The following Fedora 35 Security updates need testing:
Age URL
65
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4c0f58bf07
mysql-connector-java-8.0.27-1.fc35
26
https://bodhi.fedoraproject.org/updates/FEDORA-2021-22594d9eb0
chromium-96.0.4664.110-3.fc35
5
https://bodhi.fedoraproject.org/updates/FEDORA-2022-7e328bd66c
flatpak-1.12.4-1.fc35 flatpak-builder-1.2.2-1.fc35
4
https://bodhi.fedoraproject.org/updates/FEDORA-2022-6e6b59a682
grafana-7.5.11-3.fc35
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-a403286212
libtiff-4.3.0-3.fc35
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-421e65c5d4 usbview-3.0-1.fc35
The following Fedora 35 Critical Path updates have yet to be approved:
Age URL
58
https://bodhi.fedoraproject.org/updates/FEDORA-2021-12f6c46ad8 qemu-6.1.0-13.fc35
17
https://bodhi.fedoraproject.org/updates/FEDORA-2022-39ffce84e3 gdb-11.1-6.fc35
9
https://bodhi.fedoraproject.org/updates/FEDORA-2022-6393de1496
python-pyrsistent-0.18.1-1.fc35
9
https://bodhi.fedoraproject.org/updates/FEDORA-2022-4a7f4ad3c1 pungi-4.3.3-1.fc35
7
https://bodhi.fedoraproject.org/updates/FEDORA-2022-a581f05398
bluedevil-5.23.5-1.fc35 breeze-gtk-5.23.5-1.fc35 breeze-icon-theme-5.90.0-1.fc35
extra-cmake-modules-5.90.0-1.fc35 grub2-breeze-theme-5.23.5-1.fc35
kactivitymanagerd-5.23.5-1.fc35 kde-cli-tools-5.23.5-1.fc35 kde-gtk-config-5.23.5-1.fc35
kdecoration-5.23.5-1.fc35 kdeplasma-addons-5.23.5-1.fc35 kf5-5.90.0-1.fc35
kf5-attica-5.90.0-1.fc35 kf5-baloo-5.90.0-1.fc35 kf5-bluez-qt-5.90.0-1.fc35
kf5-frameworkintegration-5.90.0-1.fc35 kf5-kactivities-5.90.0-1.fc35
kf5-kactivities-stats-5.90.0-1.fc35 kf5-kapidox-5.90.0-1.fc35 kf5-karchive-5.90.0-1.fc35
kf5-kauth-5.90.0-1.fc35 kf5-kbookmarks-5.90.0-1.fc35 kf5-kcalendarcore-5.90.0-1.fc35
kf5-kcmutils-5.90.0-1.fc35 kf5-kcodecs-5.90.0-1.fc35 kf5-kcompletion-5.90.0-1.fc35
kf5-kconfig-5.90.0-1.fc35 kf5-kconfigwidgets-5.90.0-1.fc35 kf5-kcontacts-5.90.0-1.fc35
kf5-kcoreaddons-5.90.0-1.fc35 kf5-kcrash-5.90.0-1.fc35 kf5-kdav-5.90.0-1.fc35
kf5-kdbusaddons-5.90.0-1.fc35 kf5-kdeclarative-5
.90.0-1.fc35 kf5-kded-5.90.0-1.fc35 kf5-kdelibs4support-5.90.0-1.fc35
kf5-kdesignerplugin-5.90.0-1.fc35 kf5-kdesu-5.90.0-1.fc35 kf5-kdewebkit-5.90.0-1.fc35
kf5-kdnssd-5.90.0-1.fc35 kf5-kdoctools-5.90.0-1.fc35 kf5-kemoticons-5.90.0-1.fc35
kf5-kfilemetadata-5.90.0-1.fc35 kf5-kglobalaccel-5.90.0-1.fc35
kf5-kguiaddons-5.90.0-1.fc35 kf5-kholidays-5.90.0-1.fc35 kf5-khtml-5.90.0-1.fc35
kf5-ki18n-5.90.0-1.fc35 kf5-kiconthemes-5.90.0-1.fc35 kf5-kidletime-5.90.0-1.fc35
kf5-kimageformats-5.90.0-1.fc35 kf5-kinit-5.90.0-1.fc35 kf5-kio-5.90.0-1.fc35
kf5-kirigami2-5.90.0-1.fc35 kf5-kitemmodels-5.90.0-1.fc35 kf5-kitemviews-5.90.0-1.fc35
kf5-kjobwidgets-5.90.0-1.fc35 kf5-kjs-5.90.0-1.fc35 kf5-kjsembed-5.90.0-1.fc35
kf5-kmediaplayer-5.90.0-1.fc35 kf5-knewstuff-5.90.0-1.fc35
kf5-knotifications-5.90.0-1.fc35 kf5-knotifyconfig-5.90.0-1.fc35
kf5-kpackage-5.90.0-1.fc35 kf5-kparts-5.90.0-1.fc35 kf5-kpeople-5.90.0-1.fc35
kf5-kplotting-5.90.0-1.fc35 kf5-kpty-5.90.0-1.fc35 kf5-kquickcharts-5.90.0-1.fc35 kf5-k
ross-5.90.0-1.fc35 kf5-krunner-5.90.0-1.fc35 kf5-kservice-5.90.0-1.fc35
kf5-ktexteditor-5.90.0-1.fc35 kf5-ktextwidgets-5.90.0-1.fc35
kf5-kunitconversion-5.90.0-1.fc35 kf5-kwallet-5.90.0-1.fc35 kf5-kwayland-5.90.0-1.fc35
kf5-kwidgetsaddons-5.90.0-1.fc35 kf5-kwindowsystem-5.90.0-1.fc35 kf5-kxmlgui-5.90.0-1.fc35
kf5-kxmlrpcclient-5.90.0-1.fc35 kf5-modemmanager-qt-5.90.0-1.fc35
kf5-networkmanager-qt-5.90.0-1.fc35 kf5-plasma-5.90.0-1.fc35 kf5-prison-5.90.0-1.fc35
kf5-purpose-5.90.0-1.fc35 kf5-solid-5.90.0-1.fc35 kf5-sonnet-5.90.0-1.fc35
kf5-syndication-5.90.0-1.fc35 kf5-syntax-highlighting-5.90.0-1.fc35
kf5-threadweaver-5.90.0-1.fc35 kgamma-5.23.5-1.fc35 khotkeys-5.23.5-1.fc35
kinfocenter-5.23.5-1.fc35 kmenuedit-5.23.5-1.fc35 kscreen-5.23.5-1.fc35
kscreenlocker-5.23.5-1.fc35 ksshaskpass-5.23.5-1.fc35 ksystemstats-5.23.5-1.fc35
kwayland-integration-5.23.5-1.fc35 kwayland-server-5.23.5-1.fc35 kwin-5.23.5-1.fc35
kwrited-5.23.5-1.fc35 layer-shell-qt-5.23.5-1.fc35 libkscreen-qt5-5.23.5-1.fc35
libksysguard-5.23.5-1.fc35 oxygen-icon-theme-5.90.0-1.fc35 pam-kwallet-5.23.5-1.fc35
plasma-breeze-5.23.5-1.fc35 plasma-browser-integration-5.23.5-1.fc35
plasma-desktop-5.23.5-1.fc35 plasma-discover-5.23.5-1.fc35 plasma-disks-5.23.5-1.fc35
plasma-drkonqi-5.23.5-1.fc35 plasma-firewall-5.23.5-1.fc35
plasma-integration-5.23.5-1.fc35 plasma-milou-5.23.5-1.fc35 plasma-nm-5.23.5-1.fc35
plasma-oxygen-5.23.5-1.fc35 plasma-pa-5.23.5-1.fc35 plasma-sdk-5.23.5-1.fc35
plasma-systemmonitor-5.23.5-1.fc35 plasma-systemsettings-5.23.5-1.fc35
plasma-thunderbolt-5.23.5-1.fc35 plasma-vault-5.23.5-1.fc35 plasma-workspace-5.23.5-1.fc35
plasma-workspace-wallpapers-5.23.5-1.fc35 plymouth-kcm-5.23.5-1.fc35
plymouth-theme-breeze-5.23.5-1.fc35 polkit-kde-5.23.5-1.fc35 powerdevil-5.23.5-1.fc35
qqc2-breeze-style-5.23.5-1.fc35 qqc2-desktop-style-5.90.0-1.fc35 sddm-kcm-5.23.5-1.fc35
xdg-desktop-portal-kde-5.23.5-1.fc35
5
https://bodhi.fedoraproject.org/updates/FEDORA-2022-7e328bd66c
flatpak-1.12.4-1.fc35 flatpak-builder-1.2.2-1.fc35
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-02e49867f7
tigervnc-1.12.0-4.fc35
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-0ddd814037
swtpm-0.7.0-2.20211109gitb79fd91.fc35
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-a403286212
libtiff-4.3.0-3.fc35
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-873a7fd94c
fwupd-efi-1.2-1.fc35
The following builds have been pushed to Fedora 35 updates-testing
389-ds-base-2.0.13-1.fc35
bcal-2.4-1.fc35
bottles-2022.1.14-3.fc35
cantera-2.6.0-0.7.a4.fc35
cobbler-3.2.2-8.fc35
cockpit-machines-260-1.fc35
cockpit-podman-40-1.fc35
composer-2.2.5-1.fc35
containernetworking-plugins-1.0.1-3.fc35
distribution-gpg-keys-1.62-1.fc35
dnstwist-20220120-1.fc35
freetype-2.11.0-3.fc35
glibc-2.34-21.fc35
gnome-boxes-41.3-1.fc35
golang-github-mitchellh-ps-1.0.0-1.fc35
gpxsee-10.2-1.fc35
gqrx-2.15.7-1.fc35
httpie-3.0.2-1.fc35
initscripts-10.14-1.fc35
jc-1.18.1-1.fc35
jmol-14.32.16-1.fc35
legendary-0.20.25-1.fc35
mujs-1.2.0-1.fc35
nbdkit-1.28.5-1.fc35
neon-0.32.2-1.fc35
nwg-panel-0.5.7-1.fc35
osc-0.175.0-322.5.1.fc35
ovn-21.12.0-3.fc35
php-composer-pcre-1.0.1-1.fc35
php-laminas-stdlib-3.7.1-1.fc35
php-laminas-validator-2.16.0-1.fc35
php-theseer-autoload-1.27.0-1.fc35
php-zetacomponents-unit-test-1.1.5-1.fc35
phpMyAdmin-5.1.2-1.fc35
phpunit9-9.5.13-1.fc35
python-fsleyes-1.3.3-3.fc35
python-google-auth-2.4.0-1.fc35
python-jsondiff-1.3.1-1.fc35
qgnomeplatform-0.8.4-3.fc35
rhythmbox-3.4.4-11.fc35
sane-backends-1.1.1-2.fc35
util-linux-2.37.3-1.fc35
vim-8.2.4198-1.fc35
vultr-cli-2.12.0-1.fc35
yt-dlp-2022.01.21-1.fc35
Details about builds:
================================================================================
389-ds-base-2.0.13-1.fc35 (FEDORA-2022-7f62add497)
389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2021-45720
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Mark Reynolds <mreynolds(a)redhat.com> - 2.0.13-1
