789](https://symfony.com/cve-2018-19789) [Form] Filter file uploads
out of regular form types (@nicolas-grekas)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 2.8.49-1
- update to 2.8.49
--------------------------------------------------------------------------------
================================================================================
php-symfony3-3.4.20-1.fc29 (FEDORA-2018-8d3a9bdff1)
Symfony PHP framework (version 3)
--------------------------------------------------------------------------------
Update Information:
**Version 3.4.20** (2018-12-06) * security
[
CVE-2018-19790](https://symfony.com/cve-2018-19790) [Security\Http] detect bad
redirect targets using backslashes (@xabbuh) * security
[
CVE-2018-19789](https://symfony.com/cve-2018-19789) [Form] Filter file uploads
out of regular form types (@nicolas-grekas) * bug #29436 [Cache] Fixed
Memcached adapter doClear()to call flush() (raitocz) * bug #29441 [Routing]
ignore trailing slash for non-GET requests (nicolas-grekas) * bug #29432 [DI]
dont inline when lazy edges are found (nicolas-grekas) * bug #29413
[Serializer] fixed DateTimeNormalizer to maintain microseconds when a different
timezone required (rvitaliy) * bug #29424 [Routing] fix taking verb into
account when redirecting (nicolas-grekas) * bug #29414 [DI] Fix dumping
expressions accessing single-use private services (chalasr) * bug #29375
[Validator] Allow `ConstraintViolation::__toString()` to expose codes that are
not null or emtpy strings (phansys) * bug #29376 [EventDispatcher] Fix
eventListener wrapper loop in TraceableEventDispatcher (jderusse) * bug #29343
[Form] Handle all case variants of "nan" when parsing a number (mwhudson,
xabbuh) * bug #29355 [PropertyAccess] calculate cache keys for property setters
depending on the value (xabbuh) * bug #29369 [DI] fix combinatorial explosion
when analyzing the service graph (nicolas-grekas) * bug #29349 [Debug]
workaround opcache bug mutating "$this" !?! (nicolas-grekas)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 3.4.20-1
- update to 3.4.20
--------------------------------------------------------------------------------
================================================================================
php-symfony4-4.1.9-1.fc29 (FEDORA-2018-84a1f77d89)
Symfony PHP framework (version 4)
--------------------------------------------------------------------------------
Update Information:
**Version 4.1.9** (2018-12-06) * security
[
CVE-2018-19790](https://symfony.com/cve-2018-19790) [Security\Http] detect bad
redirect targets using backslashes (@xabbuh) * security
[
CVE-2018-19789](https://symfony.com/cve-2018-19789) [Form] Filter file uploads
out of regular form types (@nicolas-grekas) * bug #29436 [Cache] Fixed
Memcached adapter doClear()to call flush() (raitocz) * bug #29441 [Routing]
ignore trailing slash for non-GET requests (nicolas-grekas) * bug #29444
[Workflow] Fixed BC break for Workflow metadata (lyrixx) * bug #29432 [DI] dont
inline when lazy edges are found (nicolas-grekas) * bug #29413 [Serializer]
fixed DateTimeNormalizer to maintain microseconds when a different timezone
required (rvitaliy) * bug #29424 [Routing] fix taking verb into account when
redirecting (nicolas-grekas) * bug #29414 [DI] Fix dumping expressions
accessing single-use private services (chalasr) * bug #29375 [Validator] Allow
`ConstraintViolation::__toString()` to expose codes that are not null or emtpy
strings (phansys) * bug #29376 [EventDispatcher] Fix eventListener wrapper loop
in TraceableEventDispatcher (jderusse) * bug #29386 undeprecate the single-
colon notation for controllers (fbourigault) * bug #29393 [DI] fix edge case in
InlineServiceDefinitionsPass (nicolas-grekas) * bug #29380 [Routing] fix
greediness of trailing slash (nicolas-grekas) * bug #29343 [Form] Handle all
case variants of "nan" when parsing a number (mwhudson, xabbuh) * bug #29373
[Routing] fix trailing slash redirection (nicolas-grekas) * bug #29355
