The following Fedora 28 Security updates need testing:
Age URL
241
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d510cfd7eb
jgraphx-3.6.0.0-6.fc28
190
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d7aeaa74da
nodejs-brace-expansion-1.1.11-1.fc28
189
https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc073fdc1a
nodejs-atob-2.1.1-1.fc28
182
https://bodhi.fedoraproject.org/updates/FEDORA-2018-9dd3f7c013
unrtf-0.21.9-8.fc28
150
https://bodhi.fedoraproject.org/updates/FEDORA-2018-28e9841baf
docker-latest-1.13.1-37.git9cb56fd.fc28
65
https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc4b7af297
xerces-c27-2.7.0-28.fc28
22
https://bodhi.fedoraproject.org/updates/FEDORA-2018-aadd3c2790
mupdf-1.14.0-6.fc28
17
https://bodhi.fedoraproject.org/updates/FEDORA-2018-997a9e3e1f xen-4.10.2-4.fc28
17
https://bodhi.fedoraproject.org/updates/FEDORA-2018-aa3752ac3c
nginx-1.14.1-1.fc28
16
https://bodhi.fedoraproject.org/updates/FEDORA-2018-96b48b34ae
mingw-uriparser-0.9.0-1.fc28
16
https://bodhi.fedoraproject.org/updates/FEDORA-2018-a3ef0a026f
uriparser-0.9.0-1.fc28
16
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b9581d9624
python-notebook-5.5.0-6.fc28
9
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c341b70641
pdns-recursor-4.1.8-1.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b60fdc1998
net-snmp-5.8-3.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ca03363d57
perl-5.26.3-415.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-70fe6a4d75
nagios-4.4.2-3.fc28
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-dbcb80405c
nbdkit-1.4.4-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-a0914af224
kernel-tools-4.19.7-200.fc28 kernel-headers-4.19.7-200.fc28 kernel-4.19.7-200.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-2575edf8d3
nss-3.40.1-1.0.fc28
The following Fedora 28 Critical Path updates have yet to be approved:
Age URL
17
https://bodhi.fedoraproject.org/updates/FEDORA-2018-997a9e3e1f xen-4.10.2-4.fc28
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3222e7c914 radvd-2.17-11.fc28
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-17f2d1f30c patch-2.7.6-8.fc28
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-fdc6d449e5
pungi-4.1.31-1.fc28
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-63e2c74a11
python-productmd-1.18-1.fc28
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-a171287251
libarchive-3.3.3-2.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c86898e4a7 gdb-8.1.1-4.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-13fa00525c
libsolv-0.7.1-2.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d6a3723ac6
perl-threads-shared-1.59-1.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ca03363d57
perl-5.26.3-415.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b60fdc1998
net-snmp-5.8-3.fc28
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b7705eb407 kobo-0.8.0-1.fc28
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-fdece005fe pam-1.3.1-13.fc28
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-12c54ca4bf gjs-1.52.5-1.fc28
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ffe5c00ef9
flatpak-1.0.6-3.fc28
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-da008c55a7
fedora-release-28-4
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-74fb2b9bab
cryptsetup-2.0.6-1.fc28
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-7c66d20e67
hwdata-0.318-1.fc28
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1e8bfb04f1 cups-2.2.6-26.fc28
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-fd0a2ea651 ibus-1.5.19-9.fc28
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-36192bdb63
gnupg2-2.2.11-1.fc28
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-cd8cc0abdd
libgcrypt-1.8.4-1.fc28
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-273b0291d0
perl-Unicode-Normalize-1.25-397.fc28
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-8c7b8ff33e
perl-MIME-Base64-3.15-397.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-2575edf8d3
nss-3.40.1-1.0.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-7a2cd05640
libnetfilter_conntrack-1.0.7-1.fc28
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-a0914af224
kernel-tools-4.19.7-200.fc28 kernel-headers-4.19.7-200.fc28 kernel-4.19.7-200.fc28
The following builds have been pushed to Fedora 28 updates-testing
HepMC-2.06.09-22.fc28
bodhi-3.11.3-2.fc28
calligra-3.1.0-11.fc28
clover2-8.1.1-1.D20181208gitd8b1b9a.fc28
eclipse-4.7.3a-6.fc28
elementary-icon-theme-5.0.1-1.fc28
geolite2-20181204-1.fc28
golang-github-namedotcom-0-0.1.20181207git08470be.fc28
golang-github-ovh-0-0.2.20181207gitba5adb4.fc28
golang-github-timewasted-linode-0-0.1.20181207git37e8452.fc28
ibus-typing-booster-2.3.1-1.fc28
irclog2html-2.17.1-1.fc28
libburn-1.5.0-1.fc28
libisoburn-1.5.0-1.fc28
libisofs-1.5.0-1.fc28
libmicrohttpd-0.9.61-1.fc28
livecd-tools-26.1-1.fc28
lorax-28.22-1.fc28
mbedtls-2.14.1-1.fc28
module-build-service-2.9.1-1.fc28
perl-Test-WWW-Mechanize-1.52-1.fc28
perl-Types-DateTime-0.002-2.fc28
perl-Web-ID-1.927-1.fc28
perl-match-simple-0.010-1.fc28
perl-match-simple-XS-0.001-2.fc28
php-7.2.13-2.fc28
php-pecl-apcu-5.1.15-1.fc28
php-sebastian-environment4-4.0.1-1.fc28
php-symfony-2.8.49-1.fc28
php-symfony3-3.4.20-1.fc28
php-symfony4-4.0.15-1.fc28
phpunit7-7.5.0-1.fc28
podman-0.12.1.1-1.git66d3499.fc28
polkit-0.115-2.fc28
python-asyncssh-1.15.0-1.fc28
python-bleach-2.1.4-1.fc28
python-transitions-0.6.8-1.fc28
qsynth-0.5.4-1.fc28
qt5-qtwebengine-5.11.3-1.fc28
rust-1.31.0-8.fc28
rust-packaging-6-2.fc28
selinux-policy-3.14.1-50.fc28
switchboard-plug-about-2.5.2-1.fc28
vacuum-im-1.3.0-0.13.20181129git52c2a8c.fc28
vile-9.8t-1.fc28
wingpanel-applications-menu-2.4.1-1.fc28
Details about builds:
================================================================================
HepMC-2.06.09-22.fc28 (FEDORA-2018-f6f371b392)
C++ Event Record for Monte Carlo Generators
--------------------------------------------------------------------------------
Update Information:
Fix segmentation fault.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 2.06.09-22
- Fix a segmentation fault (continue vs. break)
* Mon Jul 16 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 2.06.09-21
- Add BuildRequires on gcc-c++
- Packaging updates
- Remove Group and BuildRoot tags
- Don't clear the buildroot in the install section
- Remove the clean section
- Install license in licensedir (where applicable)
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
2.06.09-20
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
bodhi-3.11.3-2.fc28 (FEDORA-2018-3b7b43dee0)
A modular framework that facilitates publishing software updates
--------------------------------------------------------------------------------
Update Information:
Add python3-bodhi and python3-bodhi-client subpackages. ---- Upgrade to
[
3.11.3](https://github.com/fedora-infra/bodhi/releases/tag/3.11.3). ----
Update to [
3.11.2](https://github.com/fedora-infra/bodhi/releases/tag/3.11.2).