- Bump version to 2.0.13
- Issue 5132 - Update Rust crate lru to fix CVE
- Issue 3555 - UI - fix audit issue with npm nanoid
- Issue 4299 - UI - Add ACI editing features
- Issue 4299 - UI - LDAP editor - add "edit" and "rename"
functionality
- Issue 5127 - run restorecon on /dev/shm at server startup
- Issue 5124 - dscontainer fails to create an instance
- Issue 4312 - fix compiler warnings
- Issue 5115 - AttributeError: type object 'build_manpages' has no attribute
'build_manpages'
- Issue 4312 - performance search rate: contention on global monitoring counters (#4940)
- Issue 5105 - During a bind, if the target entry is not reachable the operation may
complete without sending result (#5107)
- Issue 5095 - sync-repl with openldap may send truncated syncUUID (#5099)
- Issue 3584 - Add is_fips check to password tests (#5100)
- Issue 5074 - retro changelog cli updates (#5075)
- Issue 4994 - Revert retrocl dependency workaround (#4995)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2044429 - CVE-2021-45720 lru: Use after free in lru crate
https://bugzilla.redhat.com/show_bug.cgi?id=2044429
--------------------------------------------------------------------------------
================================================================================
bcal-2.4-1.fc35 (FEDORA-2022-d85751fe93)
Storage conversion and expression calculator
--------------------------------------------------------------------------------
Update Information:
Update to 2.4
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 2.4-1
- Update to 2.4
* Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 2.3-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
bottles-2022.1.14-3.fc35 (FEDORA-2022-65d23d5573)
Easily manage Wine prefix in a new way
--------------------------------------------------------------------------------
Update Information:
build(add dep): cabextract
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> - 2022.1.14-3
- build(add dep): cabextract
* Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> -
2022.1.14-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043574 - Bottles RPM package is lacking cabextract dependency
https://bugzilla.redhat.com/show_bug.cgi?id=2043574
--------------------------------------------------------------------------------
================================================================================
cantera-2.6.0-0.7.a4.fc35 (FEDORA-2022-00dc0c4ce5)
Chemical kinetics, thermodynamics, and transport tool suite
--------------------------------------------------------------------------------
Update Information:
first real Fedora deploy
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 23 2022 Mark E. Fuller <mark.e.fuller(a)gmx.de> - 2.6.0-0.7.a4
- first real Fedora deploy
* Sun Jan 23 2022 Mark E. Fuller <mark.e.fuller(a)gmx.de> - 2.6.0-0.6.a4
- Final revisions for Fedora approval
- Remove workaround fixed by #1172 (Issue #1149)
- Version for first Fedora builds
- Exclude s390x due to failing tests
- Exclude ppc64le in Rawhide due to build segfaults
- Rename Python package to follow Fedora standards
* Thu Jan 13 2022 Mark E. Fuller <mark.e.fuller(a)gmx.de> - 2.6.0-0.5.a4
- Move static libraries from devel to static subpackage
* Thu Jan 6 2022 Mark E. Fuller <mark.e.fuller(a)gmx.de> - 2.6.0-0.4.a4
- Cleanup spec per Fedora package review
* Sun Jan 2 2022 Mark E. Fuller <fuller(a)fedoraproject.org> - 2.6.0-0.3.a4
- Bump dist to a4
* Thu Dec 23 2021 Mark E. Fuller <fuller(a)fedoraproject.org> - 2.6.0-0.2.a3
- Bump dist to reflect many merged commits in a3 since October
* Tue Nov 30 2021 Mark E. Fuller <fuller(a)fedoraproject.org> - 2.6.0-0.1.a3
- Introduced distro-specific IF to build on both Fedora and RHEL
* Thu Nov 18 2021 Mark E. Fuller <fuller(a)fedoraproject.org> - 2.6.0-0.1.a3
- Moved "setup_cantera*" to devel
- Make all included files explicit
* Thu Oct 14 2021 Mark E. Fuller <fuller(a)fedoraproject.org> - 2.6.0-0.1.a3
- first attempt versions of spec file and packaging
--------------------------------------------------------------------------------
================================================================================
cobbler-3.2.2-8.fc35 (FEDORA-2022-ddf611f86e)
Boot server configurator
--------------------------------------------------------------------------------
Update Information:
Fix posttrans script that corrupted /etc/cobbler/settings.yaml. You will need
to check that and possibly replace with /etc/cobbler/settings.yaml.rpmnew
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Orion Poplawski <orion(a)nwra.com> - 3.2.2-8
- Fix posttrans script
* Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.2.2-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
cockpit-machines-260-1.fc35 (FEDORA-2022-06d04c0c0a)
Cockpit user interface for virtual machines
--------------------------------------------------------------------------------
Update Information:
- Tests improvements and stabilization
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Matej Marusak <mmarusak(a)redhat.com> - 260-1
- Tests improvements and stabilization
* Wed Jan 5 2022 Simon Kobyda <skobyda(a)redhat.com> - 259-1
- Update to upstream 259 release
* Mon Dec 13 2021 Martin Pitt <martin(a)piware.de> - 258.1-1
- Test fixes
* Thu Dec 9 2021 Marius Vollmer <mvollmer(a)redhat.com> - 258-1
- Move storage pool actions outside of the expanded row
- Move the 'Overview' tab content from the network rows to the expanded row
directly
--------------------------------------------------------------------------------
================================================================================
cockpit-podman-40-1.fc35 (FEDORA-2022-a4a60897b9)
Cockpit component for Podman containers
--------------------------------------------------------------------------------
Update Information:
- Add pause/resume to containers - Always pull the latest image when creating a
new container
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Matej Marusak <mmarusak(a)redhat.com> - 40-1
- Add pause/resume to containers
- Always pull the latest image when creating a new container
--------------------------------------------------------------------------------
================================================================================
composer-2.2.5-1.fc35 (FEDORA-2022-c24c15bb0a)
Dependency Manager for PHP
--------------------------------------------------------------------------------
Update Information:
**Version 2.2.5** - 2022-01-21 * Disabled `composer/package-versions-
deprecated` by default as it can function using `Composer\InstalledVersions` at
runtime (#10458) * Fixed artifact repositories crashing if a phar file was
present in the directory (#10406) * Fixed binary proxy issue on PHP <8 when
fseek is used on the proxied binary path (#10468) * Fixed handling of non-
string versions in package repositories metadata (#10470)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 22 2022 Remi Collet <remi(a)remirepo.net> - 2.2.5-1
- update to 2.2.5
