The following Fedora 32 Security updates need testing:
Age URL
15
https://bodhi.fedoraproject.org/updates/FEDORA-2020-d737c57172
dovecot-2.3.11.3-5.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2020-22ab822e3b
singularity-3.6.3-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2020-eb942ee0db libuv-1.39.0-1.fc32
nodejs-12.18.4-1.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-f668e579be xen-4.13.1-6.fc32
The following Fedora 32 Critical Path updates have yet to be approved:
Age URL
82
https://bodhi.fedoraproject.org/updates/FEDORA-2020-ebbe0f7b25 cpio-2.13-6.fc32
19
https://bodhi.fedoraproject.org/updates/FEDORA-2020-1107aadcd8
breeze-icon-theme-5.73.0-1.fc32 extra-cmake-modules-5.73.0-1.fc32 kf5-5.73.0-1.fc32
kf5-attica-5.73.0-1.fc32 kf5-baloo-5.73.0-1.fc32 kf5-bluez-qt-5.73.0-1.fc32
kf5-frameworkintegration-5.73.0-1.fc32 kf5-kactivities-5.73.0-1.fc32
kf5-kactivities-stats-5.73.0-1.fc32 kf5-kapidox-5.73.0-1.fc32 kf5-karchive-5.73.0-2.fc32
kf5-kauth-5.73.0-1.fc32 kf5-kbookmarks-5.73.0-1.fc32 kf5-kcalendarcore-5.73.0-1.fc32
kf5-kcmutils-5.73.0-1.fc32 kf5-kcodecs-5.73.0-1.fc32 kf5-kcompletion-5.73.0-1.fc32
kf5-kconfig-5.73.0-1.fc32 kf5-kconfigwidgets-5.73.0-1.fc32 kf5-kcontacts-5.73.0-1.fc32
kf5-kcoreaddons-5.73.0-1.fc32 kf5-kcrash-5.73.0-1.fc32 kf5-kdbusaddons-5.73.0-1.fc32
kf5-kdeclarative-5.73.0-1.fc32 kf5-kded-5.73.0-1.fc32 kf5-kdelibs4support-5.73.0-1.fc32
kf5-kdesignerplugin-5.73.0-1.fc32 kf5-kdesu-5.73.0-1.fc32 kf5-kdewebkit-5.73.0-1.fc32
kf5-kdnssd-5.73.0-1.fc32 kf5-kdoctools-5.73.0-1.fc32 kf5-kemoticons-5.73.0-1.fc32
kf5-kfilemeta
data-5.73.0-1.fc32 kf5-kglobalaccel-5.73.0-1.fc32 kf5-kguiaddons-5.73.0-1.fc32
kf5-kholidays-5.73.0-1.fc32 kf5-khtml-5.73.0-1.fc32 kf5-ki18n-5.73.0-1.fc32
kf5-kiconthemes-5.73.0-1.fc32 kf5-kidletime-5.73.0-1.fc32 kf5-kimageformats-5.73.0-1.fc32
kf5-kinit-5.73.0-1.fc32 kf5-kio-5.73.0-1.fc32 kf5-kirigami2-5.73.0-2.fc32
kf5-kitemmodels-5.73.0-1.fc32 kf5-kitemviews-5.73.0-1.fc32 kf5-kjobwidgets-5.73.0-1.fc32
kf5-kjs-5.73.0-1.fc32 kf5-kjsembed-5.73.0-1.fc32 kf5-kmediaplayer-5.73.0-1.fc32
kf5-knewstuff-5.73.0-1.fc32 kf5-knotifications-5.73.0-1.fc32
kf5-knotifyconfig-5.73.0-1.fc32 kf5-kpackage-5.73.0-1.fc32 kf5-kparts-5.73.0-1.fc32
kf5-kpeople-5.73.0-1.fc32 kf5-kplotting-5.73.0-1.fc32 kf5-kpty-5.73.0-1.fc32
kf5-kquickcharts-5.73.0-1.fc32 kf5-kross-5.73.0-1.fc32 kf5-krunner-5.73.0-1.fc32
kf5-kservice-5.73.0-1.fc32 kf5-ktexteditor-5.73.0-1.fc32 kf5-ktextwidgets-5.73.0-1.fc32
kf5-kunitconversion-5.73.0-1.fc32 kf5-kwallet-5.73.0-1.fc32 kf5-kwayland-5.73.0-1.fc32
kf5-kwidgetsaddons-5.73.0-1.fc3