[PropertyAccess] calculate cache keys for property setters depending on the
value (xabbuh) * bug #29369 [DI] fix combinatorial explosion when analyzing the
service graph (nicolas-grekas) * bug #29349 [Debug] workaround opcache bug
mutating "$this" !?! (nicolas-grekas)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 4.1.9-1
- update to 4.1.9
--------------------------------------------------------------------------------
================================================================================
phpunit7-7.5.0-1.fc29 (FEDORA-2018-799db006bf)
The PHP Unit Testing framework
--------------------------------------------------------------------------------
Update Information:
**Version 7.5.0** - 2018-12-07 **Added** * Implemented
[#3340](https://github.com/sebastianbergmann/phpunit/issues/3340): Added
`assertEqualsCanonicalizing()`, `assertEqualsIgnoringCase()`,
`assertEqualsWithDelta()`, `assertNotEqualsCanonicalizing()`,
`assertNotEqualsIgnoringCase()`, and `assertNotEqualsWithDelta()` as
alternatives to using `assertEquals()` and `assertNotEquals()` with the
`$delta`, `$canonicalize`, or `$ignoreCase` parameters * Implemented
[#3368](https://github.com/sebastianbergmann/phpunit/issues/3368): Added
`assertIsArray()`, `assertIsBool()`, `assertIsFloat()`, `assertIsInt()`,
`assertIsNumeric()`, `assertIsObject()`, `assertIsResource()`,
`assertIsString()`, `assertIsScalar()`, `assertIsCallable()`,
`assertIsIterable()`, `assertIsNotArray()`, `assertIsNotBool()`,
`assertIsNotFloat()`, `assertIsNotInt()`, `assertIsNotNumeric()`,
`assertIsNotObject()`, `assertIsNotResource()`, `assertIsNotString()`,
`assertIsNotScalar()`, `assertIsNotCallable()`, `assertIsNotIterable()` as
alternatives to `assertInternalType()` and `assertNotInternalType()` *
Implemented [#3391](https://github.com/sebastianbergmann/phpunit/issues/3391):
Added a `TestHook` that fires after each test, regardless of result *
Implemented [#3417](https://github.com/sebastianbergmann/phpunit/pull/3417):
Refinements related to test suite sorting and TestDox result printer *
Implemented [#3422](https://github.com/sebastianbergmann/phpunit/issues/3422):
Added `assertStringContainsString()`,
`assertStringContainsStringIgnoringCase()`, `assertStringNotContainsString()`,
and `assertStringNotContainsStringIgnoringCase()` **Deprecated** * The methods
`assertInternalType()` and `assertNotInternalType()` are now deprecated. There
is no behavioral change in this version of PHPUnit. Using these methods will
trigger a deprecation warning in PHPUnit 8 and in PHPUnit 9 these methods will
be removed. * The methods `assertAttributeContains()`,
`assertAttributeNotContains()`, `assertAttributeContainsOnly()`,
`assertAttributeNotContainsOnly()`, `assertAttributeCount()`,
`assertAttributeNotCount()`, `assertAttributeEquals()`,
`assertAttributeNotEquals()`, `assertAttributeEmpty()`,
`assertAttributeNotEmpty()`, `assertAttributeGreaterThan()`,
`assertAttributeGreaterThanOrEqual()`, `assertAttributeLessThan()`,
`assertAttributeLessThanOrEqual()`, `assertAttributeSame()`,
`assertAttributeNotSame()`, `assertAttributeInstanceOf()`,
`assertAttributeNotInstanceOf()`, `assertAttributeInternalType()`,
`assertAttributeNotInternalType()`, `attributeEqualTo()`, `readAttribute()`,
`getStaticAttribute()`, and `getObjectAttribute()` are now deprecated. There is
no behavioral change in this version of PHPUnit. Using these methods will
trigger a deprecation warning in PHPUnit 8 and in PHPUnit 9 these methods will
be removed. * The optional parameters `$delta`, `$maxDepth`, `$canonicalize`,
and `$ignoreCase` of `assertEquals()` and `assertNotEquals()` are now
deprecated. There is no behavioral change in this version of PHPUnit. Using
these parameters will trigger a deprecation warning in PHPUnit 8 and in PHPUnit
9 these parameters will be removed. * The annotations `@expectedException`,
`@expectedExceptionCode`, `@expectedExceptionMessage`, and
