The following Fedora 32 Security updates need testing:
Age URL
37
https://bodhi.fedoraproject.org/updates/FEDORA-2020-eb942ee0db libuv-1.39.0-1.fc32
nodejs-12.18.4-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2020-81026ddd81
pdns-recursor-4.3.5-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2020-c605353480
nodejs-12.19.0-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2020-e3d619cc32 xen-4.13.1-7.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2020-0e036c907e
tcpreplay-4.3.3-3.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-869cd99560 lout-3.40-18.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-fdc79d8e5b
java-11-openjdk-11.0.9.11-0.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-a405eea76a
java-1.8.0-openjdk-1.8.0.272.b10-0.fc32
The following Fedora 32 Critical Path updates have yet to be approved:
Age URL
114
https://bodhi.fedoraproject.org/updates/FEDORA-2020-ebbe0f7b25 cpio-2.13-6.fc32
17
https://bodhi.fedoraproject.org/updates/FEDORA-2020-95b9c09df2
binutils-2.34-6.fc32
12
https://bodhi.fedoraproject.org/updates/FEDORA-2020-54f71a0745
libpwquality-1.4.4-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2020-c796a2ea94 avahi-0.7-24.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2020-aadcbd3eed
osinfo-db-20201015-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2020-e1bec53f2a
perl-Digest-1.19-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2020-174525f97d
perl-Pod-Usage-2.01-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2020-a27b8aedcd fedora-repos-32-10
9
https://bodhi.fedoraproject.org/updates/FEDORA-2020-afbcf0cac7
ostree-2020.7-3.fc32
7
https://bodhi.fedoraproject.org/updates/FEDORA-2020-da3401a3ce
enchant2-2.2.12-1.fc32 mingw-enchant2-2.2.12-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2020-f9ada0f4f8 pcre-8.44-2.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-b591d7878e
linux-firmware-20201022-113.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-57a942c3c0
redhat-rpm-config-150-2.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-57f9e6e50e koji-1.23.0-1.fc32
The following builds have been pushed to Fedora 32 updates-testing
cobbler-3.2.0-2.fc32
fastd-21-1.fc32
gsequencer-3.6.1-0.fc32
lollypop-1.4.5-1.fc32
lxcfs-4.0.6-1.fc32
openms-2.6.0-2.fc32
python-markdown2-2.3.10-1.fc32
wine-5.20-1.fc32
xylib-1.6-1.fc32
Details about builds:
================================================================================
cobbler-3.2.0-2.fc32 (FEDORA-2020-d834c6e46d)
Boot server configurator
--------------------------------------------------------------------------------
Update Information:
Update to 3.2.0
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 25 2020 Orion Poplawski <orion(a)nwra.com> - 3.2.0-2
- Give root RW permission to /var/lib/cobbler/web.ss
- Fix SELinux cobbler logging issue
* Sat Oct 24 2020 Orion Poplawski <orion(a)nwra.com> - 3.2.0-1
- Update to 3.2.0
* Thu Sep 17 2020 Orion Poplawski <orion(a)nwra.com> - 3.1.2-4
- Add requires on python-distro and file
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1840630 - cobbler-3.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1840630
[ 2 ] Bug #1858177 - Typo error in reposync.py
https://bugzilla.redhat.com/show_bug.cgi?id=1858177
--------------------------------------------------------------------------------
================================================================================
fastd-21-1.fc32 (FEDORA-2020-495c14a23f)
Fast and secure tunneling daemon
--------------------------------------------------------------------------------
Update Information:
Fix for CVE-2020-27638
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 23 2020 Felix Kaechele <felix(a)kaechele.ca> - 21-1
- update to 21
- fixes CVE-2020-27638
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1887118 - fastd-21 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1887118
[ 2 ] Bug #1890968 - CVE-2020-27638 fastd: DoS'able memory leak on invalid packets
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1890968
[ 3 ] Bug #1890969 - CVE-2020-27638 fastd: DoS'able memory leak on invalid packets
[epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1890969
[ 4 ] Bug #1890970 - CVE-2020-27638 fastd: DoS'able memory leak on invalid packets
[epel-8]
https://bugzilla.redhat.com/show_bug.cgi?id=1890970
--------------------------------------------------------------------------------
================================================================================
gsequencer-3.6.1-0.fc32 (FEDORA-2020-4d2bc83f0f)
Audio processing engine
--------------------------------------------------------------------------------
Update Information:
updated Source to point to new minor version directory
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 25 2020 Jo��l Kr��hemann <jkraehemann(a)gmail.com> 3.6.1-0
- updated Source to point to new minor version directory
- added gstreamer dependencies
--------------------------------------------------------------------------------
================================================================================