2 kf5-kwindowsystem-5.73.0-1.fc32 kf5-kxmlgui-5.73.0-1.fc32
kf5-kxmlrpcclient-5.73.0-1.fc32 kf5-modemmanager-qt-5.73.0-1.fc32
kf5-networkmanager-qt-5.73.0-1.fc32 kf5-plasma-5.73.0-1.fc32 kf5-prison-5.73.0-1.fc32
kf5-purpose-5.73.0-1.fc32 kf5-solid-5.73.0-1.fc32 kf5-sonnet-5.73.0-1.fc32
kf5-syndication-5.73.0-1.fc32 kf5-syntax-highlighting-5.73.0-1.fc32
kf5-threadweaver-5.73.0-1.fc32 oxygen-icon-theme-5.73.0-1.fc32
plasma-wayland-protocols-1.1.1-1.fc32 qqc2-desktop-style-5.73.0-1.fc32
8
https://bodhi.fedoraproject.org/updates/FEDORA-2020-914ecf9cd9
langtable-0.0.53-1.fc32
8
https://bodhi.fedoraproject.org/updates/FEDORA-2020-2233f1ffd0
xdg-desktop-portal-1.8.0-1.fc32 xdg-desktop-portal-gtk-1.8.0-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2020-34d6d674be
pipewire-0.3.12-1.fc32
3
https://bodhi.fedoraproject.org/updates/FEDORA-2020-816bd63f60 pcre2-10.35-7.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-e189e2b5bb
gnome-bluetooth-3.34.2-1.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-405e55fe47
mariadb-connector-c-3.1.10-1.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-2565df5503 nspr-4.29.0-1.fc32
nss-3.57.0-1.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-d7eaa87aed
ostree-2020.6-3.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-dd8378eba3
webkit2gtk3-2.30.1-1.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2020-9680aa2f8b
libxslt-1.1.34-4.fc32
The following builds have been pushed to Fedora 32 updates-testing
AusweisApp2-1.20.2-4.fc32
IP2Location-8.0.9-10.20200924git6e49424.fc32
ara-1.5.1-1.fc32
flameshot-0.8.1-1.fc32
gambas3-3.15.2-1.fc32
golang-github-tdewolff-minify-2.9.3-1.fc32
golang-github-tdewolff-parse-2.5.3-1.fc32
kernel-5.8.11-200.fc32
kernel-headers-5.8.11-200.fc32
kernel-tools-5.8.11-200.fc32
kismon-1.0.2-2.fc32
libmwaw-0.3.17-1.fc32
lollypop-1.4.0-2.fc32
pdns-4.3.1-1.fc32
perl-Gnome2-Canvas-1.003-1.fc32
perl-Gnome2-GConf-1.045-1.fc32
perl-libwww-perl-6.49-1.fc32
php-nikic-php-parser4-4.10.1-1.fc32
podman-2.1.0-2.fc32
python-google-auth-1.21.3-1.fc32
tigervnc-1.11.0-5.fc32
tpm2-tss-2.4.3-1.fc32
Details about builds:
================================================================================
AusweisApp2-1.20.2-4.fc32 (FEDORA-2020-2d6a6be676)
Online identification with German ID card (Personalausweis)
--------------------------------------------------------------------------------
Update Information:
- Apply application specific OpenSSL config through a shell wrapper. - Ensure
RSA-PSK algos are not explicitly disabled by the system's default CipherString.