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 3.11.3-2
- Add python3 client packages.
* Wed Dec 5 2018 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 3.11.3-1
- Update to 3.11.3.
-
https://github.com/fedora-infra/bodhi/releases/tag/3.11.3
* Mon Dec 3 2018 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 3.11.2-1
- Update to 3.11.2.
-
https://github.com/fedora-infra/bodhi/releases/tag/3.11.2
--------------------------------------------------------------------------------
================================================================================
calligra-3.1.0-11.fc28 (FEDORA-2018-6707d310c0)
An integrated office suite
--------------------------------------------------------------------------------
Update Information:
Re-enable building stage application.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Rex Dieter <rdieter(a)fedoraproject.org> - 3.1.0-11
- (re)enable stage (#1518400)
* Tue Aug 14 2018 Marek Kasik <mkasik(a)redhat.com> - 3.1.0-10
- Rebuild for poppler-0.67.0
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.0-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1518400 - (re)enable calligra stage
https://bugzilla.redhat.com/show_bug.cgi?id=1518400
--------------------------------------------------------------------------------
================================================================================
clover2-8.1.1-1.D20181208gitd8b1b9a.fc28 (FEDORA-2018-ebfacef2f0)
Yet another compiler language
--------------------------------------------------------------------------------
Update Information:
New version 8.1.1 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Mamoru TASAKA <mtasaka(a)fedoraproject.org> -
8.1.1-1.D20181208gitd8b1b9a
- 8.1.1
* Sun Nov 18 2018 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> -
7.5.0-2.D2018112gitb3d1611
- Use C.UTF-8 locale
See
https://fedoraproject.org/wiki/Changes/Remove_glibc-langpacks-all_from_bu...
* Mon Nov 12 2018 Mamoru TASAKA <mtasaka(a)fedoraproject.org> -
7.5.0-1.D2018112gitb3d1611
- 7.5.0
--------------------------------------------------------------------------------
================================================================================
eclipse-4.7.3a-6.fc28 (FEDORA-2018-3d1e498c25)
An open, extensible IDE
--------------------------------------------------------------------------------
Update Information:
Updated to include org.eclipse.equinox.executable to be able to build RCP apps.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Severin Gehwolf <sgehwolf(a)redhat.com> - 1:4.7.3a-6
- Add org.eclipse.equinox.executable for building RCP apps
--------------------------------------------------------------------------------
================================================================================
elementary-icon-theme-5.0.1-1.fc28 (FEDORA-2018-d8a37ea0d9)
Icons from the Elementary Project
--------------------------------------------------------------------------------
Update Information:
Update to version 5.0.1. This release brings minor consistency fixes and some
new icons. Release notes:
https://github.com/elementary/icons/releases/tag/5.0.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Fabio Valentini <decathorpe(a)gmail.com> - 5.0.1-1
- Update to version 5.0.1.
--------------------------------------------------------------------------------
================================================================================
geolite2-20181204-1.fc28 (FEDORA-2018-1b55edfc07)
Free IP geolocation databases
--------------------------------------------------------------------------------
Update Information:
- Latest upstream
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Carl George <carl(a)george.computer> - 20181204-1
- Latest upstream
--------------------------------------------------------------------------------
================================================================================
golang-github-namedotcom-0-0.1.20181207git08470be.fc28 (FEDORA-2018-b4be3259bd)
Name.com API Go client
--------------------------------------------------------------------------------
Update Information:
- Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655679 - Review Request: golang-github-namedotcom -
Name.com API Go client
https://bugzilla.redhat.com/show_bug.cgi?id=1655679
--------------------------------------------------------------------------------
================================================================================
golang-github-ovh-0-0.2.20181207gitba5adb4.fc28 (FEDORA-2018-246c7d99e7)
Simple Go wrapper for the OVH API
--------------------------------------------------------------------------------
Update Information:
- Initial package - Skip tests on s390x
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655785 - Review Request: golang-github-ovh - Simple Go wrapper for the OVH
API
https://bugzilla.redhat.com/show_bug.cgi?id=1655785
--------------------------------------------------------------------------------
================================================================================
golang-github-timewasted-linode-0-0.1.20181207git37e8452.fc28 (FEDORA-2018-345a2ed444)
Go library for interacting with the Linode v3 API
--------------------------------------------------------------------------------
Update Information:
- Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655664 - Review Request: golang-github-timewasted-linode - Go library for
interacting with the Linode v3 API
https://bugzilla.redhat.com/show_bug.cgi?id=1655664
--------------------------------------------------------------------------------
================================================================================
ibus-typing-booster-2.3.1-1.fc28 (FEDORA-2018-29cc85a359)
A completion input method
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.1; Update translations from zanata (cs, de, es, fr, ja, pl, pt_BR,
uk, zh_CN updated); Update emoji data; ---- Update to 2.3.0; Make key bindings
configurable ---- Update pl and uk translations from zanata
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Mike FABIAN <mfabian(a)redhat.com> - 2.3.1-1
- Update to 2.3.1
- Update translations from zanata (cs, de, es, fr, ja, pl, pt_BR, uk, zh_CN updated)
- Avoid some PyGTKDeprecationWarnings
- Don���t show Unicode 12.0 draft emoji by default in emoji-picker
- Update emoji data to Unicode 12.0 draft
- Update emoji annotations from CLDR
* Wed Dec 5 2018 Mike FABIAN <mfabian(a)redhat.com> - 2.3.0-1
- Update to 2.3.0
- Update translations from zanata (de, ja, uk updated)
- Commit the current pre��dit when the focus changes
- When pre��dit empty or lookup table not enabled by key: clear the lookup table
- Make key bindings configurable
(Resolves:
https://github.com/mike-fabian/ibus-typing-booster/issues/15)
- Correct tooltips for the ���up��� and ���down��� buttons for
input methods dictionaries
* Wed Nov 28 2018 Mike FABIAN <mfabian(a)redhat.com> - 2.2.1-2
- Add desktop-file-utils, python3-gobject-base, gtk3, dbus-x11, dconf, and ibus
to BuildRequires (without that the build started failing on F28).