`@expectedExceptionMessageRegExp` are now deprecated. There is no behavioral
change in this version of PHPUnit. Using these annotations will trigger a
deprecation warning in PHPUnit 8 and in PHPUnit 9 these annotations will be
removed. * Using the methods `assertContains()` and `assertNotContains()` on
`string` haystacks is now deprecated. There is no behavioral change in this
version of PHPUnit. Using these methods on `string` haystacks will trigger a
deprecation warning in PHPUnit 8 and in PHPUnit 9 these methods cannot be used
on on `string` haystacks anymore. * The optional parameters `$ignoreCase`,
`$checkForObjectIdentity`, and `$checkForNonObjectIdentity` of
`assertContains()` and `assertNotContains()` are now deprecated. There is no
behavioral change in this version of PHPUnit. Using these parameters will
trigger a deprecation warning in PHPUnit 8 and in PHPUnit 9 these parameters
will be removed. **Fixed** * Implemented
[#3428](https://github.com/sebastianbergmann/phpunit/pull/3428): `TestSuite`
setup failures are not logged correctly * Implemented
[#3429](https://github.com/sebastianbergmann/phpunit/pull/3429): Inefficient
loop in `getHookMethods()` * Implemented
[#3437](https://github.com/sebastianbergmann/phpunit/pull/3437): JUnit logger
skips PHPT tests
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 7.5.0-1
- update to 7.5.0
- raise dependency on sebastian/environment 4.0
--------------------------------------------------------------------------------
================================================================================
podman-0.12.1.1-1.git66d3499.fc29 (FEDORA-2018-17c32cf05c)
Manage Pods, Containers and Container Images
--------------------------------------------------------------------------------
Update Information:
Upstream-0.12.1.1 ---- Upstream-0.12.1 ---- Upstream-0.11.1-1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Brent Baude<bbaude(a)redhat.com> - 1:0.12.1.1 -1.git66d3499
- Upstream 0.12.1.1 release
* Thu Dec 6 2018 Brent Baude<bbaude(a)redhat.com> - 1:0.12.1-2.git7ba215f
- Upstream 0.12.1 release
* Sat Nov 10 2018 Dan Walsh <dwalsh(a)redhat.com> - 1:0.11.1-2.gita4adfe5
- Remove dirty flag from podman version
* Thu Nov 8 2018 bbaude <bbaude(a)redhat.com> - 1:0.11.1-1.gita4adfe5
- Upstream 0.11.1-1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1648668 - podman assumes sbin in path
https://bugzilla.redhat.com/show_bug.cgi?id=1648668
[ 2 ] Bug #1641800 - Podman does not attach to container when uid is too long
https://bugzilla.redhat.com/show_bug.cgi?id=1641800
[ 3 ] Bug #1657263 - error setting up OCI Hooks: open /usr/share/containers/oci/hooks.d:
no such file or directory
https://bugzilla.redhat.com/show_bug.cgi?id=1657263
[ 4 ] Bug #1634806 - ERRO[0003] HOSTNAME is not supported for OCI Image format, hostname
eafd6efbf5f6 will be ignored. Must use `docker` format
https://bugzilla.redhat.com/show_bug.cgi?id=1634806
--------------------------------------------------------------------------------
================================================================================
polkit-0.115-4.1.fc29 (FEDORA-2018-2f8696869e)
An authorization framework
--------------------------------------------------------------------------------
Update Information:
Fix of CVE-2018-19788, priv escalation with high UIDs
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Jan Rybar <jrybar(a)redhat.com> - 0.115-4.1
- Fix of CVE-2018-19788, priv escalation with high UIDs
- Resolves: rhbz#1655926
* Thu Sep 27 2018 Owen Taylor <otaylor(a)redhat.com> - 0.115-4
- Fix installation with prefix != /usr
* Fri Jul 20 2018 Jan Rybar <jrybar(a)redhat.com> - 0.115-3
- Warning raised by polkit when disconnected from ssh
- polkitagentlistener: resource leak - pointer to 'server'
- Error message raised on every 'systemctl start' in emergency.target
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655926 - CVE-2018-19788 polkit: Improper handling of user with uid >