--------------------------------------------------------------------------------
================================================================================
containernetworking-plugins-1.0.1-3.fc35 (FEDORA-2022-b3edc6827e)
Libraries for writing CNI plugin
--------------------------------------------------------------------------------
Update Information:
switch to autospec and Provides: container-network-stack
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Lokesh Mandvekar <lsm5(a)fedoraproject.org> 1.0.1-3
- switch to autospec and Provides: container-network-stack
* Mon Jan 24 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 1.0.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
distribution-gpg-keys-1.62-1.fc35 (FEDORA-2022-b89940afbe)
GPG keys of various Linux distributions
--------------------------------------------------------------------------------
Update Information:
- add Fedora 37 - update copr keys
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Miroslav Such�� <msuchy(a)redhat.com> 1.62-1
- add Fedora 37
- update copr keys
--------------------------------------------------------------------------------
================================================================================
dnstwist-20220120-1.fc35 (FEDORA-2022-f6e273d0a7)
Domain name permutation engine
--------------------------------------------------------------------------------
Update Information:
Update to v20220120
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Artur Frenszek-Iwicki <fedora(a)svgames.pl> - 20220120-1
- Update to v20220120
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043164 - dnstwist-20220120 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2043164
--------------------------------------------------------------------------------
================================================================================
freetype-2.11.0-3.fc35 (FEDORA-2022-d3a2408f3a)
A free and portable font rendering engine
--------------------------------------------------------------------------------
Update Information:
This update really fixes situation where failed render of a glyph resulted in
error which was unnecessary.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043396 - Fix freetype 2.11.0-1 regression in Fedora 35
https://bugzilla.redhat.com/show_bug.cgi?id=2043396
--------------------------------------------------------------------------------
================================================================================
glibc-2.34-21.fc35 (FEDORA-2022-9421366d9c)
The GNU libc libraries
--------------------------------------------------------------------------------
Update Information:
Several bugs have been fixed in this update: * RHBZ#2039674 CVE-2021-3998
Unexpected return value from `realpath()` could leak data based on the
application * RHBZ#2039676 CVE-2021-3999 Off-by-one buffer overflow/underflow in
`getcwd()` * RHBZ#2042014 CVE-2022-23218 Stack-based buffer overflow in
`svcunix_create` via long pathnames * RHBZ#2042018 CVE-2022-23219 Stack-based
buffer overflow in sunrpc `clnt_create` via a long pathname * RHBZ#2033020
Without an `/etc/nsswitch.conf` file, `/etc/hosts` is still searched for host
data during name lookups after this update. A new command, `/usr/bin/ld.so
--list-diagnostics`, can be used to print diagnostic information relevant to
glibc optimization decisions. Deeply nested ELF soname dependencies no longer
slow down program start, `dlopen`, `dlclose`, and program termination with this
update. If the the `GLIBC_TUNABLES=glibc.pthread.rseq=1` is set, the rseq
kernel feature is used to implement the `sched_getcpu` function. This results is
a significant performance gain on aarch64, where this function is otherwise
implemented using a system call. This update removes support for the
`LD_PREFER_MAP_32BIT_EXEC` environment variable because it was no longer working
with the executables produced by current binutils versions.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Florian Weimer <fweimer(a)redhat.com> - 2.34-21
- Sync with upstream branch release/2.34/master,
commit 3438bbca90895d32825a52e31a77dc44d273c1c1:
- Linux: Detect user namespace support in io/tst-getcwd-smallbuff
- realpath: Avoid overwriting preexisting error
- CVE-2021-3999: getcwd: Set errno to ERANGE for size == 1
- tst-realpath-toolong: Fix hurd build
- CVE-2021-3998: realpath: ENAMETOOLONG for result larger than PATH_MAX
- stdlib: Fix formatting of tests list in Makefile
- stdlib: Sort tests in Makefile
- support: Add helpers to create paths longer than PATH_MAX
- powerpc: Fix unrecognized instruction errors with recent binutils
- x86: use default cache size if it cannot be determined [BZ #28784]
- CVE-2022-23218: Buffer overflow in sunrpc svcunix_create (bug 28768)
- sunrpc: Test case for clnt_create "unix" buffer overflow (bug 22542)
- CVE-2022-23219: Buffer overflow in sunrpc clnt_create for "unix" (bug 22542)
- socket: Add the __sockaddr_un_set function
- Disable debuginfod in printer tests [BZ #28757]
- Update syscall lists for Linux 5.16
* Wed Jan 19 2022 Florian Weimer <fweimer(a)redhat.com> - 2.34-20
- More reliable CPU compatibility diagnostics (#2040657)
* Fri Jan 14 2022 Florian Weimer <fweimer(a)redhat.com> - 2.34-19
- Optionally accelerate sched_getcpu using rseq (#2024347)
* Thu Jan 13 2022 Florian Weimer <fweimer(a)redhat.com> - 2.34-18
- Backport optimized ELF dependency sorting algorithm (#2032647)
* Thu Jan 13 2022 Florian Weimer <fweimer(a)redhat.com> - 2.34-17
- Sync with upstream branch release/2.34/master,
commit 2fe2af88abd13ae5636881da2e26f461ecb7dfb5
- i386: Remove broken CAN_USE_REGISTER_ASM_EBP (bug 28771)
- Update syscall lists for Linux 5.15
- powerpc: Fix unrecognized instruction errors with recent GCC
- timezone: test-case for BZ #28707
- timezone: handle truncated timezones from tzcode-2021d and later (BZ #28707)
- Fix subscript error with odd TZif file [BZ #28338]
- AArch64: Check for SVE in ifuncs [BZ #28744]
- intl/plural.y: Avoid conflicting declarations of yyerror and yylex
- Linux: Fix 32-bit vDSO for clock_gettime on powerpc32
- linux: Add sparck brk implementation
- Update sparc libm-test-ulps
- Update hppa libm-test-ulps
- riscv: align stack before calling _dl_init [BZ #28703]
- riscv: align stack in clone [BZ #28702]
- powerpc64[le]: Allocate extra stack frame on syscall.S
- elf: Fix tst-cpu-features-cpuinfo for KVM guests on some AMD systems [BZ #28704]
- nss: Use "files dns" as the default for the hosts database (bug 28700)
- arm: Guard ucontext _rtld_global_ro access by SHARED, not PIC macro
- mips: increase stack alignment in clone to match the ABI
- mips: align stack in clone [BZ #28223]
* Tue Dec 14 2021 Siddhesh Poyarekar <siddhesh(a)redhat.com> - 2.34-16
- Enable PIE by default on all architectures (#1988382)
* Tue Dec 14 2021 Florian Weimer <fweimer(a)redhat.com> - 2.34-15
- Sync with upstream branch release/2.34/master,
commit 06865865151579d1aa17d38110060a68b85c5d90:
- pthread/tst-cancel28: Fix barrier re-init race condition
- Use $(pie-default) with conformtest
- Run conform/ tests using newly built libc
- nptl: Add one more barrier to nptl/tst-create1
* Fri Dec 10 2021 Florian Weimer <fweimer(a)redhat.com> - 2.34-13
- x86-64: Remove LD_PREFER_MAP_32BIT_EXEC support (#2029410)
* Fri Dec 10 2021 Florian Weimer <fweimer(a)redhat.com> - 2.34-12
- Add /usr/bin/ld.so --list-diagnostics (#2023422)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2033020 - glibc: Reconsider "dns [!UNAVAIL=return] files" default
for hosts database
https://bugzilla.redhat.com/show_bug.cgi?id=2033020
[ 2 ] Bug #2039674 - CVE-2021-3998 glibc: Unexpected return value from realpath() could
leak data based on the application [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2039674
[ 3 ] Bug #2039676 - CVE-2021-3999 glibc: Off-by-one buffer overflow/underflow in
getcwd() [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2039676
[ 4 ] Bug #2042014 - CVE-2022-23218 glibc: stack-based buffer overflow in svcunix_create
via long pathnames [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2042014
[ 5 ] Bug #2042018 - CVE-2022-23219 glibc: stack-based buffer overflow in sunrpc
clnt_create via a long pathname [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2042018
--------------------------------------------------------------------------------
================================================================================
gnome-boxes-41.3-1.fc35 (FEDORA-2022-e922091e99)
A simple GNOME 3 application to access remote or virtual systems
--------------------------------------------------------------------------------
Update Information:
Update to 41.3
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 7 2022 Felipe Borges <feborges(a)redhat.com> - 41.3-1
- Update to 41.3
Related rhbz#2028883
* Tue Dec 7 2021 Felipe Borges <feborges(a)redhat.com> - 41.2-1
- Update dependencies
- Update to 41.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2021233 - No sound from VMs
https://bugzilla.redhat.com/show_bug.cgi?id=2021233
[ 2 ] Bug #2028883 - gnome-boxes-41.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2028883
--------------------------------------------------------------------------------
================================================================================
golang-github-mitchellh-ps-1.0.0-1.fc35 (FEDORA-2022-f22c274c46)
Find, list, and inspect processes from Go (golang)
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 22 2021 Ivan Savciuc <ivan.savciuc(a)aiven.io> - 1.0.0-1.fc35
- Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2035289 - Review Request: golang-github-mitchellh-ps - go-ps
https://bugzilla.redhat.com/show_bug.cgi?id=2035289
--------------------------------------------------------------------------------
================================================================================
gpxsee-10.2-1.fc35 (FEDORA-2022-fc4424e04a)
GPS log file viewer and analyzer
--------------------------------------------------------------------------------
Update Information:
**News in version 10.2:** - Improved/fixed TwoNav data files parser - Prefer
GPS locations when the positioning plugin provides multiple position sources -
Added a default DEM tiles download source - Multiple minor fixes and
enhancements
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Nikola Forr�� <nforro(a)redhat.com> - 10.2-1
- Update to version 10.2
resolves: #2043503
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 10.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043503 - gpxsee-10.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2043503
--------------------------------------------------------------------------------
================================================================================
gqrx-2.15.7-1.fc35 (FEDORA-2022-b281a277e9)
Software defined radio receiver powered by GNU Radio and Qt
--------------------------------------------------------------------------------
Update Information:
This is new version of gqrx. ---- This is new version of gqrx. ---- This is
new version of gqrx.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Jaroslav ��karvada <jskarvad(a)redhat.com> - 2.15.7-1
- New version
Resolves: rhbz#2044093
* Fri Jan 21 2022 Jaroslav ��karvada <jskarvad(a)redhat.com> - 2.15.5-1
- New version
Resolves: rhbz#2043504
* Thu Jan 20 2022 Jaroslav ��karvada <jskarvad(a)redhat.com> - 2.15.4-1
- New version
Resolves: rhbz#2041210
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.15.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2041210 - gqrx-2.15.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2041210
[ 2 ] Bug #2043504 - gqrx-2.15.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2043504
[ 3 ] Bug #2044093 - gqrx-2.15.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2044093
--------------------------------------------------------------------------------
================================================================================
httpie-3.0.2-1.fc35 (FEDORA-2022-faf1e1a020)
A Curl-like tool for humans
--------------------------------------------------------------------------------
Update Information:
httpie 3.0.x. See
https://httpie.io/blog/changelog-0009
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.0.2-1
- Update to 3.0.2
- Fixes: rhbz#2044572
* Mon Jan 24 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.0.1-1
- Update to 3.0.1
- Fixes: rhbz#2044058
* Fri Jan 21 2022 Miro Hron��ok <mhroncok(a)redhat.com> - 3.0.0-1
- Update to 3.0.0
- Fixes: rhbz#2043680
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.6.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043680 - httpie-3.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2043680
[ 2 ] Bug #2044058 - httpie-3.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2044058
--------------------------------------------------------------------------------
================================================================================
initscripts-10.14-1.fc35 (FEDORA-2022-850adec1a6)
Basic support for legacy System V init scripts
--------------------------------------------------------------------------------
Update Information:
Bugfix
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Jan Macku <jamacku(a)redhat.com> - 10.14-1
- ifup-routes: Revert quotes
- ifup-routes: Use `ip replace` only on type `route`
- ci(Mergify): configuration update
- ci: remove testing branch from `shellcheck_test.yml`
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2044189 - network-scripts-10.13 is broken in Fedora 35
https://bugzilla.redhat.com/show_bug.cgi?id=2044189
--------------------------------------------------------------------------------
================================================================================
jc-1.18.1-1.fc35 (FEDORA-2022-18f1a6806d)
Serialize the output of CLI tools and file-types to structured JSON
--------------------------------------------------------------------------------
