The following Fedora 33 Security updates need testing:
Age URL
15
https://bodhi.fedoraproject.org/updates/FEDORA-2021-067c9deff1
python3-docs-3.9.4-1.fc33 python3.9-3.9.4-1.fc33
13
https://bodhi.fedoraproject.org/updates/FEDORA-2021-62a5062b2d
dnsmasq-2.85-1.fc33
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c3d587d52c shim-15.4-1
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c56a213327
skopeo-1.2.3-1.fc33
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-1ffffa0251
nextcloud-client-3.1.3-1.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-26ea2b3f63
minetest-5.4.1-1.fc33
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b1ba54add6 rust-1.51.0-3.fc33
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-e6b4847979
kernel-5.11.16-200.fc33 kernel-headers-5.11.16-200.fc33 kernel-tools-5.11.16-200.fc33
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-242ef81244
openvpn-2.4.11-1.fc33
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-35f06984d7
jetty-9.4.40-1.fc33
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-f6c91e2b75
shim-unsigned-x64-15.4-5.fc33
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-e65b9fb52e
ceph-15.2.11-1.fc33
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-10c1cd4cba
nginx-1.20.0-2.fc33
The following Fedora 33 Critical Path updates have yet to be approved:
Age URL
30
https://bodhi.fedoraproject.org/updates/FEDORA-2021-2961f34ccb
PackageKit-1.2.3-1.fc33
16
https://bodhi.fedoraproject.org/updates/FEDORA-2021-f6b07f88e6 bluez-5.58-1.fc33
13
https://bodhi.fedoraproject.org/updates/FEDORA-2021-62a5062b2d
dnsmasq-2.85-1.fc33
13
https://bodhi.fedoraproject.org/updates/FEDORA-2021-e4685c22d1
libtirpc-1.2.6-3.rc4.fc33
13
https://bodhi.fedoraproject.org/updates/FEDORA-2021-e8f2b4555f
libbluray-1.3.0-1.fc33
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-cd076fd3f3
libisoburn-1.5.4-2.fc33
11
https://bodhi.fedoraproject.org/updates/FEDORA-2021-3c4ba0f6d4
libburn-1.5.4-2.fc33
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-fab0eb0aee koji-1.24.1-1.fc33
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-68031d5fc7 mpfr-4.1.0-6.fc33
7
https://bodhi.fedoraproject.org/updates/FEDORA-2021-0fcde60f54
xdg-desktop-portal-1.8.1-2.fc33
7
https://bodhi.fedoraproject.org/updates/FEDORA-2021-80b91fd194
gnome-settings-daemon-3.38.2-1.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-47beededce
ostree-2021.2-2.fc33
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-447fb19490
createrepo_c-0.17.2-1.fc33 dnf-4.7.0-1.fc33 dnf-plugins-core-4.0.21-1.fc33
libdnf-0.62.0-1.fc33 librepo-1.14.0-1.fc33 microdnf-3.8.0-1.fc33
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-a5cba1894e
mtools-4.0.27-1.fc33
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-e50f4a64ac
plymouth-0.9.5-2.20210331git1ea1020.fc33
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-59612d6c2d
gdk-pixbuf2-2.42.6-1.fc33
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-cab0136ffc
libical-3.0.10-1.fc33
1
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b738094653 gjs-1.66.2-5.fc33
mozjs78-78.10.0-1.fc33
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-e6b4847979
kernel-5.11.16-200.fc33 kernel-headers-5.11.16-200.fc33 kernel-tools-5.11.16-200.fc33
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-352160fef2
annobin-9.68-1.fc33
The following builds have been pushed to Fedora 33 updates-testing
buildah-1.20.1-4.fc33
cockpit-machines-243.1-1.fc33
containers-common-1-15.fc33
cozy-0.9.3-1.fc33
crun-0.19.1-2.fc33
distribution-gpg-keys-1.52-1.fc33
dl-fedora-0.9-1.fc33
evolution-data-server-3.38.4-2.fc33
exfatprogs-1.1.1-1.fc33
hplip-3.21.2-2.fc33
java-1.8.0-openjdk-1.8.0.292.b10-0.fc33
java-11-openjdk-11.0.11.0.9-0.fc33
mariadb-connector-odbc-3.1.12-1.fc33
openhantek-3.2.2-1.fc33
pipewire-0.3.26-1.fc33
podman-3.1.2-1.fc33
python-adal-1.2.7-1.fc33
python-mercantile-1.2.1-1.fc33
qutebrowser-2.2.0-1.fc33
runc-1.0.0-377.rc93.fc33
tkrzw-0.9.5-1.fc33
toml11-3.6.1-1.fc33
zabbix-5.0.10-1.fc33
Details about builds:
================================================================================
buildah-1.20.1-4.fc33 (FEDORA-2021-ec00da7faa)
A command line tool used for creating OCI Images
--------------------------------------------------------------------------------
Update Information:
- crun and runc both `Provides: oci-runtime`. - containers-common now has