lollypop-1.4.5-1.fc32 (FEDORA-2020-afc7f96155)
Music player for GNOME
--------------------------------------------------------------------------------
Update Information:
Update to 1.4.5-1 ---- Update to 1.4.4-1 ---- Update to lollypop-1.4.3-1
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 25 2020 Martin Gansser <martinkg(a)fedoraproject.org> - 1.4.5-1
- Update to 1.4.5
* Sat Oct 24 2020 Martin Gansser <martinkg(a)fedoraproject.org> - 1.4.4-1
- Update to 1.4.4
* Thu Oct 22 2020 Martin Gansser <martinkg(a)fedoraproject.org> - 1.4.3-1
- Update to 1.4.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1890526 - lollypop-1.4.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1890526
[ 2 ] Bug #1891138 - lollypop-1.4.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1891138
[ 3 ] Bug #1891245 - lollypop-1.4.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1891245
--------------------------------------------------------------------------------
================================================================================
lxcfs-4.0.6-1.fc32 (FEDORA-2020-b97de78c80)
FUSE based filesystem for LXC
--------------------------------------------------------------------------------
Update Information:
Update to the latest release. [Upstream
announcement](https://discuss.linuxcontainers.org/t/lxcfs-4-0-6-lts-has-b...
released/9236).
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 25 2020 Thomas Moschny <thomas.moschny(a)gmx.de> - 4.0.6-1
- Update to 4.0.6.
* Wed Aug 5 2020 Thomas Moschny <thomas.moschny(a)gmx.de> - 4.0.5-1
- Update to 4.0.5.
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.0.4-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
openms-2.6.0-2.fc32 (FEDORA-2020-503e8b3e58)
LC/MS data management and analyses
--------------------------------------------------------------------------------
Update Information:
- Avoid skipping rpaths
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 25 2020 Antonio Trande <sagitter(a)fedoraproject.org> - 2.6.0-2
- Avoid skipping rpaths
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1891329 - libOpenMS.so is not in search path, but needed
https://bugzilla.redhat.com/show_bug.cgi?id=1891329
--------------------------------------------------------------------------------
================================================================================
python-markdown2-2.3.10-1.fc32 (FEDORA-2020-80ae54a3a9)
A fast and complete Python implementation of Markdown
--------------------------------------------------------------------------------
Update Information:
#### python-markdown2 2.3.10 #### * [pull #356] Don't merge sequential quotes
into a single blockquote * [pull #357] use style=text-align for table alignment
* [pull #360] introduce underline extra * [pull #368] Support for structured and
nested values in metadata * [pull #371] add noopener to external links
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 25 2020 Thomas Moschny <thomas.moschny(a)gmx.de> - 2.3.10-1
- Update to 2.3.10.
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.3.9-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Wed Jun 24 2020 Thomas Moschny <thomas.moschny(a)gmx.de> - 2.3.9-3
- Add explicit BR on python3-setuptools.
* Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 2.3.9-2
- Rebuilt for Python 3.9
--------------------------------------------------------------------------------
================================================================================
wine-5.20-1.fc32 (FEDORA-2020-fa93b359e1)
A compatibility layer for windows applications
--------------------------------------------------------------------------------
Update Information:
- More work on the DSS cryptographic provider. - A number of fixes for
windowless RichEdit. - Support for FLS callbacks. - Window resizing in the
new console host. - Various bug fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 24 2020 Michael Cronenworth <mike(a)cchtml.com> 5.20-1
- version update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1891120 - wine-5.20 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1891120
--------------------------------------------------------------------------------
================================================================================
xylib-1.6-1.fc32 (FEDORA-2020-88570ccba3)
Library for reading x-y data from several file formats
--------------------------------------------------------------------------------
Update Information:
Update to 1.6
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 25 2020 Alexander Ploumistos <alexpl(a)fedoraproject.org> - 1.6-1
- Update to 1.6
* Sat Aug 1 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-22
- Second attempt - Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-21
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1100787 - xylib-1.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1100787
[ 2 ] Bug #1865655 - xylib: FTBFS in Fedora rawhide/f33
https://bugzilla.redhat.com/show_bug.cgi?id=1865655
--------------------------------------------------------------------------------