* Wed Nov 28 2018 Mike FABIAN <mfabian(a)redhat.com> - 2.2.1-1
- Update to 2.2.1
- Update translations from zanata (pl, uk updated)
--------------------------------------------------------------------------------
================================================================================
irclog2html-2.17.1-1.fc28 (FEDORA-2018-5409015de3)
A script to convert IRC logs to HTML and other formats
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release 2.17.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Fabian Affolter <mail(a)fabian-affolter.ch> - 2.17.1-1
- Update to latest upstream release 2.17.1
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.15.3-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 2.15.3-4
- Rebuilt for Python 3.7
--------------------------------------------------------------------------------
================================================================================
libburn-1.5.0-1.fc28 (FEDORA-2018-b24cf4c8fb)
Library for reading, mastering and writing optical discs
--------------------------------------------------------------------------------
Update Information:
libisofs 1.5.0 ============== * New API call iso_image_get_ignore_aclea(),
new iso_image_set_ignore_aclea() and iso_file_source_get_aa_string() flag bit3
to import all xattr namespaces * New API calls iso_image_was_blind_attrs(),
iso_local_set_attrs_errno(). * New flag bit7 with iso_local_set_attrs() to
avoid unnecessary write attempts. * New return value 2 of
IsoFileSource.get_aa_string() and iso_local_get_attrs(). * Now putting user
defined padding after appended partitions. * Bug fix: Add-on sessions with
partition offset claimed too many blocks as size. Regression of version 1.4.8.
* Bug fix: Long Joliet names without dot were mangled with one character too
many. Long Joliet names with leading dot were mangled one char too short. *
Bug fix: Reading beyond array end for HFS+ production caused SIGSEGV with
FreeBSD 11 CLANG -O2. Thanks ASX of GhostBSD. libburn 1.5.0 ============= *
Bug fix: cdrskin threw errno 22 on data file input if libburn is configured with
--enable-track-src-odirect * Bug fix: SIGSEGV could happen if a track ended by
reaching its fixed size while the track source still was willing to deliver
bytes. Thanks to user swordragon. * Bug fix: Device file comparison parameters
were recorded wrong with Linux sg libisoburn 1.5.0 ================ * Bug
fix: Multi-session emulation was not recognized with non-zero partition offset
* New bit10 of isoburn_drive_aquire() to accept all xattr namespaces * New
-xattr mode "any" to process all xattr namespaces of local filesystem * New
-as mkisofs option --xattr-any * New -as mkisofs options -uid and -gid
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Robert Scheck <robert(a)fedoraproject.org> 1.5.0-1
- Upgrade to 1.5.0
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.8-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1633872 - RPM installs "extract ISO-image" service menu for KDE4
but nothing for KDE 5
https://bugzilla.redhat.com/show_bug.cgi?id=1633872
--------------------------------------------------------------------------------
================================================================================
libisoburn-1.5.0-1.fc28 (FEDORA-2018-b24cf4c8fb)
Library to enable creation and expansion of ISO-9660 filesystems
--------------------------------------------------------------------------------
Update Information:
libisofs 1.5.0 ============== * New API call iso_image_get_ignore_aclea(),
new iso_image_set_ignore_aclea() and iso_file_source_get_aa_string() flag bit3
to import all xattr namespaces * New API calls iso_image_was_blind_attrs(),
iso_local_set_attrs_errno(). * New flag bit7 with iso_local_set_attrs() to
avoid unnecessary write attempts. * New return value 2 of
IsoFileSource.get_aa_string() and iso_local_get_attrs(). * Now putting user
defined padding after appended partitions. * Bug fix: Add-on sessions with
partition offset claimed too many blocks as size. Regression of version 1.4.8.
* Bug fix: Long Joliet names without dot were mangled with one character too
many. Long Joliet names with leading dot were mangled one char too short. *
Bug fix: Reading beyond array end for HFS+ production caused SIGSEGV with
FreeBSD 11 CLANG -O2. Thanks ASX of GhostBSD. libburn 1.5.0 ============= *
Bug fix: cdrskin threw errno 22 on data file input if libburn is configured with
--enable-track-src-odirect * Bug fix: SIGSEGV could happen if a track ended by
reaching its fixed size while the track source still was willing to deliver
bytes. Thanks to user swordragon. * Bug fix: Device file comparison parameters
were recorded wrong with Linux sg libisoburn 1.5.0 ================ * Bug
fix: Multi-session emulation was not recognized with non-zero partition offset
* New bit10 of isoburn_drive_aquire() to accept all xattr namespaces * New
-xattr mode "any" to process all xattr namespaces of local filesystem * New
-as mkisofs option --xattr-any * New -as mkisofs options -uid and -gid
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Robert Scheck <robert(a)fedoraproject.org> 1.5.0-1
- Upgrade to 1.5.0
- Provide KDE service menu entry for KDE 4 and 5 (#1633872)
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.8-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1633872 - RPM installs "extract ISO-image" service menu for KDE4
but nothing for KDE 5
https://bugzilla.redhat.com/show_bug.cgi?id=1633872
--------------------------------------------------------------------------------
================================================================================
libisofs-1.5.0-1.fc28 (FEDORA-2018-b24cf4c8fb)
Library to create ISO 9660 disk images
--------------------------------------------------------------------------------
Update Information:
libisofs 1.5.0 ============== * New API call iso_image_get_ignore_aclea(),
new iso_image_set_ignore_aclea() and iso_file_source_get_aa_string() flag bit3
to import all xattr namespaces * New API calls iso_image_was_blind_attrs(),
iso_local_set_attrs_errno(). * New flag bit7 with iso_local_set_attrs() to
avoid unnecessary write attempts. * New return value 2 of
IsoFileSource.get_aa_string() and iso_local_get_attrs(). * Now putting user
defined padding after appended partitions. * Bug fix: Add-on sessions with
partition offset claimed too many blocks as size. Regression of version 1.4.8.