`Requires: oci-runtime`. - `dnf install oci-runtime` will install crun by
default unless runc is already installed. ---- buildah: Security fix for
CVE-2021-20291 Autobuilt v1.20.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 1.20.1-4
- fix gating tests
* Mon Apr 19 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 1.20.1-3
- update containers-common dependency
- container-selinux, oci-runtime, slirp4netns and fuse-overlayfs handled in
containers-common
* Fri Apr 16 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 1.20.1-2
- rebuild for buildah-tests
* Wed Apr 14 2021 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 1.20.1-1
- autobuilt v1.20.1
* Mon Mar 29 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 1.20.0-1
- bump to v1.20.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1939485 - CVE-2021-20291 containers/storage: DoS via malicious image
https://bugzilla.redhat.com/show_bug.cgi?id=1939485
--------------------------------------------------------------------------------
================================================================================
cockpit-machines-243.1-1.fc33 (FEDORA-2021-393c6b8907)
Cockpit user interface for virtual machines
--------------------------------------------------------------------------------
Update Information:
- Fix tooltip on Plug/Unplug button - Integration test fixes
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Martin Pitt <martin(a)piware.de> - 243.1-1
- Fix tooltip on Plug/Unplug button
- Integration test fixes
--------------------------------------------------------------------------------
================================================================================
containers-common-1-15.fc33 (FEDORA-2021-ec00da7faa)
Common configuration and documentation for containers
--------------------------------------------------------------------------------
Update Information:
- crun and runc both `Provides: oci-runtime`. - containers-common now has
`Requires: oci-runtime`. - `dnf install oci-runtime` will install crun by
default unless runc is already installed. ---- buildah: Security fix for
CVE-2021-20291 Autobuilt v1.20.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 19 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 4:1-15
- bump release for kubic
* Mon Apr 19 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 4:1-11
- use config from latest upstream releases
- Add oci-runtime and container-selinux dependencies
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1939485 - CVE-2021-20291 containers/storage: DoS via malicious image
https://bugzilla.redhat.com/show_bug.cgi?id=1939485
--------------------------------------------------------------------------------
================================================================================
cozy-0.9.3-1.fc33 (FEDORA-2021-20c754b471)
Modern audiobook player
--------------------------------------------------------------------------------
Update Information:
Update to v0.9.3 ---- Update to v0.9.2 ---- Update to latest release
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Artur Frenszek-Iwicki <fedora(a)svgames.pl> - 0.9.3-1
- Update to latest release
* Tue Apr 20 2021 Artur Frenszek-Iwicki <fedora(a)svgames.pl> - 0.9.2-1
- Update to latest release
* Mon Apr 19 2021 Artur Frenszek-Iwicki <fedora(a)svgames.pl> - 0.9.1-1
- Update to latest release
--------------------------------------------------------------------------------
================================================================================
crun-0.19.1-2.fc33 (FEDORA-2021-ec00da7faa)
OCI runtime written in C
--------------------------------------------------------------------------------
Update Information:
- crun and runc both `Provides: oci-runtime`. - containers-common now has
`Requires: oci-runtime`. - `dnf install oci-runtime` will install crun by
default unless runc is already installed. ---- buildah: Security fix for
CVE-2021-20291 Autobuilt v1.20.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 0.19.1-2
- rebuild for new bodhi
* Thu Apr 22 2021 Giuseppe Scrivano <gscrivan(a)redhat.com> - 0.19.1-1
- built version 0.19.1
* Tue Apr 13 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 0.19-2
- unversioned Provides: oci-runtime
- runc package will also provide an unversioned Provides: oci-runtime.