Update Information:
Update to v1.18.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Artur Frenszek-Iwicki <fedora(a)svgames.pl> - 1.18.1-1
- Update to v1.18.1
- Separate package into CLI executable and python module
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043762 - jc-1.18.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2043762
--------------------------------------------------------------------------------
================================================================================
jmol-14.32.16-1.fc35 (FEDORA-2022-bba3dfae95)
Java viewer for chemical structures in 3D
--------------------------------------------------------------------------------
Update Information:
Changes in version 14.32.7: - bug fix: JavaScript error on file reading can
cause infinite loop - bug fix: toJSON for primitive arrays creating string
arrays `["1","2"]` - bug fix: dynamic PDB menu items not refreshing
after file
load if menu is not already created - bug fix: MUTATE with `pdbAddHydrogens`
fails and crashes Jmol - new feature: expanded MUTATE options - new feature:
MUTATE CREATE option - new feature: MODELKIT MUTATE - new feature: MODELKIT
CONNECT `@1 @2 [0,1,2,3,4,5,p,m] (default 1)` Changes in version 14.32.8: -
bug fix: removing (deprecated, unnecessary) `sun.audio.*` references - bug fix:
ModelKit creating allylic N not sp2; mouse action issues;better bond rotation -
code: refactoring `ModelKitPopup`; adding ModelKit.java Changes in version
14.32.9: - new feature: load FILTER "bmchains=0" or "bmchains=1"
("bmchains" by
itself defaults to 0) - for PDB, mmCIF, MMTF - removes duplicate chain
ids when applying BIOMOLECULE option - bmchains=0 will append symmetry
operator > 1 to chain id, so `{A B A B A B}` becomes `{A B A2 B2 A3 B3}` -
bmchains=1 will increment chain ids, so `{A B A B A B}` becomes A B C D E F
- expects chains to be of the type `{A B C D ...}` Changes in 14.32.10: - bug
fix: Amimation start during pause of previous animation will halt wrong
animation thread. Changes in 14.32.11: - bug fix: dispose of popupmenu fails
(15.2.8) - bug fix: JmolStatusListener should allow for user to also add
listener - retired code: Jmol applet, netscape jar and package,
java.applet.Applet, and javax.swing.JApplet all moved to `/unused/` Changes in
14.32.12: - new feature: (Java only) `inchiString.inchi("SMILES")` converts
InChI to SMILES. - utilizes JniInchi structure created from an InChI to
generate SMILES strings. - net effect is that InChI strings can be
converted to structures via SMILES. - passes tetrahedral, cumulene, and
alkene stereochemistry tests - InChI does not implement atropisomer
stereochemistry - InChI created using `{*}.inchi("FixedH")` will
differentiate tautomers - new feature: Adds
`compare({1.1},{2.1},"isomer",TRUE)` - TRUE indicates to also do a tautomer
check. - compares InChI with InChI FixedH option - new feature:
selectCallback - Fires after a scheduled script is completed if SELECT has
been issued - new feature: SELECT , ... (first parameter comma) - Fires
selectCallback immediately, not after script is completed - new feature: write
XSF - writes XCrysDen files
http://www.xcrysden.org/doc/XSF.html -
selected atoms only - includes ANIMSTEPS for molecules and crystals - new
feature: write PWMAT - a simple pwmat input (atom.config) file format for
just lattice and atoms - selected atoms only - code: refactored
`org.jmol.adapter.writers.*` from `PropertyManager` - bug fix: CMLWriter broken;
maybe never worked. - bug fix: format() did not allow for decimal places up to
12. - bug fix: POSCAR reader treating "T" constraint as "tritium" -
bug fix:
XCrystDen reader not reading animation properly Changes in 14.32.13: - bug
fix: VASP reader for Cartesian coords not converting automatically to fractional
- bug fix: JavaScript getPropertyJSON broken for array data - bug fix: Release
14.32.12 faulty -- files removed. Changes in 14.32.14: - new feature:
MODELKIT UNITCELL [unitcell description] - new feature: selectCallback
parameters added: nSelected, indexFirst, indexLast+1 - bug fix: PWMAT reader
needs to allow text on first line - bug fix: `unitcell()` without atoms in a
frame should still return frame's unitcell - bug fix: `set labeloffset` broken
in 14.32.12 Changes in 14.32.15: - new feature: JmolScript: callbacks have
access to parameters of JavaScript callbacks - new feature: FONT DRAW - new
feature: DRAW TITLE "xxx" - new feature: DRAW TITLE COLOR red "xxx" -
new
feature: DRAW TITLE FONT sansSerif bold 20 "xxx" - new feature FONT DRAW .... -
new feature: set labelPointerWidth - bug fix: label pointers not properly
connecting to label for all offsets - bug fix: JavaScript float processing
allowed to read full double precision - bug fix: measurements recently started
showing artificial double precision when only single - bug fix: MODELKIT ASSIGN
ATOM fails when in xtal mode - bug fix: structureModifiedCallback not reporting
fully - bug fix: SET FONTSIZE and FONT LABEL x.x should not reset font face or
style - bug fix: spacefill -23% should indicate ONLY - bug fix: JmolScript:
callbacks should not be asynchronous Changes in 14.32.16: - new feature:
(JavaScript API) `Jmol.setCallback(jmolApplet0, "xxx", function() {......})` -
new feature: (JavaScript) `Info = { .... , errorCallback: function{....},...}` -
new feature: (JavaScript) `Info = { .... , errorCallback: function{....},...}` -
new feature: Drag-Drop into Java AppConsole assumed to be script and run - new
feature: Drag-Drop into JavaScript output console assumed to be script and run -
new feature: Drag-Drop into JavaScript input console displayed
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Jerry James <loganjerry(a)gmail.com> - 14.32.16-1
- Version 14.32.16
- The applet code has been removed, so we can build with JDK 17
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 14.32.6-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2036414 - jmol-14.32.16 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2036414
--------------------------------------------------------------------------------
================================================================================
legendary-0.20.25-1.fc35 (FEDORA-2022-42a852be9e)
Free and open-source replacement for the Epic Games Launcher
--------------------------------------------------------------------------------
Update Information:
Update to 0.20.25
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.20.25-1
- chore(update): 0.20.25
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.20.24-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2044116 - legendary-0.20.25 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2044116
--------------------------------------------------------------------------------
================================================================================
mujs-1.2.0-1.fc35 (FEDORA-2022-cea66fa6d7)
An embeddable Javascript interpreter