* Bug fix: Long Joliet names without dot were mangled with one character too
many. Long Joliet names with leading dot were mangled one char too short. *
Bug fix: Reading beyond array end for HFS+ production caused SIGSEGV with
FreeBSD 11 CLANG -O2. Thanks ASX of GhostBSD. libburn 1.5.0 ============= *
Bug fix: cdrskin threw errno 22 on data file input if libburn is configured with
--enable-track-src-odirect * Bug fix: SIGSEGV could happen if a track ended by
reaching its fixed size while the track source still was willing to deliver
bytes. Thanks to user swordragon. * Bug fix: Device file comparison parameters
were recorded wrong with Linux sg libisoburn 1.5.0 ================ * Bug
fix: Multi-session emulation was not recognized with non-zero partition offset
* New bit10 of isoburn_drive_aquire() to accept all xattr namespaces * New
-xattr mode "any" to process all xattr namespaces of local filesystem * New
-as mkisofs option --xattr-any * New -as mkisofs options -uid and -gid
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Robert Scheck <robert(a)fedoraproject.org> 1.5.0-1
- Upgrade to 1.5.0
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.8-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1633872 - RPM installs "extract ISO-image" service menu for KDE4
but nothing for KDE 5
https://bugzilla.redhat.com/show_bug.cgi?id=1633872
--------------------------------------------------------------------------------
================================================================================
libmicrohttpd-0.9.61-1.fc28 (FEDORA-2018-9cca47fe5c)
Lightweight library for embedding a webserver in applications
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.61-1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 1:0.9.61-1
- Update to latest version
- Drop obsolete scriptlets
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:0.9.59-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
livecd-tools-26.1-1.fc28 (FEDORA-2018-7eb5688a2f)
Tools for building live CDs
--------------------------------------------------------------------------------
Update Information:
Update to 26.1 to fix issues with making SELinux-enabled images
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Neal Gompa <ngompa13(a)gmail.com> - 1:26.1-1
- Bump version to 26.1 (ngompa13)
- Run setfiles after chroot (noto.kazufumi)
- imgcreate/dnfinst: Force latest packages from only specified repos (ngompa13)
--------------------------------------------------------------------------------
================================================================================
lorax-28.22-1.fc28 (FEDORA-2018-d860415368)
Tool for creating the anaconda install images
--------------------------------------------------------------------------------
Update Information:
- lorax-composer: Handle packages with multiple builds - lorax-composer: Check
the queue and results at startup ---- - Adjust tmux version in the tests
to 2.8 (bcl(a)redhat.com) - New lorax documentation - 28.21 (bcl(a)redhat.com)
- lorax-composer: Install selinux-policy-targeted in images (bcl(a)redhat.com)
- Remove setfiles from mkrootfsimage (bcl(a)redhat.com) - Remove SELinux
Permissive checks (bcl(a)redhat.com) - Add --no-system-repos to lorax-composer
(bcl(a)redhat.com)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 6 2018 Brian C. Lane <bcl(a)redhat.com> 28.22-1
- lorax-composer: Handle packages with multiple builds (bcl(a)redhat.com)
- lorax-composer: Check the queue and results at startup (bcl(a)redhat.com)
* Thu Nov 29 2018 Brian C. Lane <bcl(a)redhat.com> 28.21-1
- Adjust tmux version in the tests to 2.8 (bcl(a)redhat.com)
- New lorax documentation - 28.21 (bcl(a)redhat.com)
- lorax-composer: Install selinux-policy-targeted in images (bcl(a)redhat.com)
- Remove setfiles from mkrootfsimage (bcl(a)redhat.com)
- Remove SELinux Permissive checks (bcl(a)redhat.com)
- Add --no-system-repos to lorax-composer (bcl(a)redhat.com)
* Mon Oct 29 2018 Brian C. Lane <bcl(a)redhat.com> 28.20-1
- New lorax documentation - 28.20 (bcl(a)redhat.com)
- Build manpages for composer-cli and lorax-composer (bcl(a)redhat.com)
- Add tests for ltmpl.py (bcl(a)redhat.com)
- Move get_dnf_base_object into a module (bcl(a)redhat.com)
- lorax: Fix dnf problems with selecting highest NEVRA from multiple repos
(bcl(a)redhat.com)
--------------------------------------------------------------------------------
================================================================================
mbedtls-2.14.1-1.fc28 (FEDORA-2018-1f6ca69276)
Light-weight cryptographic and SSL/TLS library
--------------------------------------------------------------------------------
Update Information:
- Update to 2.14.1 - CVE-2018-19608 (#1656784) Release notes:
https://tls.mbed.org/tech-
updates/releases/mbedtls-2.14.1-2.7.8-and-2.1.17-released Security Advisory:
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-
advisory-2018-03 ---- - Update to 2.14.0 Release notes:
https://tls.mbed.org/tech-
updates/releases/mbedtls-2.14.0-2.7.7-and-2.1.16-released
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Morten Stevens <mstevens(a)fedoraproject.org> - 2.14.1-1
- Update to 2.14.1
- CVE-2018-19608 (#1656784)
* Mon Dec 3 2018 Morten Stevens <mstevens(a)fedoraproject.org> - 2.14.0-1
- Update to 2.14.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656784 - CVE-2018-19608 mbedtls: Local timing attack on RSA decryption
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1656784
--------------------------------------------------------------------------------
================================================================================
module-build-service-2.9.1-1.fc28 (FEDORA-2018-cd4bb8b77f)
The Module Build Service for Modularity
--------------------------------------------------------------------------------
Update Information:
Release v2.9.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 mprahl <mprahl(a)redhat.com> - 2.9.1-1
- new version
--------------------------------------------------------------------------------
================================================================================
perl-Test-WWW-Mechanize-1.52-1.fc28 (FEDORA-2018-b0e6f53a70)
Testing-specific WWW::Mechanize subclass
--------------------------------------------------------------------------------
Update Information:
Upstream update.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Ralf Cors��pius <corsepiu(a)fedoraproject.org> - 1.52-1
- Update to 1.52.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656899 - Upgrade perl-Test-WWW-Mechanize to 1.52
https://bugzilla.redhat.com/show_bug.cgi?id=1656899
--------------------------------------------------------------------------------
================================================================================
perl-Types-DateTime-0.002-2.fc28 (FEDORA-2018-63e7274895)
Type constraints and coercions for datetime objects
--------------------------------------------------------------------------------
Update Information:
Initial release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656533 - Review Request: perl-Types-DateTime - Type constraints and