- user should pull in runc separately or else it will install crun by default
(alphabetical order)
- similar situation as caddy, httpd, lighttpd and nginx having Provides:
webserver
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1939485 - CVE-2021-20291 containers/storage: DoS via malicious image
https://bugzilla.redhat.com/show_bug.cgi?id=1939485
--------------------------------------------------------------------------------
================================================================================
distribution-gpg-keys-1.52-1.fc33 (FEDORA-2021-375a0b1219)
GPG keys of various Linux distributions
--------------------------------------------------------------------------------
Update Information:
updated Copr keys
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Miroslav Such�� <msuchy(a)redhat.com> 1.52-1
- update copr keys
--------------------------------------------------------------------------------
================================================================================
dl-fedora-0.9-1.fc33 (FEDORA-2021-9957573f78)
Fedora image download tool
--------------------------------------------------------------------------------
Update Information:
- edition is now an argument after release, not an option - --local --dryrun
only accesses local files now for speed
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Jens Petersen <petersen(a)redhat.com> - 0.9-1
- edition is now an argument after release, not an option
- --local --dryrun only accesses local files now for speed
--------------------------------------------------------------------------------
================================================================================
evolution-data-server-3.38.4-2.fc33 (FEDORA-2021-45b9b30892)
Backend data server for Evolution
--------------------------------------------------------------------------------
Update Information:
Add patch for upstream issue #328 (Fails to get IMAP folder list on iCloud
server)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Milan Crha <mcrha(a)redhat.com> - 3.38.4-2
- Add patch for upstream issue #328 (Fails to get IMAP folder list on iCloud server)
--------------------------------------------------------------------------------
================================================================================
exfatprogs-1.1.1-1.fc33 (FEDORA-2021-2a606a1b35)
Userspace utilities for exFAT filesystems
--------------------------------------------------------------------------------
Update Information:
Bugfix release 1.1.1.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Simone Caronni <negativo17(a)gmail.com> - 1.1.1-1
- Update to 1.1.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1942022 - exfatprogs-1.1.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1942022
--------------------------------------------------------------------------------
================================================================================
hplip-3.21.2-2.fc33 (FEDORA-2021-f7d42601d0)
HP Linux Imaging and Printing Project
--------------------------------------------------------------------------------
Update Information:
1951922 - hp-systray doesn't support a valid --qt5 option
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Zdenek Dohnal <zdohnal(a)redhat.com> - 3.21.2-2
- 1951922 - hp-systray doesn't support a valid --qt5 option
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1951922 - hp-systray doesn't support a valid --qt5 option
https://bugzilla.redhat.com/show_bug.cgi?id=1951922
--------------------------------------------------------------------------------
================================================================================
java-1.8.0-openjdk-1.8.0.292.b10-0.fc33 (FEDORA-2021-8b80ef64f1)
OpenJDK 8 Runtime Environment
--------------------------------------------------------------------------------
Update Information:
# New in release OpenJDK 8u292 (2021-04-20): Live versions of these release
notes can be found at: *
https://bitly.com/openjdk8u292 *
https://builds.shipilev.net/backports-monitor/release-notes-openjdk8u292.txt ##
Security fixes - JDK-8227467: Better class method invocations * JDK-8244473:
Contextualize registration for JNDI * JDK-8244543: Enhanced handling of
abstract classes * JDK-8249906, CVE-2021-2163: Enhance opening JARs *
JDK-8250568, CVE-2021-2161: Less ambiguous processing * JDK-8253799: Make
lists of normal filenames ## Other significant changes *
[
JDK-8236730](https://bugs.openjdk.java.net/browse/JDK-8236730): Weak Named
Curves in TLS, CertPath, and Signed JAR Disabled by Default *
[
JDK-8244286](https://bugs.openjdk.java.net/browse/JDK-8244286): Tools Warn If
Weak Algorithms Are Used *
[
JDK-8256490](https://bugs.openjdk.java.net/browse/JDK-8256490): Disable TLS 1.0
and 1.1 * [
JDK-8242147](https://bugs.openjdk.java.net/browse/JDK-8242147): New
System Properties to Configure the TLS Signature Schemes *
[
JDK-8177368](https://bugs.openjdk.java.net/browse/JDK-8177368): Several
incorporation steps are silently failing when an error should be reported * ATK
accessibility bridge bindings removed Full release notes can also be found in
the `NEWS` file in the installed RPM.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 13 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b10-0
- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
* Tue Mar 30 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b09-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