--------------------------------------------------------------------------------
Update Information:
upstream release 1.2.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Alain Vigne <avigne(a)fedoraproject.org> 1.2.0-1
- upstream release 1.2.0
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.9-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
nbdkit-1.28.5-1.fc35 (FEDORA-2022-017b741cde)
NBD server
--------------------------------------------------------------------------------
Update Information:
New upstream stable branch version 1.28.5
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Richard W.M. Jones <rjones(a)redhat.com> - 1.28.5-1
- New upstream stable branch version 1.28.5
--------------------------------------------------------------------------------
================================================================================
neon-0.32.2-1.fc35 (FEDORA-2022-a608385ad4)
An HTTP and WebDAV client library
--------------------------------------------------------------------------------
Update Information:
This update has the latest upstream release of *neon*, version `0.32.2`. This
release has significant improvements in authentication support, and fixes for
use of OpenSSL 3.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 13 2022 Joe Orton <jorton(a)redhat.com> - 0.32.2-1
- update to 0.32.2
* Tue Sep 21 2021 Joe Orton <jorton(a)redhat.com> - 0.32.1-1
- update to 0.32.1
- add bcond for libproxy support
* Mon Sep 20 2021 Joe Orton <jorton(a)redhat.com> - 0.32.0-1
- update to 0.32.0
* Tue Sep 14 2021 Sahana Prasad <sahana(a)redhat.com> - 0.31.2-8
- Rebuilt with OpenSSL 3.0.0
--------------------------------------------------------------------------------
================================================================================
nwg-panel-0.5.7-1.fc35 (FEDORA-2022-b511a5919e)
GTK3-based panel for sway window manager
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 16 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.5.7-1
- chore(update): 0.5.7
--------------------------------------------------------------------------------
================================================================================
osc-0.175.0-322.5.1.fc35 (FEDORA-2022-40fd7c6ca2)
Open Build Service Commander
--------------------------------------------------------------------------------
Update Information:
New upstream release 0.175.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Dan ��erm��k <dan.cermak(a)cgc-instruments.com> - 0.175.0-322.5.1
- New upstream release 0.175.0
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> -
0.174.0-321.1.2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
ovn-21.12.0-3.fc35 (FEDORA-2022-c55163aa32)
Open Virtual Network support
--------------------------------------------------------------------------------
Update Information:
Synced with OVN upstream commit 8ee27f481e5edffa6421b5ed2617a4797f89c6bf ----
Update to upstream 21.12.0
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 23 2022 Numan Siddique <numans(a)ovn.org> - 21.12.0.3
- Synced with OVN upstream commit 8ee27f481e5edffa6421b5ed2617a4797f89c6bf
- Synced to get the multicast fixes required for ovn-k8s (for local az support).
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 21.12.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Tue Jan 18 2022 Numan Siddique <numans(a)ovn.org> - 21.12.0.1
- Update to upstream 21.12.0
--------------------------------------------------------------------------------
================================================================================
php-composer-pcre-1.0.1-1.fc35 (FEDORA-2022-0577b6c532)
PCRE wrapping library version 1
--------------------------------------------------------------------------------
Update Information:
**Version 1.0.1** * Fixed phpdoc to be more precise (#6)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 22 2022 Remi Collet <remi(a)remirepo.net> - 1.0.1-1
- update to 1.0.1
--------------------------------------------------------------------------------
================================================================================
php-laminas-stdlib-3.7.1-1.fc35 (FEDORA-2022-8cf79e7c28)
Laminas Framework Stdlib component
--------------------------------------------------------------------------------
Update Information:
**Version 3.7.1** Bug * 54: Fix for #50 - added ReturnTypeWillChange to
ArrayStack#getIterator(), to comply with PHP 8.1 requirements thanks to
@Ocramius and @alexgit2k * 53: Merge release 2.7.9 into 3.7.x thanks to
@github-actions[bot]
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Remi Collet <remi(a)remirepo.net> - 3.7.1-1
- update to 3.7.1
--------------------------------------------------------------------------------
================================================================================
php-laminas-validator-2.16.0-1.fc35 (FEDORA-2022-731f3dd305)
Laminas Framework Validator component
--------------------------------------------------------------------------------
Update Information:
**Version 2.16.0** Enhancement * 118: add iban support for ukraine thanks
to @Bontah
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Remi Collet <remi(a)remirepo.net> - 2.16.0-1
- update to 2.16.0
--------------------------------------------------------------------------------
================================================================================
php-theseer-autoload-1.27.0-1.fc35 (FEDORA-2022-beee45182b)
A tool and library to generate autoload code
--------------------------------------------------------------------------------
Update Information:
## Release 1.27.0 * Update ConsoleTools to 1.7.3. for better PHP 8.1
compatibilty * Add support for ENUM types (basic and backed)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Remi Collet <remi(a)remirepo.net> - 1.27.0-1
- update to 1.27.0
--------------------------------------------------------------------------------
================================================================================
php-zetacomponents-unit-test-1.1.5-1.fc35 (FEDORA-2022-1f5ccba37b)
Zeta UnitTest Component
--------------------------------------------------------------------------------
Update Information:
**Version 1.1.5** - Friday 21 January 2022 - Test whether the temporary
directory for cleaning up temp files is actually set before using it. ----
**Version 1.1.4** - Friday 21 January 2022 - Add compatibility for old PHPUnit
3/4 getMock() API.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Remi Collet <remi(a)remirepo.net> - 1.1.5-1
- update to 1.1.5
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin-5.1.2-1.fc35 (FEDORA-2022-914fa8641a)
A web interface for MySQL and MariaDB
--------------------------------------------------------------------------------
Update Information:
**Version 5.1.2** A flaw was identified in how phpMyAdmin processes two factor
authentication; a user could potentially manipulate their account to bypass two
factor authentication in subsequent authentication sessions (**PMASA-2022-1**).