coercions for datetime objects
https://bugzilla.redhat.com/show_bug.cgi?id=1656533
--------------------------------------------------------------------------------
================================================================================
perl-Web-ID-1.927-1.fc28 (FEDORA-2018-d6606a8778)
Implementation of WebID (a.k.a. FOAF+SSL)
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656536 - Review Request: perl-Web-ID - Implementation of WebID
https://bugzilla.redhat.com/show_bug.cgi?id=1656536
--------------------------------------------------------------------------------
================================================================================
perl-match-simple-0.010-1.fc28 (FEDORA-2018-64333c2ced)
Simplified clone of smartmatch operator
--------------------------------------------------------------------------------
Update Information:
Initial release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656535 - Review Request: perl-match-simple - Simplified clone of smartmatch
operator
https://bugzilla.redhat.com/show_bug.cgi?id=1656535
--------------------------------------------------------------------------------
================================================================================
perl-match-simple-XS-0.001-2.fc28 (FEDORA-2018-090db002e0)
XS backend for match::simple
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1656537 - Review Request: perl-match-simple-XS - XS backend for
match::simple
https://bugzilla.redhat.com/show_bug.cgi?id=1656537
--------------------------------------------------------------------------------
================================================================================
php-7.2.13-2.fc28 (FEDORA-2018-dfe1f0bac6)
PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:
**PHP version 7.2.13** (06 Dec 2018) **ftp:** * Fixed bug php#77151
(ftp_close(): SSL_read on shutdown). (Remi) **CLI:** * Fixed bug php#77111
(php-win.exe corrupts unicode symbols from cli parameters). (Anatol)
**Fileinfo:** * Fixed bug php#77095 (slowness regression in 7.2/7.3 (compared
to 7.1)). (Anatol) **iconv:** * Fixed bug php#77147 (Fixing 60494 ignored
ICONV_MIME_DECODE_CONTINUE_ON_ERROR). (cmb) **Core:** * Fixed bug php#77231
(Segfault when using convert.quoted-printable-encode filter). (Stas) **IMAP:**
* Fixed bug php#77153 (imap_open allows to run arbitrary shell commands via
mailbox parameter). (Stas) **ODBC:** * Fixed bug php#77079 (odbc_fetch_object
has incorrect type signature). (Jon Allen) **Opcache:** * Fixed bug php#77058
(Type inference in opcache causes side effects). (Nikita) * Fixed bug php#77092
(array_diff_key() - segmentation fault). (Nikita) **Phar:** * Fixed bug
php#77022 (PharData always creates new files with mode 0666). (Stas) * Fixed bug
php#77143 (Heap Buffer Overflow (READ: 4) in phar_parse_pharfile). (Stas)
**PGSQL:** * Fixed bug php#77047 (pg_convert has a broken regex for the 'TIME
WITHOUT TIMEZONE' data type). (Andy Gajetzki) **SOAP:** * Fixed bug php#50675
(SoapClient can't handle object references correctly). (Cameron Porter) * Fixed
bug php#76348 (WSDL_CACHE_MEMORY causes Segmentation fault). (cmb) * Fixed bug
php#77141 (Signedness issue in SOAP when precision=-1). (cmb) **Sockets:** *
Fixed bug php#67619 (Validate length on socket_write). (thiagooak) ---- **From
upstream** **IMAP** * Fix php#77020 null pointer dereference in imap_mail
CVE-2018-19935
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Remi Collet <remi(a)remirepo.net> - 7.2.13-2
- Fix null pointer dereference in imap_mail CVE-2018-19935
* Wed Dec 5 2018 Remi Collet <remi(a)remirepo.net> - 7.2.13-1
- Update to 7.2.13 -
http://www.php.net/releases/7_2_13.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1654228 - CVE-2018-19518 php: imap_open() allows running arbitrary shell
commands via mailbox parameter
https://bugzilla.redhat.com/show_bug.cgi?id=1654228
--------------------------------------------------------------------------------
================================================================================
php-pecl-apcu-5.1.15-1.fc28 (FEDORA-2018-d7477eaa64)
APC User Cache
--------------------------------------------------------------------------------
Update Information:
**Version 5.1.15** * Restore `apc.serializer=php` as the default, as the
`default` serializer still/again has issues. * Fix possible issues in
persistence of arrays with the `default` serializer. * Attempt to reduce
shared memory fragmentation.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 5.1.15-1
- update to 5.1.15
--------------------------------------------------------------------------------
================================================================================
php-sebastian-environment4-4.0.1-1.fc28 (FEDORA-2018-188e4fe84b)
Handle HHVM/PHP environments
--------------------------------------------------------------------------------
Update Information:
This component provides functionality that helps writing PHP code that has
runtime-specific (PHP / HHVM) execution paths.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655423 - Review Request: php-sebastian-environment4 - Handle HHVM/PHP
environments
https://bugzilla.redhat.com/show_bug.cgi?id=1655423
--------------------------------------------------------------------------------
================================================================================
php-symfony-2.8.49-1.fc28 (FEDORA-2018-8c06b6defd)
PHP framework for web projects
--------------------------------------------------------------------------------
Update Information:
**Version 2.8.49** (2018-12-06) * security
[
CVE-2018-19790](https://symfony.com/cve-2018-19790) [Security\Http] detect bad
redirect targets using backslashes (@xabbuh) * security
[
CVE-2018-19789](https://symfony.com/cve-2018-19789) [Form] Filter file uploads
out of regular form types (@nicolas-grekas)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 2.8.49-1
- update to 2.8.49
--------------------------------------------------------------------------------
================================================================================
php-symfony3-3.4.20-1.fc28 (FEDORA-2018-66547a8c14)
Symfony PHP framework (version 3)
--------------------------------------------------------------------------------
Update Information:
**Version 3.4.20** (2018-12-06) * security
[
CVE-2018-19790](https://symfony.com/cve-2018-19790) [Security\Http] detect bad
redirect targets using backslashes (@xabbuh) * security
[
CVE-2018-19789](https://symfony.com/cve-2018-19789) [Form] Filter file uploads
out of regular form types (@nicolas-grekas) * bug #29436 [Cache] Fixed
Memcached adapter doClear()to call flush() (raitocz) * bug #29441 [Routing]
ignore trailing slash for non-GET requests (nicolas-grekas) * bug #29432 [DI]
dont inline when lazy edges are found (nicolas-grekas) * bug #29413
[Serializer] fixed DateTimeNormalizer to maintain microseconds when a different
timezone required (rvitaliy) * bug #29424 [Routing] fix taking verb into
account when redirecting (nicolas-grekas) * bug #29414 [DI] Fix dumping
expressions accessing single-use private services (chalasr) * bug #29375