- Use a more elaborate application specific OpenSSL configuration.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Bj��rn Esser <besser82(a)fedoraproject.org> - 1.20.2-4
- Use a more elaborate application specific OpenSSL configuration
This also re-enables SHA384 hashes in ciphers
* Wed Sep 23 2020 Bj��rn Esser <besser82(a)fedoraproject.org> - 1.20.2-3
- Do not enable SHA384 ciphers in custom OpenSSL configuration
* Wed Sep 23 2020 Bj��rn Esser <besser82(a)fedoraproject.org> - 1.20.2-2
- Use application specific OpenSSL config through a shell wrapper
--------------------------------------------------------------------------------
================================================================================
IP2Location-8.0.9-10.20200924git6e49424.fc32 (FEDORA-2020-d8c6725262)
C library for mapping IP address to geolocation information
--------------------------------------------------------------------------------
Update Information:
add additional Obsoletes/Provides/BuildRequires
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Peter Bieringer <pb(a)bieringer.de> - 8.0.9-10
- add additional Obsoletes/Provides/BuildRequires
--------------------------------------------------------------------------------
================================================================================
ara-1.5.1-1.fc32 (FEDORA-2020-98aa4f317e)
Records Ansible playbooks and makes them easier to understand and troubleshoot
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 David Moreau Simard <moi(a)dmsimard.com> - 1.5.1-1
- Update to latest upstream release
- Add requirement on python3-cliff (new CLI client)
--------------------------------------------------------------------------------
================================================================================
flameshot-0.8.1-1.fc32 (FEDORA-2020-f8433c7882)
Powerful and simple to use screenshot software
--------------------------------------------------------------------------------
Update Information:
Updated to 0.8.1.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Vitaly Zaitsev <vitaly(a)easycoding.org> - 0.8.1-1
- Updated to version 0.8.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1643327 - Flameshot crashes when running on Wayland session
https://bugzilla.redhat.com/show_bug.cgi?id=1643327
[ 2 ] Bug #1882208 - flameshot-0.8.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1882208
--------------------------------------------------------------------------------
================================================================================
gambas3-3.15.2-1.fc32 (FEDORA-2020-05638392ee)
IDE based on a basic interpreter with object extensions
--------------------------------------------------------------------------------
Update Information:
Update to 3.15.2, fixes bugs.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 Tom Callaway <spot(a)fedoraproject.org> - 3.15.2-1
- update to 3.15.2
--------------------------------------------------------------------------------
================================================================================
golang-github-tdewolff-minify-2.9.3-1.fc32 (FEDORA-2020-c61013c0c0)
Go minifiers for web formats
--------------------------------------------------------------------------------
Update Information:
Update to latest version (#1882059, #1882117)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 4 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 2.9.3-1
- Update to latest version (#1874267)
* Sat Aug 29 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 2.9.1-1
- Update to latest version (#1873758)
* Thu Aug 27 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 2.9.0-1
- Update to latest version (#1872936)
* Mon Aug 24 2020 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> - 2.8.0-2
- Add alternate import path
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1882059 - golang-github-tdewolff-minify-2.9.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1882059
[ 2 ] Bug #1882117 - golang-github-tdewolff-parse-2.5.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1882117
--------------------------------------------------------------------------------
================================================================================
golang-github-tdewolff-parse-2.5.3-1.fc32 (FEDORA-2020-c61013c0c0)
Go parsers for web formats
--------------------------------------------------------------------------------
Update Information:
Update to latest version (#1882059, #1882117)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 2.5.3-1
- Update to latest version (#1882117)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1882059 - golang-github-tdewolff-minify-2.9.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1882059