* Sat Mar 27 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b08-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Require tzdata 2021a due to JDK-8260356
* Thu Mar 25 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b07-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
* Wed Mar 24 2021 Jiri Vanek <jvanek(a)redhat.com> - 1:1.8.0.292.b06-0.1.ea
- removal of atk accessibility bridge bindings:
- removed libatk-wrapper[.]so.* from global _privatelibs
- removed files_accessibility and java_accessibility_rpo macros
- removed patch1 rh1648242-accessible_toolkit_crash_do_not_break_jvm.patch and patch3
rh1648644-java_access_bridge_privileged_security.patch
- removal of accessibility{,-slowdebug,-fastdebug} subpackages
- no longer creating symlinks of %{_libdir}/java-atk-wrapper/libatk-wrapper.so.0
libatk-wrapper.so and %{_libdir}/java-atk-wrapper/java-atk-wrapper.jar
java-atk-wrapper.jar
- no longer creating
%{_jvmdir}/java-1.8.0-openjdk-1.8.0.292.b10-0.fc33.arm$suffix/jre/lib/accessibility.properties
with content of "assistive_technologies=org.GNOME.Accessibility.AtkWrapper"
- removal of accessibility{,-slowdebug,-fastdebug} subpackages files sections
* Mon Mar 22 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b06-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
* Thu Mar 18 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b05-0.2.ea
- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in
8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are
accurate.
* Thu Mar 18 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b05-0.1.ea
- Re-organise S/390 patches for upstream submission, separating 8u upstream from
Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
* Mon Mar 8 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b05-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
* Fri Mar 5 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b04-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
* Thu Mar 4 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b03-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b03 (EA)
- Update release notes for 8u292-b03.
* Tue Mar 2 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b02-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b02 (EA)
- Update release notes for 8u292-b02.
* Fri Feb 19 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:1.8.0.292.b01-0.0.ea
- Update to aarch64-shenandoah-jdk8u292-b01 (EA)
- Update release notes for 8u292-b01.
- Switch to EA mode.
- Update tarball generation script to use PR3822 which handles
JDK-8233228 & JDK-8035166 changes
* Thu Feb 18 2021 Stephan Bergmann <sbergman(a)redhat.com> - 1:1.8.0.282.b08-5
- Hardcode /usr/sbin/alternatives for Flatpak builds
--------------------------------------------------------------------------------
================================================================================
java-11-openjdk-11.0.11.0.9-0.fc33 (FEDORA-2021-6eb9bbbf0c)
OpenJDK 11 Runtime Environment
--------------------------------------------------------------------------------
Update Information:
# New in release OpenJDK 11.0.11 (2021-04-20) Live versions of these release
notes can be found at: *
https://bitly.com/openjdk11011 *
https://builds.shipilev.net/backports-monitor/release-notes-11.0.11.txt ##
Security fixes * JDK-8244473: Contextualize registration for JNDI *
JDK-8244543: Enhanced handling of abstract classes * JDK-8249906,
CVE-2021-2163: Enhance opening JARs * JDK-8250568, CVE-2021-2161: Less
ambiguous processing * JDK-8253799: Make lists of normal filenames *
JDK-8257001: Improve HTTP Client Support ## Other significant changes *
[
JDK-8258824](https://bugs.openjdk.java.net/browse/JDK-8258824): LDAP Channel
Binding Support for Java GSS/Kerberos *
[
JDK-8256490](https://bugs.openjdk.java.net/browse/JDK-8256490): Disable TLS 1.0
and 1.1 * [
JDK-8214213](https://bugs.openjdk.java.net/browse/JDK-8214213):
jdeps --print-module-deps Reports Transitive Dependencies *
[
JDK-8249867](https://bugs.openjdk.java.net/browse/JDK-8249867): XML declaration
is not followed by a newline * SystemTap tapsets updated to support OpenJDK 11
Full release notes can also be found in the `NEWS` file in the installed RPM.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.9-0
- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- Require tzdata 2021a to match upstream change JDK-8260356
* Tue Apr 20 2021 Stephan Bergmann <sbergman(a)redhat.com> - 1:11.0.11.0.9-0
- Disable copy-jdk-configs for Flatpak builds
* Sun Apr 11 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.7-0.0.ea
- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
* Fri Apr 9 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.6-0.0.ea
- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
* Tue Apr 6 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.5-0.0.ea
- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
* Mon Mar 29 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.4-0.1.ea
- Update tapsets from IcedTea 6.x repository with fix for JDK-8015774 changes
(_heap->_heaps)
- Update icedtea_sync.sh with a VCS mode that retrieves sources from a Mercurial
repository
* Mon Mar 29 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.4-0.0.ea
- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
* Sun Mar 28 2021 Jayashree Huttanagoudar <jhuttana(a)redhat.com> -
1:11.0.11.0.3-0.1.ea
- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the
shell.