[Validator] Allow `ConstraintViolation::__toString()` to expose codes that are
not null or emtpy strings (phansys) * bug #29376 [EventDispatcher] Fix
eventListener wrapper loop in TraceableEventDispatcher (jderusse) * bug #29343
[Form] Handle all case variants of "nan" when parsing a number (mwhudson,
xabbuh) * bug #29355 [PropertyAccess] calculate cache keys for property setters
depending on the value (xabbuh) * bug #29369 [DI] fix combinatorial explosion
when analyzing the service graph (nicolas-grekas) * bug #29349 [Debug]
workaround opcache bug mutating "$this" !?! (nicolas-grekas)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 3.4.20-1
- update to 3.4.20
--------------------------------------------------------------------------------
================================================================================
php-symfony4-4.0.15-1.fc28 (FEDORA-2018-6edf04d9d6)
Symfony PHP framework (version 4)
--------------------------------------------------------------------------------
Update Information:
**Version 4.0.15** (2018-12-06) * security
[
CVE-2018-19790](https://symfony.com/cve-2018-19790) [Security\Http] detect bad
redirect targets using backslashes (@xabbuh) * security
[
CVE-2018-19789](https://symfony.com/cve-2018-19789) [Form] Filter file uploads
out of regular form types (@nicolas-grekas)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 4.0.15-1
- update to 4.0.15
--------------------------------------------------------------------------------
================================================================================
phpunit7-7.5.0-1.fc28 (FEDORA-2018-db410a0d38)
The PHP Unit Testing framework
--------------------------------------------------------------------------------
Update Information:
**Version 7.5.0** - 2018-12-07 **Added** * Implemented
[#3340](https://github.com/sebastianbergmann/phpunit/issues/3340): Added
`assertEqualsCanonicalizing()`, `assertEqualsIgnoringCase()`,
`assertEqualsWithDelta()`, `assertNotEqualsCanonicalizing()`,
`assertNotEqualsIgnoringCase()`, and `assertNotEqualsWithDelta()` as
alternatives to using `assertEquals()` and `assertNotEquals()` with the
`$delta`, `$canonicalize`, or `$ignoreCase` parameters * Implemented
[#3368](https://github.com/sebastianbergmann/phpunit/issues/3368): Added
`assertIsArray()`, `assertIsBool()`, `assertIsFloat()`, `assertIsInt()`,
`assertIsNumeric()`, `assertIsObject()`, `assertIsResource()`,
`assertIsString()`, `assertIsScalar()`, `assertIsCallable()`,
`assertIsIterable()`, `assertIsNotArray()`, `assertIsNotBool()`,
`assertIsNotFloat()`, `assertIsNotInt()`, `assertIsNotNumeric()`,
`assertIsNotObject()`, `assertIsNotResource()`, `assertIsNotString()`,
`assertIsNotScalar()`, `assertIsNotCallable()`, `assertIsNotIterable()` as
alternatives to `assertInternalType()` and `assertNotInternalType()` *
Implemented [#3391](https://github.com/sebastianbergmann/phpunit/issues/3391):
Added a `TestHook` that fires after each test, regardless of result *
Implemented [#3417](https://github.com/sebastianbergmann/phpunit/pull/3417):
Refinements related to test suite sorting and TestDox result printer *
Implemented [#3422](https://github.com/sebastianbergmann/phpunit/issues/3422):
Added `assertStringContainsString()`,
`assertStringContainsStringIgnoringCase()`, `assertStringNotContainsString()`,
and `assertStringNotContainsStringIgnoringCase()` **Deprecated** * The methods
`assertInternalType()` and `assertNotInternalType()` are now deprecated. There
is no behavioral change in this version of PHPUnit. Using these methods will
trigger a deprecation warning in PHPUnit 8 and in PHPUnit 9 these methods will
be removed. * The methods `assertAttributeContains()`,
`assertAttributeNotContains()`, `assertAttributeContainsOnly()`,
`assertAttributeNotContainsOnly()`, `assertAttributeCount()`,
`assertAttributeNotCount()`, `assertAttributeEquals()`,
`assertAttributeNotEquals()`, `assertAttributeEmpty()`,
`assertAttributeNotEmpty()`, `assertAttributeGreaterThan()`,
`assertAttributeGreaterThanOrEqual()`, `assertAttributeLessThan()`,
`assertAttributeLessThanOrEqual()`, `assertAttributeSame()`,
`assertAttributeNotSame()`, `assertAttributeInstanceOf()`,
`assertAttributeNotInstanceOf()`, `assertAttributeInternalType()`,
`assertAttributeNotInternalType()`, `attributeEqualTo()`, `readAttribute()`,
`getStaticAttribute()`, and `getObjectAttribute()` are now deprecated. There is
no behavioral change in this version of PHPUnit. Using these methods will
trigger a deprecation warning in PHPUnit 8 and in PHPUnit 9 these methods will
be removed. * The optional parameters `$delta`, `$maxDepth`, `$canonicalize`,
and `$ignoreCase` of `assertEquals()` and `assertNotEquals()` are now
deprecated. There is no behavioral change in this version of PHPUnit. Using
these parameters will trigger a deprecation warning in PHPUnit 8 and in PHPUnit
9 these parameters will be removed. * The annotations `@expectedException`,
`@expectedExceptionCode`, `@expectedExceptionMessage`, and
`@expectedExceptionMessageRegExp` are now deprecated. There is no behavioral
change in this version of PHPUnit. Using these annotations will trigger a
deprecation warning in PHPUnit 8 and in PHPUnit 9 these annotations will be
removed. * Using the methods `assertContains()` and `assertNotContains()` on
`string` haystacks is now deprecated. There is no behavioral change in this
version of PHPUnit. Using these methods on `string` haystacks will trigger a
deprecation warning in PHPUnit 8 and in PHPUnit 9 these methods cannot be used
on on `string` haystacks anymore. * The optional parameters `$ignoreCase`,
`$checkForObjectIdentity`, and `$checkForNonObjectIdentity` of
`assertContains()` and `assertNotContains()` are now deprecated. There is no
behavioral change in this version of PHPUnit. Using these parameters will
trigger a deprecation warning in PHPUnit 8 and in PHPUnit 9 these parameters
will be removed. **Fixed** * Implemented
[#3428](https://github.com/sebastianbergmann/phpunit/pull/3428): `TestSuite`
setup failures are not logged correctly * Implemented
[#3429](https://github.com/sebastianbergmann/phpunit/pull/3429): Inefficient
loop in `getHookMethods()` * Implemented
[#3437](https://github.com/sebastianbergmann/phpunit/pull/3437): JUnit logger
skips PHPT tests
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Remi Collet <remi(a)remirepo.net> - 7.5.0-1
- update to 7.5.0
- raise dependency on sebastian/environment 4.0
--------------------------------------------------------------------------------
================================================================================
podman-0.12.1.1-1.git66d3499.fc28 (FEDORA-2018-e8e19475eb)
Manage Pods, Containers and Container Images
--------------------------------------------------------------------------------
Update Information:
Upstream-0.12.1.1 ---- Upstream-0.12.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Brent Baude <bbaude(a)redhat.com> - 1:0.12.1.1-1.git66d3499
- Upstream 0.12.1.1
* Thu Dec 6 2018 Brent Baude <bbaude(a)redhat.com> - 1:0.12.1-1.git7ba215f
- Upstream 0.12.1