INT_MAX leading to authentication bypass [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1655926
--------------------------------------------------------------------------------
================================================================================
python-asyncssh-1.15.0-1.fc29 (FEDORA-2018-73afb6285e)
Asynchronous SSH for Python
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream version
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Georg Sauthoff <mail(a)gms.tf> - 1.15.0-1
- Update to latest upstream version
--------------------------------------------------------------------------------
================================================================================
python-bleach-2.1.4-1.fc29 (FEDORA-2018-bf2cb9e51c)
An easy whitelist-based HTML-sanitizing tool
--------------------------------------------------------------------------------
Update Information:
Update to 2.1.4.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 2.1.4-1
- Update to 2.1.4.
-
https://github.com/mozilla/bleach/blob/v2.1.4/CHANGES
--------------------------------------------------------------------------------
================================================================================
python-transitions-0.6.8-1.fc29 (FEDORA-2018-58728f66c2)
A lightweight, object-oriented finite state machine implementation in Python
--------------------------------------------------------------------------------
Update Information:
New package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1566702 - Review Request: python-transitions - A lightweight, object-oriented
finite state machine implementation in Python
https://bugzilla.redhat.com/show_bug.cgi?id=1566702
--------------------------------------------------------------------------------
================================================================================
qsynth-0.5.4-1.fc29 (FEDORA-2018-f25e280b07)
Qt based Fluidsynth GUI front end
--------------------------------------------------------------------------------
Update Information:
qsynth-0.5.4 ------------------ - Reset button now also resets master Gain,
Reverb and Chorus to their "factory default" values. - Fixed Reverb and
Chorus effects processing when audio output peak-meters are enabled on
FluidSynth API V2. - Old deprecated Qt4 build support is no more. - System
tray options now subject to current desktop environment availability.
qsynth-0.5.3 ------------------ - Current FluidSynth version information
added to command line output (-V, --version). - Overhaul adaptations to the
FluidSynth API V2 (>= 2.0.0). - AppStream metadata updated to be the most
compliant with latest
freedesktop.org specification and recommendation.
qsynth-0.5.2 ------------------ - AppData/AppStream metadata is now settled
under an all permisssive license (FSFAP). qsynth-0.5.1 ------------------ -
Disable singleton/unique application instance setup logic when the display
server platform is not X11. - Fixed deprecated calls to
fluid_synth_get_channel_info(), fluid_synth_set_midi_router() and
fluid_settings_getstr() (as signaled on libfluidsynth >= 1.1.9). - A little
hardening on the configure (autoconf) macro side.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> 0.5.4-1
- Update to 0.5.4
* Sun Nov 25 2018 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> 0.5.3-1
- Update to 0.5.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1446604 - qsynth-0.5.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1446604
--------------------------------------------------------------------------------
================================================================================
qt5-qtwebengine-5.11.3-1.fc29 (FEDORA-2018-02ba093706)
Qt5 - QtWebEngine components
--------------------------------------------------------------------------------
Update Information:
New upstream bugfix and security release, see also changelog:
http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.11.3/?h=v5....