A series of weaknesses was identified allowing a malicious user to submit
malicious information to present an XSS or HTML injection attack in the
graphical setup page (**PMASA-2022-2**). ---- Changelog: - issue
Replaced MySQL documentation redirected links - issue #16960 Fix JS error on
Designer visual builder on some modal buttons - issue Re-build openlayers
JS dependency from the source files and provide a smaller JS bundle - issue
Fixed imports and theme detection depending on the current working dir - issue
Update JavaScript dependencies - issue #16935 Remove hardcoded row length for
"$cfg['CharTextareaRows']" to allow back values < 7 - issue #16977
Fix encoding
of enum and set values on edit value - issue Fix set value as selected
when it has special chars on edit value enum - issue #16896 Fix distinct URLs
broken on nullable text fields - issue Fixed two possible PHP errors
using INT data - issue Fixed possible warning "Undefined index:
output_format" on export - issue Fixed warning "Undefined index:
ods_recognize_percentages" on Import ODS - issue Fixed warning
"Undefined
array key "ods_recognize_currency" on Import ODS - issue #16982 Fixed
"Notice:
Undefined index: foreign_keys_data" on Designer remove relation - issue
Backquote phpMyAdmin table name on internal relation delete query for Designer -
issue #16982 Do not try to delete internal relations if they are not configured
- issue #16982 Show success messages on Designer for add and remove relation
operations - issue Fixed possible "Undefined index: clause_is_unique" on
replace value in cell - issue #16991 Fixed case where $_SERVER['REQUEST_METHOD']
is undefined - issue Fixed configuration error handler registration -
issue #16997 Fixed server variables get/set value not working on multi server
server > 1 - issue #16998 Fixed Multi table query submit on server > 1 logged
out user - issue #17000 Fixed Multi edit on central columns on server > 1 logged
out user - issue #17001 Fix PHP error on query submit without a table name on
multi table query box - issue #16999 Fixed multi table query results shows for 1
sec and then page refreshes - issue Fixed a non translated button text on
central columns add - issue Fixed table width on Query by example page
for large screens - issue #16975 Fixed NULL default had a value on insert with
datatime fields - issue #16994 Fixed missing privilege escaping when assigning
multiple databases with '_' to an user - issue #16864 Fixed the margin on the
last database of the tree on all themes when scrollbars are displayed - issue
#17011 Fixed the database tree line that was not continuous on database groups -
issue Build more syntax correct URLs on JS internal redirects - issue
#16976 Fix wrong link when a table is moved from a database to another - issue
#16985 Fix case-sensitive issue of innodb_file_format=barracuda vs
innodb_file_format=Barracuda - issue Fixed duplicate quote in navigation
nodes - issue #17006 Disable the URL limit for the MariaDB analyser feature -
issue Fix calls to fetchRow using two parameters but the function has
only one parameter - issue #17020 Fixed "Notice Undefined index: sql_query" on
Insert page - issue Fix reported "Undefined index: FirstDayOfCalendar" -
issue Fix reported "Undefined index: environment" - issue Fix
"TypeError: strlen() expects parameter 1 to be string, null given" on databases
listing - issue #16973 Fix "Undefined array key "n0_pos2_name"" on
databases
listing - issue Use the correct min MySQL version for axis-order (8.0.1)
instead of (8.0.11) - issue Use the queries we asked the user
confirmation for on DELETE and TRUNCATE table actions - issue #16994 Fixed
editing specific privileges for a database covered by a wildcard privilege -
issue #16994 Fixed escaping of the database name for databases containing '_' on
users edit - issue #16994 Only escape once on grant/revoke privileges for
databases containing '_' or '%' - issue #16994 Only show databases without
a
privilege on multi select for user grant databases - issue Removed un-
expected query success message from the Table export page - issue #17026 Handle
possible invalid boolean values injected in SaveDir or UploadDir causing
"TypeError: mb_substr()" - issue #16981 Enable cookie parameter
"SameSite" on
"phpMyAdmin" cookie for PHP >= 7.3 - issue #16966 Encode "#" to
have the anchor
part of the destination URL on SQL highlight terms URLs - issue #17004 Fix PHP
errors due to removed variable "innodb_file_format" on MariaDB >= 10.6.0 and
MySQL >= 8.0.0 - issue #16842 Fixed missing password modes on PerconaDB - issue
#16947 Fix "Change login information" form not working - issue #17004 Fix
Advisor for MariaDB >= 10.5 because of removed "innodb_log_files_in_group"
variable - issue #17037 Fix change structure does not surface errors - issue
#17016 Fixed online Transaction, errors not reported on structure edit - issue
#17042 Fix SQL escaping bug on DB name with special chars on submit query with
rollback option - issue #17027 Better handle the display of sorted binary
columns in results summary - issue #16398 Quote non numeric values on
parameterized queries - issue Fixed duplicate HTML escaping on foreign
keys select value modal - issue #15370 Fixed edit routine UI incorrectly removes
too many escape slashes - issue #14631 Fix enum with comma produces incorrect
search dropdown on search pages - issue Fix gis visualization position
and limit parameters have no effect - issue #16995 Fix edit binary foreign key
adds a 1 to the value on the selected value - issue #13614 Fixed escaping the
database names when granting privileges on tables - issue #11834 Fixed adding a
new user on "privileges" tab of a table with a database name using a
"_"
character - issue #17033 Fixed scaling of line width and point size in GIS
visualization - issue #17054 Removed "DEL" character from generated random
strings for Blowfish secret auto-generated by setup - issue #17019 Fixed
"Browse" button visible when creating a table from the database structure view
-
issue #16804 Fixed numbers where left-aligned rather than right-aligned - issue
Fixed Metro theme text color for buttons in the browse table navigation bar -
issue #14796 Fix export Database page, UI prevents from exporting procedures
only - issue #15225 Fix Command+click on macOS opens links in same tab - issue
#17014 Fix column names in first row when importing from CSV where the first
line contains column names - issue Fix prevent scrolling the page when
scrolling in GIS visualization - issue Fix GIS visualization save file
with a different label or column - issue Fixed GIS saving image as png
with a label - issue Fixed if label is just the number zero, it was
treated as no label in the OpenLayers map - issue #17039 Fix unable to have 2FA
working with a "pmadb" config value != phpmyadmin - issue #17079 Fixed missing
spatial functions in Insert/Edit page - issue Fixed broken docs link
after a FK data type mismatch error - issue Fix don't add multiple
OpenLayers maps, remove listeners on dispose on GIS visualization - issue #14502
Uncheck the "ignore" checkbox when the user chooses a value in the foreign key
list on Insert page - issue #14502 Uncheck the "ignore" checkbox when the user
saves the GIS value on Insert page - issue #17018 Fixed cannot save data from
GIS editor for spatial column on Insert page - issue #17084 Fixed ErrorHandler
not showing errors when phpMyAdmin session does not work at all - issue #17062
Fixed pagination issues when working with identically named tables in separate
databases - issue #17046 Fix "Uncaught TypeError: htmlspecialchars() expects
parameter 1 to be string, null given" - issue #16942 Fix table Import with CSV
using LOAD DATA LOCAL causes error "LOAD DATA LOCAL INFILE is forbidden" -
issue
#16942 Fix auto-detection for "LOAD DATA LOCAL INFILE" LOCAL option - issue
#16067 Make select elements with multiple items resizable - issue Fix the
display of Indexes that use Expressions and not column names - issue
Allow to create the phpMyAdmin storage database using a different name than
"phpmyadmin" using the interface - issue #17092 Document that
"$cfg['Servers'][$i]['designer_coords']" was removed in version
4.3.0 - issue
#16906 Support special table names for pmadb storage table names - issue #16906
Fix a caching effect on the feature list after creating the tables - issue
#16906 Better report errors when creating the pmadb or it's tables - issue
#16906 Create the pmadb tables using the names configured and not the default
names - issue #16906 Create the phpMyAdmin storage database using the configured
"['pmadb']" name and not always "phpmyadmin" - issue #16906
Prevent incorrect
overriding of configured values after a pmadb fix - issue #16906 Use the control
connection to create the storage database and tables and not the user connection
- issue #16693 Fix can't see SQL after adding a new column - issue #12753 Show
table structure after adding a new column - issue Fix a PHP notice when
logging out - issue #17090 Fix bbcode not rendered for error messages on setup -
issue #17198 Fix the database selection when the navigation tree is disabled -
issue #17228 Fixed copy to clipboard with NULL values gives non usable text -
issue #16746 Replace samyoul/u2f-php-server by code-lts/u2f-php-server - issue
#16005 Performance improvement on the Import and Export pages - issue #17247 Fix