* Mon Mar 8 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.3-0.0.ea
- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Remove upstreamed patch JDK-8259949
* Tue Mar 2 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.2-0.0.ea
- Update to jdk-11.0.11.0+2
- Update release notes to 11.0.11.0+2
* Sun Feb 21 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.11.0.1-0.0.ea
- Update to jdk-11.0.11.0+1
- Update release notes to 11.0.11.0+1
- Switch to EA mode for 11.0.11 pre-release builds.
- Require tzdata 2020f to match upstream change JDK-8259048
* Fri Feb 19 2021 Stephan Bergmann <sbergman(a)redhat.com> - 1:11.0.10.0.9-2
- Hardcode /usr/sbin/alternatives for Flatpak builds
* Fri Feb 12 2021 Andrew Hughes <gnu.andrew(a)redhat.com> - 1:11.0.10.0.9-1
- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
--------------------------------------------------------------------------------
================================================================================
mariadb-connector-odbc-3.1.12-1.fc33 (FEDORA-2021-fbbc76021d)
The MariaDB Native Client library (ODBC driver)
--------------------------------------------------------------------------------
Update Information:
**MariaDB Connector ODBC** Release notes:
https://mariadb.com/kb/en/mariadb-connector-odbc-3112-release-notes/
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Michal Schorm <mschorm(a)redhat.com> - 3.1.12-1
- Rebase to 3.1.12
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.11-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1952271 - mariadb-connector-odbc-3.1.12 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1952271
--------------------------------------------------------------------------------
================================================================================
openhantek-3.2.2-1.fc33 (FEDORA-2021-516c56f083)
Hantek and compatible USB digital signal oscilloscope
--------------------------------------------------------------------------------
Update Information:
Update to 3.2.2.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Vasiliy Glazov <vascom2(a)gmail.com> - 3.2.2-1
- Update to 3.2.2
--------------------------------------------------------------------------------
================================================================================
pipewire-0.3.26-1.fc33 (FEDORA-2021-ad386a4acb)
Media Sharing Server
--------------------------------------------------------------------------------
Update Information:
Update to 0.3.26
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Wim Taymans <wtaymans(a)redhat.com> - 0.3.26-1
- Update to 0.3.26
--------------------------------------------------------------------------------
================================================================================
podman-3.1.2-1.fc33 (FEDORA-2021-ec00da7faa)
Manage Pods, Containers and Container Images
--------------------------------------------------------------------------------
Update Information:
- crun and runc both `Provides: oci-runtime`. - containers-common now has
`Requires: oci-runtime`. - `dnf install oci-runtime` will install crun by
default unless runc is already installed. ---- buildah: Security fix for
CVE-2021-20291 Autobuilt v1.20.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:3.1.2-1
- bump to v3.1.2
* Mon Apr 19 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:3.1.1-2
- update dependencies
* Mon Apr 19 2021 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:3.1.1-1
- autobuilt v3.1.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1939485 - CVE-2021-20291 containers/storage: DoS via malicious image
https://bugzilla.redhat.com/show_bug.cgi?id=1939485
--------------------------------------------------------------------------------
================================================================================
python-adal-1.2.7-1.fc33 (FEDORA-2021-cf1ed0b54e)
ADAL for Python
--------------------------------------------------------------------------------
Update Information:
Bugfix: More robust handling of federated Username Password flow
([#250](https://github.com/AzureAD/azure-activedirectory-library-for-
python/issues/250), [#251](https://github.com/AzureAD/azure-activedirectory-
library-for-python/issues/251))
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 1.2.7-1
- Update to 1.2.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1946311 - python-adal-1.2.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1946311