* Thu Nov 8 2018 bbaude <bbaude(a)redhat.com> - 1:0.11.1-1.gita4adfe5
- Upstream 0.11.1-1
* Sun Oct 28 2018 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 0.10.1.3-3.gitdb08685
- correct bug id in previous changelog entry
* Sun Oct 28 2018 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 0.10.1.3-2.gitdb08685
- Resolves: #1643744 - build podman with ostree support
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1648668 - podman assumes sbin in path
https://bugzilla.redhat.com/show_bug.cgi?id=1648668
[ 2 ] Bug #1641800 - Podman does not attach to container when uid is too long
https://bugzilla.redhat.com/show_bug.cgi?id=1641800
[ 3 ] Bug #1657263 - error setting up OCI Hooks: open /usr/share/containers/oci/hooks.d:
no such file or directory
https://bugzilla.redhat.com/show_bug.cgi?id=1657263
[ 4 ] Bug #1634806 - ERRO[0003] HOSTNAME is not supported for OCI Image format, hostname
eafd6efbf5f6 will be ignored. Must use `docker` format
https://bugzilla.redhat.com/show_bug.cgi?id=1634806
--------------------------------------------------------------------------------
================================================================================
polkit-0.115-2.fc28 (FEDORA-2018-4ac3c68ee4)
An authorization framework
--------------------------------------------------------------------------------
Update Information:
Fix of CVE-2018-19788, priv escalation with high UIDs
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Jan Rybar <jrybar(a)redhat.com> - 0.115-2
- Fix of CVE-2018-19788, priv escalation with high UIDs
- Resolves: rhbz#1655926
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1655926 - CVE-2018-19788 polkit: Improper handling of user with uid >
INT_MAX leading to authentication bypass [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1655926
--------------------------------------------------------------------------------
================================================================================
python-asyncssh-1.15.0-1.fc28 (FEDORA-2018-58da5caf72)
Asynchronous SSH for Python
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream version
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Georg Sauthoff <mail(a)gms.tf> - 1.15.0-1
- Update to latest upstream version
--------------------------------------------------------------------------------
================================================================================
python-bleach-2.1.4-1.fc28 (FEDORA-2018-35faffe85f)
An easy whitelist-based HTML-sanitizing tool
--------------------------------------------------------------------------------
Update Information:
Update to 2.1.4.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 2.1.4-1
- Update to 2.1.4.
-
https://github.com/mozilla/bleach/blob/v2.1.4/CHANGES
--------------------------------------------------------------------------------
================================================================================
python-transitions-0.6.8-1.fc28 (FEDORA-2018-382b68782b)
A lightweight, object-oriented finite state machine implementation in Python
--------------------------------------------------------------------------------
Update Information:
New package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1566702 - Review Request: python-transitions - A lightweight, object-oriented
finite state machine implementation in Python
https://bugzilla.redhat.com/show_bug.cgi?id=1566702
--------------------------------------------------------------------------------
================================================================================
qsynth-0.5.4-1.fc28 (FEDORA-2018-8144a69ed1)
Qt based Fluidsynth GUI front end
--------------------------------------------------------------------------------
Update Information:
qsynth-0.5.4 ------------------ - Reset button now also resets master Gain,
Reverb and Chorus to their "factory default" values. - Fixed Reverb and
Chorus effects processing when audio output peak-meters are enabled on
FluidSynth API V2. - Old deprecated Qt4 build support is no more. - System
tray options now subject to current desktop environment availability.
qsynth-0.5.3 ------------------ - Current FluidSynth version information
added to command line output (-V, --version). - Overhaul adaptations to the
FluidSynth API V2 (>= 2.0.0). - AppStream metadata updated to be the most
compliant with latest
freedesktop.org specification and recommendation.
qsynth-0.5.2 ------------------ - AppData/AppStream metadata is now settled
under an all permisssive license (FSFAP). qsynth-0.5.1 ------------------ -
Disable singleton/unique application instance setup logic when the display
server platform is not X11. - Fixed deprecated calls to
fluid_synth_get_channel_info(), fluid_synth_set_midi_router() and
fluid_settings_getstr() (as signaled on libfluidsynth >= 1.1.9). - A little
hardening on the configure (autoconf) macro side.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2018 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> 0.5.4-1
- Update to 0.5.4
* Sun Nov 25 2018 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> 0.5.3-1
- Update to 0.5.3
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1446604 - qsynth-0.5.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1446604
--------------------------------------------------------------------------------
================================================================================
qt5-qtwebengine-5.11.3-1.fc28 (FEDORA-2018-c35b8f7d9b)
Qt5 - QtWebEngine components
--------------------------------------------------------------------------------
Update Information:
New upstream bugfix and security release, see also changelog:
http://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.11.3/?h=v5....
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 4 2018 Rex Dieter <rdieter(a)fedoraproject.org> - 5.11.3-1
- 5.11.3
--------------------------------------------------------------------------------
================================================================================
rust-1.31.0-8.fc28 (FEDORA-2018-d5603e8148)
The Rust Programming Language
--------------------------------------------------------------------------------
Update Information:
New versions of Rust and related tools, marking the start of Rust 2018 edition!
See the release notes for [1.31](https://blog.rust-
lang.org/2018/12/06/Rust-1.31-and-rust-2018.html). The subpackages for
`clippy`, `rls`, and `rustfmt` no longer have the "-preview" suffix, as these
tools were promoted with the 2018 edition.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 6 2018 Josh Stone <jistone(a)redhat.com> - 1.31.0-8
- Update to 1.31.0 -- Rust 2018!
- clippy/rls/rustfmt are no longer -preview
--------------------------------------------------------------------------------
================================================================================
rust-packaging-6-2.fc28 (FEDORA-2018-d5603e8148)
RPM macros for building Rust packages on various architectures
--------------------------------------------------------------------------------
Update Information:
New versions of Rust and related tools, marking the start of Rust 2018 edition!