triple HTML encoding - issue #17259 Fix broken link in the Simulate DML query
modal - issue #16746 Update tcpdf dependency to ^6.4.4 for PHP 8.1 compatibility
- issue #16746 Update twig dependency to "^2.14.9 || ^3.3.5" for PHP 8.1
compatibility - issue [security] Add configuration directive
$cfg['Servers'][$i]['hide_connection_errors'] to allow hiding host names
and
other error details when login fails - issue [security] Add configuration
directive $cfg['URLQueryEncryption'] to allow encrypting senstive information in
the URL - issue [security] Fix a scenario where an authenticated user can
disable two factor authentication (PMASA-2022-1) - issue [security] Fix
XSS and HTML injection attacks in the graphical setup page (PMASA-2022-2) ----
Packaging changes: * the package now provides all dependencies bundled.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 23 2022 Remi Collet <remi(a)remirepo.net> - 5.1.2-1
- update to 5.1.2 (2022-01-22, security and bugfix release)
- always use bundled libraries
- fix Licence name
- add build dependency on json ext
--------------------------------------------------------------------------------
================================================================================
phpunit9-9.5.13-1.fc35 (FEDORA-2022-98c89af6ce)
The PHP Unit Testing framework version 9
--------------------------------------------------------------------------------
Update Information:
**Version 9.5.13** - 2022-01-24 Fixed *
[#4871](https://github.com/sebastianbergmann/phpunit/issues/4871): Class
`SebastianBergmann\CodeCoverage\Filter` is not found during PHPT tests when
PHPUnit is used from PHAR ---- **Version 9.5.12** - 2022-01-21 Fixed *
[#4799](https://github.com/sebastianbergmann/phpunit/pull/4799): Memory leaks in
`PHPUnit\Framework\TestSuite` class *
[#4857](https://github.com/sebastianbergmann/phpunit/pull/4857): Result of
`debug_backtrace()` is not used correctly
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Remi Collet <remi(a)remirepo.net> - 9.5.13-1
- update to 9.5.13
* Fri Jan 21 2022 Remi Collet <remi(a)remirepo.net> - 9.5.12-1
- update to 9.5.12
--------------------------------------------------------------------------------
================================================================================
python-fsleyes-1.3.3-3.fc35 (FEDORA-2022-abf5c05534)
FSLeyes, the FSL image viewer
--------------------------------------------------------------------------------
Update Information:
Bugfix: install icons and appdata
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Ankur Sinha (Ankur Sinha Gmail) <sanjay.ankur(a)gmail.com> 1.3.3-3
- feat: install icons and appdata file
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 1.3.3-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2023479 - fsleyes doesn't display images on Fedora 35
https://bugzilla.redhat.com/show_bug.cgi?id=2023479
--------------------------------------------------------------------------------
================================================================================
python-google-auth-2.4.0-1.fc35 (FEDORA-2022-d058199bed)
Google Auth Python Library
--------------------------------------------------------------------------------
Update Information:
Update to 2.4.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 21 2022 Fedora Release Monitoring <release-monitoring(a)fedoraproject.org> -
1:2.4.0-1
- Update to 2.4.0 (#2043482)
* Wed Jan 12 2022 Benjamin A. Beasley <code(a)musicinmybrain.net> - 1:2.3.3-2
- Apply upstream PR#937 (fix RHBZ#2037828); this simply loosens the version
specification to allow cachetools 5.x
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043482 - python-google-auth-2.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2043482
--------------------------------------------------------------------------------
================================================================================
python-jsondiff-1.3.1-1.fc35 (FEDORA-2022-58bb437a56)
Diff JSON and JSON-like structures in Python
--------------------------------------------------------------------------------
Update Information:
Updated to 1.3.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Major Hayden <major(a)redhat.com> 1.3.1-1
- Update to 1.3.1
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 1.3.0-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2044410 - python-jsondiff-1.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2044410
--------------------------------------------------------------------------------
================================================================================
qgnomeplatform-0.8.4-3.fc35 (FEDORA-2022-5a601ef8d3)
Qt5 Platform Theme aimed to accommodate Gnome settings
--------------------------------------------------------------------------------
Update Information:
Rebuild against updated qt5-qtwayland package.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Jan Grulich <jgrulich(a)redhat.com> - 0.8.4-3
- Rebuild (qt5-qtwayland)
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.4-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rhythmbox-3.4.4-11.fc35 (FEDORA-2022-cc04125109)
Music Management Application
--------------------------------------------------------------------------------
Update Information:
Add tdb to pkgconfig dependencies
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 23 2022 David King <amigadave(a)amigadave.com> - 3.4.4-11
- Add tdb to pkgconfig dependencies (#2043849)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043849 - rhythmbox-devel pkg missing file 'tdb.h' or dependency for
it
https://bugzilla.redhat.com/show_bug.cgi?id=2043849
--------------------------------------------------------------------------------
================================================================================
sane-backends-1.1.1-2.fc35 (FEDORA-2022-274a29eeef)
Scanner access software
--------------------------------------------------------------------------------
Update Information:
2042316 - genesys: backend crashes because it attempts to access a member
outside of vector
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 1.1.1-2
- 2042316 - genesys: backend crashes because it attempts to access a member outside of
vector
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2042316 - genesys: backend crashes because it attempts to access a member
outside of vector
https://bugzilla.redhat.com/show_bug.cgi?id=2042316
--------------------------------------------------------------------------------
================================================================================
util-linux-2.37.3-1.fc35 (FEDORA-2022-9d02441b24)
Collection of basic system utilities
--------------------------------------------------------------------------------
Update Information:
Security bugs in libmount, CVE-2021-3996 and CVE-2021-3995.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Karel Zak <kzak(a)redhat.com> - 2.37.3-1
* upgrade to v2.37.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2024628 - CVE-2021-3996 util-linux: Unauthorized unmount of filesystems in
libmount
https://bugzilla.redhat.com/show_bug.cgi?id=2024628
[ 2 ] Bug #2024631 - CVE-2021-3995 util-linux: Unauthorized unmount of FUSE filesystems
belonging to users with similar uid
https://bugzilla.redhat.com/show_bug.cgi?id=2024631
--------------------------------------------------------------------------------
================================================================================
vim-8.2.4198-1.fc35 (FEDORA-2022-90ae058633)
The VIM editor
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2022-0213
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.4198-1
- patchlevel 4198
* Sat Jan 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> -
2:8.2.4068-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043779 - CVE-2022-0213 vim: vim is vulnerable to out of bounds read
https://bugzilla.redhat.com/show_bug.cgi?id=2043779
--------------------------------------------------------------------------------
================================================================================
vultr-cli-2.12.0-1.fc35 (FEDORA-2022-457cfe38c2)
Official command line tool for Vultr services
--------------------------------------------------------------------------------
Update Information:
Update to 2.12.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Major Hayden <major(a)redhat.com> 2.12.0-1
- Update to 2.12.0
* Sat Jan 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> 2.11.3-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2043750 - vultr-cli-2.12.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2043750
--------------------------------------------------------------------------------
================================================================================
yt-dlp-2022.01.21-1.fc35 (FEDORA-2022-74c5276a79)
A command-line program to download videos from online video platforms
--------------------------------------------------------------------------------
Update Information:
Update to 2022.01.21. Release Notes:
https://github.com/yt-dlp/yt-
dlp/releases/tag/2022.01.21
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2022 Maxwell G <gotmax(a)e.email> - 2022.01.21-1
- Update to 2022.01.21.
* Sat Jan 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> -
2021.12.27-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------