--------------------------------------------------------------------------------
================================================================================
python-mercantile-1.2.1-1.fc33 (FEDORA-2021-bc61234612)
Web Mercator XYZ tile utilities
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 22 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.2.1-1
- Update to latest version (#1948656)
* Wed Apr 21 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.2.0-1
- Update to latest version (#1948656)
* Sun Mar 28 2021 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.1.6-2
- Remove unnecessary check-manifest BR
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.6-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1948656 - python-mercantile-1.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1948656
--------------------------------------------------------------------------------
================================================================================
qutebrowser-2.2.0-1.fc33 (FEDORA-2021-9337bd1f10)
A keyboard-driven, vim-like browser based on PyQt5 and QtWebEngine
--------------------------------------------------------------------------------
Update Information:
This update ships with a new pipeline for desktop notifications.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Timoth��e Floure <fnux(a)fedoraproject.org> - 2.2.0-1
- New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1945757 - qutebrowser-2.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1945757
--------------------------------------------------------------------------------
================================================================================
runc-1.0.0-377.rc93.fc33 (FEDORA-2021-ec00da7faa)
CLI for running Open Containers
--------------------------------------------------------------------------------
Update Information:
- crun and runc both `Provides: oci-runtime`. - containers-common now has
`Requires: oci-runtime`. - `dnf install oci-runtime` will install crun by
default unless runc is already installed. ---- buildah: Security fix for
CVE-2021-20291 Autobuilt v1.20.1
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:1.0.0-377.rc93
- add Provides: oci-runtime in the right place
* Tue Apr 13 2021 Lokesh Mandvekar <lsm5(a)fedoraproject.org> -
2:1.0.0-376.dev.git12644e6
- unversioned Provides: oci-runtime
- runc package will also provide an unversioned Provides: oci-runtime.
- user should pull in runc separately or else it will install crun by default
(alphabetical order)
- similar situation as caddy, httpd, lighttpd and nginx having Provides: webserver
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1939485 - CVE-2021-20291 containers/storage: DoS via malicious image
https://bugzilla.redhat.com/show_bug.cgi?id=1939485
--------------------------------------------------------------------------------
================================================================================
tkrzw-0.9.5-1.fc33 (FEDORA-2021-5b94298166)
A straightforward implementation of DBM
--------------------------------------------------------------------------------
Update Information:
Version bump
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 21 2021 TI_Eugene <ti.eugene(a)gmail.com> - 0.9.5-1
- Version bump
* Tue Mar 30 2021 Jonathan Wakely <jwakely(a)redhat.com> - 0.9.3-6
- Rebuilt for removed libstdc++ symbol (#1937698)
--------------------------------------------------------------------------------
================================================================================
toml11-3.6.1-1.fc33 (FEDORA-2021-ddb77d8f46)
TOML for Modern C++
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1952243 - Review Request: toml11 - TOML for Modern C++
https://bugzilla.redhat.com/show_bug.cgi?id=1952243
--------------------------------------------------------------------------------
================================================================================
zabbix-5.0.10-1.fc33 (FEDORA-2021-5a29b83534)
Open-source monitoring solution for your IT infrastructure
--------------------------------------------------------------------------------
Update Information:
Update to 5.0.10 -
https://www.zabbix.com/rn/rn5.0.10 SELinux fix for
/var/lib/zabbixsrv contexts
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 20 2021 Orion Poplawski <orion(a)nwra.com> - 1:5.0.10-1
- Update to 5.0.10
- SELinux: Allow fping to read the zabbix ping list
--------------------------------------------------------------------------------