[ 2 ] Bug #1882117 - golang-github-tdewolff-parse-2.5.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1882117
--------------------------------------------------------------------------------
================================================================================
kernel-5.8.11-200.fc32 (FEDORA-2020-5aba194675)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 5.8.11 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.8.11-200
- Linux v5.8.11
- Fix (rhbz 1821946)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1821946 - make scripts fails citing classmap.h does not exist. - Round II
https://bugzilla.redhat.com/show_bug.cgi?id=1821946
--------------------------------------------------------------------------------
================================================================================
kernel-headers-5.8.11-200.fc32 (FEDORA-2020-5aba194675)
Header files for the Linux kernel for use by glibc
--------------------------------------------------------------------------------
Update Information:
The 5.8.11 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.8.11-200
- Linux v5.8.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1821946 - make scripts fails citing classmap.h does not exist. - Round II
https://bugzilla.redhat.com/show_bug.cgi?id=1821946
--------------------------------------------------------------------------------
================================================================================
kernel-tools-5.8.11-200.fc32 (FEDORA-2020-5aba194675)
Assortment of tools for the Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 5.8.11 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.8.11-200
- Linux v5.8.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1821946 - make scripts fails citing classmap.h does not exist. - Round II
https://bugzilla.redhat.com/show_bug.cgi?id=1821946
--------------------------------------------------------------------------------
================================================================================
kismon-1.0.2-2.fc32 (FEDORA-2020-7e2a31a52e)
GUI client for kismet
--------------------------------------------------------------------------------
Update Information:
Add missing requirement (#1882303)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.0.2-2
- Add missing requirement (#1882303)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1882303 - [abrt] kismon: module():
client_rest.py:39:<module>:ModuleNotFoundError: No module named
'KismetRest'
https://bugzilla.redhat.com/show_bug.cgi?id=1882303
--------------------------------------------------------------------------------
================================================================================
libmwaw-0.3.17-1.fc32 (FEDORA-2020-ba069dcaee)
A library for import of many old Mac document formats
--------------------------------------------------------------------------------
Update Information:
new upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 21 2020 David Tardon <dtardon(a)redhat.com> - 0.3.17-1
- new upstream release
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.3.16-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue Jul 14 2020 Tom Stellard <tstellar(a)redhat.com> - 0.3.16-2
- Use make macros
-
https://fedoraproject.org/wiki/Changes/UseMakeBuildInstallMacro
--------------------------------------------------------------------------------
================================================================================
lollypop-1.4.0-2.fc32 (FEDORA-2020-68124bc0da)
Music player for GNOME
--------------------------------------------------------------------------------
Update Information:
Add BR pkgconfig(libhandy-1) ---- Update to 1.4.0-1 ---- Update to 1.3.6-1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Martin Gansser <martinkg(a)fedoraproject.org> - 1.4.0-2
- Add BR pkgconfig(libhandy-1)
* Thu Sep 24 2020 Martin Gansser <martinkg(a)fedoraproject.org> - 1.4.0-1
- Update to 1.4.0
* Sat Aug 29 2020 Martin Gansser <martinkg(a)fedoraproject.org> - 1.3.6-1
- Update to 1.3.6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1873588 - lollypop-1.3.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1873588
[ 2 ] Bug #1881993 - lollypop-1.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1881993
[ 3 ] Bug #1882282 - Lollypop now requires libhandy1 to work, but it is not pulled in as
a dependency
https://bugzilla.redhat.com/show_bug.cgi?id=1882282
--------------------------------------------------------------------------------
================================================================================
pdns-4.3.1-1.fc32 (FEDORA-2020-7e9234058f)
A modern, advanced and high performance authoritative-only nameserver
--------------------------------------------------------------------------------
Update Information:
- Update to 4.3.1 - PowerDNS Security Advisory 2020-05 (CVE-2020-17482) Release
notes:
https://doc.powerdns.com/authoritative/changelog/4.2.html#change-4.3.1
Security Advisory:
https://docs.powerdns.com/authoritative/security-
advisories/powerdns-advisory-2020-05.html
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 Morten Stevens <mstevens(a)fedoraproject.org> - 4.3.1-1
- Update to 4.3.1
- PowerDNS Security Advisory 2020-05 (CVE-2020-17482)
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.3.0-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1881673 - CVE-2020-17482 pdns: leaking uninitialised memory through crafted
zone records [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1881673
--------------------------------------------------------------------------------
================================================================================
perl-Gnome2-Canvas-1.003-1.fc32 (FEDORA-2020-3fef7c3ad4)
An engine for structured graphics in Gnome2
--------------------------------------------------------------------------------
Update Information:
This release corrects a contact for Free Software Foundation.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Petr Pisar <ppisar(a)redhat.com> - 1.003-1
- 1.003 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1882211 - perl-Gnome2-Canvas-1.003 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1882211
--------------------------------------------------------------------------------
================================================================================
perl-Gnome2-GConf-1.045-1.fc32 (FEDORA-2020-ea066b2246)
Perl wrappers for the GConf configuration engine
--------------------------------------------------------------------------------
Update Information:
This release fixes a documentation.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Petr Pisar <ppisar(a)redhat.com> - 1.045-1
- 1.045 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1882212 - perl-Gnome2-GConf-1.045 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1882212
--------------------------------------------------------------------------------
================================================================================
perl-libwww-perl-6.49-1.fc32 (FEDORA-2020-51aff5cdf9)
A Perl interface to the World-Wide Web
--------------------------------------------------------------------------------
Update Information:
This release fixes a test. ---- This release adds a support for 308 Permanent
Redirect response status.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Petr Pisar <ppisar(a)redhat.com> - 6.49-1
- 6.49 bump
* Mon Sep 21 2020 Petr Pisar <ppisar(a)redhat.com> - 6.48-1
- 6.48 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1880850 - perl-libwww-perl-6.48 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1880850
[ 2 ] Bug #1882183 - perl-libwww-perl-6.49 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1882183
--------------------------------------------------------------------------------
================================================================================
php-nikic-php-parser4-4.10.1-1.fc32 (FEDORA-2020-508a6645ec)
A PHP parser written in PHP - version 4
--------------------------------------------------------------------------------
Update Information:
**Version 4.10.1** (2020-09-23) **Added** * Added support for recovering from
a missing semicolon after a property or class constant declaration. **Fixed**
* Fix spurious whitespace in formatting-preserving pretty printer when both
removing and adding elements at the start of a list. * Fix incorrect case-
sensitivity in keyword token emulation. ---- **Version 4.10.0** (2020-09-19)
**Added** * [PHP 8.0] Added support for attributes. These are represented using
a new `AttributeGroup` node containing `Attribute` nodes. A new `attrGroups`
subnode is available on all node types that support attributes, i.e.
`Stmt\Class_`, `Stmt\Trait_`, `Stmt\Interface_`, `Stmt\Function_`,
`Stmt\ClassMethod`, `Stmt\ClassConst`, `Stmt\Property`, `Expr\Closure`,
`Expr\ArrowFunction` and `Param`. * [PHP 8.0] Added support for nullsafe
properties inside interpolated strings, in line with an upstream change.
**Fixed** * Improved compatibility with other libraries that use forward
compatibility defines for PHP tokens.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Remi Collet <remi(a)remirepo.net> - 4.10.1-1
- update to 4.10.1
* Sun Sep 20 2020 Remi Collet <remi(a)remirepo.net> - 4.10.0-1
- update to 4.10.0
--------------------------------------------------------------------------------
================================================================================
podman-2.1.0-2.fc32 (FEDORA-2020-76fcd0ba34)
Manage Pods, Containers and Container Images
--------------------------------------------------------------------------------