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 4 2018 Rex Dieter <rdieter(a)fedoraproject.org> - 5.11.3-1
- 5.11.3
--------------------------------------------------------------------------------
================================================================================
rust-1.31.0-8.fc29 (FEDORA-2018-11c985c1ed)
The Rust Programming Language
--------------------------------------------------------------------------------
Update Information:
New versions of Rust and related tools, marking the start of Rust 2018 edition!
See the release notes for [1.31](https://blog.rust-
lang.org/2018/12/06/Rust-1.31-and-rust-2018.html). The subpackages for
`clippy`, `rls`, and `rustfmt` no longer have the "-preview" suffix, as these
tools were promoted with the 2018 edition.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 6 2018 Josh Stone <jistone(a)redhat.com> - 1.31.0-8
- Update to 1.31.0 -- Rust 2018!
- clippy/rls/rustfmt are no longer -preview
--------------------------------------------------------------------------------
================================================================================
rust-packaging-6-2.fc29 (FEDORA-2018-11c985c1ed)
RPM macros for building Rust packages on various architectures
--------------------------------------------------------------------------------
Update Information:
New versions of Rust and related tools, marking the start of Rust 2018 edition!
See the release notes for [1.31](https://blog.rust-
lang.org/2018/12/06/Rust-1.31-and-rust-2018.html). The subpackages for
`clippy`, `rls`, and `rustfmt` no longer have the "-preview" suffix, as these
tools were promoted with the 2018 edition.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Igor Gnatenko <ignatenkobrain(a)fedoraproject.org> - 6-2
- Set CARGO_HOME
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.14.2-44.fc29 (FEDORA-2018-0eac5b1bd7)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
More info:
https://koji.fedoraproject.org/koji/buildinfo?buildID=1170559
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.2-44
- Label /usr/share/spamassassin/sa-update.cron as spamd_update_exec_t
- Add dac_override capability to ssad_t domains
- Allow pesign_t domain to read gnome home configs
- Label /usr/libexec/lm_sensors/sensord-service-wrapper as lsmd_exec_t
- Allow rngd_t domains read kernel state
- Allow certmonger_t domains to read bind cache
- Allow ypbind_t domain to stream connect to sssd
- Allow rngd_t domain to setsched
- Allow sanlock_t domain to read/write sysfs_t files
- Add dac_override capability to postfix_local_t domain
- Allow ypbind_t to search sssd_var_lib_t dirs
- Allow virt_qemu_ga_t domain to write to user_tmp_t files
- Allow systemd_logind_t to dbus chat with virt_qemu_ga_t
- Update sssd_manage_lib_files() interface to allow also mmap sssd_var_lib_t files
- Add new interface sssd_signal()
- Update xserver_filetrans_home_content() and xserver_filetrans_admin_home_content()
unterfaces to allow caller domain to create .vnc dir in users homedir labeled as
xdm_home_t
- Update logging_filetrans_named_content() to allow caller domains of this interface to
create /var/log/journal/remote directory labeled as var_log_t
- Add sys_resource capability to the systemd_passwd_agent_t domain
- Allow ipsec_t domains to read bind cache
- kernel/files.fc: Label /run/motd as etc_t
- Allow systemd to stream connect to userdomain processes
- Label /var/lib/private/systemd/ as init_var_lib_t
- Allow initrc_t domain to create new socket labeled as init_T
- Allow audisp_remote_t domain remote logging client to read local audit events from
relevant socket.
- Add tracefs_t type to mountpoint attribute
- Allow useradd_t and groupadd_t domains to send signals to sssd_t
- Allow systemd_logind_t domain to remove directories labeled as tmpfs_t BZ(1648636)
- Allow useradd_t and groupadd_t domains to access sssd files because of the new feature
in shadow-utils
* Wed Nov 7 2018 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.2-43
- Update pesign policy to allow pesign_t domain to read bind cache files/dirs
- Add dac_override capability to mdadm_t domain
- Create ibacm_tmpfs_t type for the ibacm policy
- Dontaudit capability sys_admin for dhcpd_t domain
- Makes rhsmcertd_t domain an exception to the constraint preventing changing the user
identity in object contexts.