See the release notes for [1.31](https://blog.rust-
lang.org/2018/12/06/Rust-1.31-and-rust-2018.html). The subpackages for
`clippy`, `rls`, and `rustfmt` no longer have the "-preview" suffix, as these
tools were promoted with the 2018 edition.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Igor Gnatenko <ignatenkobrain(a)fedoraproject.org> - 6-2
- Set CARGO_HOME
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.14.1-50.fc28 (FEDORA-2018-be8834ced4)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
More info:
https://koji.fedoraproject.org/koji/buildinfo?buildID=1170560
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.1-50
- Label /usr/share/spamassassin/sa-update.cron as spamd_update_exec_t
- Add dac_override capability to ssad_t domains
- Allow pesign_t domain to read gnome home configs
- Label /usr/libexec/lm_sensors/sensord-service-wrapper as lsmd_exec_t
- Allow rngd_t domains read kernel state
- Allow certmonger_t domains to read bind cache
- Allow ypbind_t domain to stream connect to sssd
- Allow rngd_t domain to setsched
- Allow sanlock_t domain to read/write sysfs_t files
- Add dac_override capability to postfix_local_t domain
- Allow ypbind_t to search sssd_var_lib_t dirs
- Allow virt_qemu_ga_t domain to write to user_tmp_t files
- Allow systemd_logind_t to dbus chat with virt_qemu_ga_t
- Update sssd_manage_lib_files() interface to allow also mmap sssd_var_lib_t files
- Add new interface sssd_signal()
- Update xserver_filetrans_home_content() and xserver_filetrans_admin_home_content()
unterfaces to allow caller domain to create .vnc dir in users homedir labeled as
xdm_home_t
- Update logging_filetrans_named_content() to allow caller domains of this interface to
create /var/log/journal/remote directory labeled as var_log_t
- Add sys_resource capability to the systemd_passwd_agent_t domain
- Allow ipsec_t domains to read bind cache
- kernel/files.fc: Label /run/motd as etc_t
- Allow systemd to stream connect to userdomain processes
- Label /var/lib/private/systemd/ as init_var_lib_t
- Allow initrc_t domain to create new socket labeled as init_T
- Allow audisp_remote_t domain remote logging client to read local audit events from
relevant socket.
- Add tracefs_t type to mountpoint attribute
- Allow useradd_t and groupadd_t domains to send signals to sssd_t
- Allow systemd_logind_t domain to remove directories labeled as tmpfs_t BZ(1648636)
- Allow useradd_t and groupadd_t domains to access sssd files because of the new feature
in shadow-utils
* Wed Nov 7 2018 Lukas Vrabec <lvrabec(a)redhat.com> - 3.14.1-49
- Update pesign policy to allow pesign_t domain to read bind cache files/dirs
- Add dac_override capability to mdadm_t domain
- Create ibacm_tmpfs_t type for the ibacm policy
- Dontaudit capability sys_admin for dhcpd_t domain
- Makes rhsmcertd_t domain an exception to the constraint preventing changing the user
identity in object contexts.
- Allow abrt_t domain to mmap generic tmp_t files
- Label /usr/sbin/wpa_cli as wpa_cli_exec_t
- Allow sandbox_xserver_t domain write to user_tmp_t files
- Dontaudit thumb_t domain to setattr on lib_t dirs BZ(1643672)
- Dontaudit cupsd_t domain to setattr lib_t dirs BZ(1636766)
- Add dac_override capability to postgrey_t domain BZ(1638954)
- Allow thumb_t domain to execute own tmpfs files BZ(1643698)
- Allow certutil running as ipsec_mgmt_t domain to mmap ipsec_mgmt pid files Dontaudit
ipsec_mgmt_t domain to write to the all mountpoints
- Add interface files_map_generic_tmp_files()
- Add dac_override capability to the syslogd_t domain
- Create systemd_timedated_var_run_t label
- Update systemd_timedated_t domain to allow create own pid files/access init_var_lib_t
files and read dbus files BZ(1646202)
- Improve fs_manage_ecryptfs_files to allow caller domain also mmap ecryptfs_t files
BZ(1630675)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1640255 - SELinux is preventing sss_cache from 'write' accesses on
the file config.ldb.
https://bugzilla.redhat.com/show_bug.cgi?id=1640255
--------------------------------------------------------------------------------
================================================================================
switchboard-plug-about-2.5.2-1.fc28 (FEDORA-2018-6a1840b8d1)
Switchboard System Information plug
--------------------------------------------------------------------------------
Update Information:
Update to version 2.5.2. This release supports reading the distributor logo
from the new "LOGO" entry in the os-release file, and features updated
translations. Release notes:
https://github.com/elementary/switchboard-plug-
about/releases/tag/2.5.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Fabio Valentini <decathorpe(a)gmail.com> - 2.5.2-1
- Update to version 2.5.2.
- Switch to using LOGO from os-release, dropping the downstream patch.
--------------------------------------------------------------------------------
================================================================================
vacuum-im-1.3.0-0.13.20181129git52c2a8c.fc28 (FEDORA-2018-17fee31a30)
XMPP/Jabber client
--------------------------------------------------------------------------------
Update Information:
- Update to 1.3.0-0.13.20181129git52c2a8c - Add lang files
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Martin Gansser <martinkg(a)fedoraproject.org> -
1.3.0-0.13.20181129git52c2a8c
- Update to 1.3.0-0.13.20181129git52c2a8c
- Add lang files
* Tue Nov 13 2018 Caol��n McNamara <caolanm(a)redhat.com> -
1.3.0-0.12.20180214git01910e9
- rebuild for hunspell 1.7.0
--------------------------------------------------------------------------------
================================================================================
vile-9.8t-1.fc28 (FEDORA-2018-3bc8cb0342)
VI Like Emacs
--------------------------------------------------------------------------------
Update Information:
- update vile to latest upstream version 9.8t - changelog
http://invisible-
island.net/vile/CHANGES.html#v9_8t
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 7 2018 Filipe Rosset <rosset.filipe(a)gmail.com> - 9.8t-1
- update to latest upstream 9.8t
- changelog
http://invisible-island.net/vile/CHANGES.html#v9_8t
* Thu Sep 13 2018 Filipe Rosset <rosset.filipe(a)gmail.com> - 9.8s-1
- rebuilt to latest upstream 9.8s
* Tue Jul 31 2018 Florian Weimer <fweimer(a)redhat.com> - 9.8r-9
- Rebuild with fixed binutils
* Sat Jul 28 2018 Mark McKinstry <mmckinst(a)umich.edu> - 9.8r-8
- add BuildRequires for gcc (RHBZ#1606646)
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 9.8r-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
wingpanel-applications-menu-2.4.1-1.fc28 (FEDORA-2018-6f771fb89c)
Lightweight and stylish app launcher
--------------------------------------------------------------------------------
Update Information:
Update to version 2.4.1. Release notes:
https://github.com/elementary/applications-menu/releases/tag/2.4.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 8 2018 Fabio Valentini <decathorpe(a)gmail.com> - 2.4.1-1
- Update to version 2.4.1.
- Drop explicit dependency on zeitgeist.
--------------------------------------------------------------------------------