Update Information:
autobuilt v2.1.0, Security fix for CVE-2020-14370
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:2.1.0-2
- podman-plugins is a weak dep for podman
* Tue Sep 22 2020 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.1.0-1
- autobuilt v2.1.0
- Resolves: #1874268, #1881345 - CVE-2020-14370
* Fri Sep 18 2020 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:2.1.0-0.5.rc2
- fix release tag
* Thu Sep 17 2020 RH Container Bot <rhcontainerbot(a)fedoraproject.org> -
2:2.1.0-0.4.rc1
- autobuilt v2.1.0-rc2
* Wed Sep 16 2020 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:2.1.0-0.3.rc1
- plugins requires dnsmasq
* Mon Sep 14 2020 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2:2.1.0-0.2.rc1
- use correct release tag
* Mon Sep 14 2020 RH Container Bot <rhcontainerbot(a)fedoraproject.org> -
2:2.1.0-0.1.rc1
- autobuilt v2.1.0-rc1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1874268 - CVE-2020-14370 podman: environment variables leak between
containers when started via Varlink or Docker-compatible REST API
https://bugzilla.redhat.com/show_bug.cgi?id=1874268
--------------------------------------------------------------------------------
================================================================================
python-google-auth-1.21.3-1.fc32 (FEDORA-2020-9eeb92c6c8)
Google Auth Python Library
--------------------------------------------------------------------------------
Update Information:
Update to 1.21.3
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Jason Montleon <jmontleo(a)redhat.com> - 1:1.21.3-1
- Update to 1.21.3 (#1879308)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1879308 - python-google-auth-1.21.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1879308
--------------------------------------------------------------------------------
================================================================================
tigervnc-1.11.0-5.fc32 (FEDORA-2020-98137c59f8)
A TigerVNC remote display system
--------------------------------------------------------------------------------
Update Information:
Provide vncserver binary to inform the user about changes by suggesting to read
HOWTO.md documentation file.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 24 2020 Jan Grulich <jgrulich(a)redhat.com> - 1.11.0-5
- Actually install the HOWTO.md file
* Wed Sep 23 2020 Jan Grulich <jgrulich(a)redhat.com> - 1.11.0-4
- Call systemd macros on correct service file
* Tue Sep 22 2020 Jan Grulich <jgrulich(a)redhat.com> - 1.11.0-3
- Do not overwrite libvnc.conf config file
* Thu Sep 17 2020 Jan Grulich <jgrulich(a)redhat.com> - 1.11.0-2
- Add /usr/bin/vncserver file informing users to read the HOWTO.md file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1865580 - tigervnc: FTBFS in Fedora rawhide/f33
https://bugzilla.redhat.com/show_bug.cgi?id=1865580
[ 2 ] Bug #1877158 - tigervnc-1.11.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1877158
[ 3 ] Bug #1879739 - Add a /usr/bin/vncserver script that points users to new
instructions
https://bugzilla.redhat.com/show_bug.cgi?id=1879739
[ 4 ] Bug #1880131 - tigervnc-server-module overrides my
/etc/X11/xorg.conf.d/10-libvnc.conf
https://bugzilla.redhat.com/show_bug.cgi?id=1880131
[ 5 ] Bug #1881752 - dnf install tigervnc-server does not install /usr/bin/vncserver.
Reports "Failed to preset unit: Unit file xvnc.service does not exist"
https://bugzilla.redhat.com/show_bug.cgi?id=1881752
--------------------------------------------------------------------------------
================================================================================
tpm2-tss-2.4.3-1.fc32 (FEDORA-2020-bb8e3c5548)
TPM2.0 Software Stack
--------------------------------------------------------------------------------
Update Information:
tpm2-tss 2.4.3 changed or fixed: ��� Fix CVE-2020-24455 FAPI PolicyPCR not
instatiating correctly ��� Note that all TPM object created with a PolicyPCR with
the currentPcrs ��� and currentPcrsAndBank options have been created with an
incorrect policy ��� that ommits PCR checks. All these objects have to be
recreated! ��� Fix bug in FAPI NV creation with custom index values ��� Cleanup of
leftover sessions in error cases in FAPI ��� Better error messages in several FAPI
errors ��� Add checks to FAPI policy paths ��� Add checks if FAPI is correctly
provisioned ��� Fix execution of FAPI policies in some cases ��� Allow 0x prefixes
for TPMU_HA in JSON encoding
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 23 2020 Peter Robinson <pbrobinson(a)fedoraproject.org> - 2.4.3-1
- Update to 2.4.3
- Fixes CVE-2020-24455: FAPI PolicyPCR not instatiating correctly
--------------------------------------------------------------------------------