- Allow abrt_t domain to mmap generic tmp_t files
- Label /usr/sbin/wpa_cli as wpa_cli_exec_t
- Allow sandbox_xserver_t domain write to user_tmp_t files
- Allow certutil running as ipsec_mgmt_t domain to mmap ipsec_mgmt pid files Dontaudit
ipsec_mgmt_t domain to write to the all mountpoints
- Add interface files_map_generic_tmp_files()
- Add dac_override capability to the syslogd_t domain
- Create systemd_timedated_var_run_t label
- Update systemd_timedated_t domain to allow create own pid files/access init_var_lib_t
files and read dbus files BZ(1646202)
- Add init_read_var_lib_lnk_files and init_read_var_lib_sock_files interfaces
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1646202 - SELinux is preventing /usr/lib/systemd/systemd-timesyncd from
'read' accesses on the directory /run/dbus.
https://bugzilla.redhat.com/show_bug.cgi?id=1646202
[ 2 ] Bug #1648636 - SELinux is preventing systemd-user-ru from 'rmdir' accesses
on the katalog services.
https://bugzilla.redhat.com/show_bug.cgi?id=1648636
--------------------------------------------------------------------------------
================================================================================
switchboard-plug-about-2.5.2-1.fc29 (FEDORA-2018-36f4f757cb)
Switchboard System Information plug
--------------------------------------------------------------------------------
Update Information:
Update to version 2.5.2. This release supports reading the distributor logo
from the new "LOGO" entry in the os-release file, and features updated
translations. Release notes:
https://github.com/elementary/switchboard-plug-
about/releases/tag/2.5.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Fabio Valentini <decathorpe(a)gmail.com> - 2.5.2-1
- Update to version 2.5.2.
- Switch to using LOGO from os-release, dropping the downstream patch.
--------------------------------------------------------------------------------
================================================================================
vacuum-im-1.3.0-0.13.20181129git52c2a8c.fc29 (FEDORA-2018-45f8bd9739)
XMPP/Jabber client
--------------------------------------------------------------------------------
Update Information:
- Update to 1.3.0-0.13.20181129git52c2a8c - Add lang files
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Martin Gansser <martinkg(a)fedoraproject.org> -
1.3.0-0.13.20181129git52c2a8c
- Update to 1.3.0-0.13.20181129git52c2a8c
- Add lang files
* Tue Nov 13 2018 Caol��n McNamara <caolanm(a)redhat.com> -
1.3.0-0.12.20180214git01910e9
- rebuild for hunspell 1.7.0
--------------------------------------------------------------------------------
================================================================================
vile-9.8t-1.fc29 (FEDORA-2018-9461e5ad07)
VI Like Emacs
--------------------------------------------------------------------------------
Update Information:
- update vile to latest upstream version 9.8t - changelog
http://invisible-
island.net/vile/CHANGES.html#v9_8t
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Filipe Rosset <rosset.filipe(a)gmail.com> - 9.8t-1
- update to latest upstream 9.8t
- changelog
http://invisible-island.net/vile/CHANGES.html#v9_8t
* Thu Sep 13 2018 Filipe Rosset <rosset.filipe(a)gmail.com> - 9.8s-1
- rebuilt to latest upstream 9.8s
--------------------------------------------------------------------------------
================================================================================
wingpanel-applications-menu-2.4.1-1.fc29 (FEDORA-2018-350e96bcc7)
Lightweight and stylish app launcher
--------------------------------------------------------------------------------
Update Information:
Update to version 2.4.1. Release notes:
https://github.com/elementary/applications-menu/releases/tag/2.4.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Fabio Valentini <decathorpe(a)gmail.com> - 2.4.1-1
- Update to version 2.4.1.
- Drop explicit dependency on zeitgeist.
--------------------------------------------------------------------------------