The following Fedora 32 Security updates need testing:
Age URL
74
https://bodhi.fedoraproject.org/updates/FEDORA-2020-1f643c272c libntlm-1.6-1.fc32
27
https://bodhi.fedoraproject.org/updates/FEDORA-2020-d32853a28d
mingw-openjpeg2-2.3.1-11.fc32 openjpeg2-2.3.1-10.fc32
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-ca0e53d310 php-7.4.14-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-d5b2c18fe6
nodejs-12.20.1-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-8537865fb5
python-cairosvg-2.4.2-4.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-b670727349
golang-github-buger-jsonparser-1.1.1-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c90cb486f7
dovecot-2.3.13-2.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-5752e07eb6
raptor2-2.0.15-27.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-32d0068851
coturn-4.5.2-1.fc32
The following Fedora 32 Critical Path updates have yet to be approved:
Age URL
194
https://bodhi.fedoraproject.org/updates/FEDORA-2020-ebbe0f7b25 cpio-2.13-6.fc32
42
https://bodhi.fedoraproject.org/updates/FEDORA-2020-e3cff2530e koji-1.23.0-2.fc32
34
https://bodhi.fedoraproject.org/updates/FEDORA-2020-345d2fd2aa
iproute-5.9.0-1.fc32
27
https://bodhi.fedoraproject.org/updates/FEDORA-2020-d32853a28d
mingw-openjpeg2-2.3.1-11.fc32 openjpeg2-2.3.1-10.fc32
18
https://bodhi.fedoraproject.org/updates/FEDORA-2020-66d135ac1f
python3-3.8.7-1.fc32 python3-docs-3.8.7-1.fc32
14
https://bodhi.fedoraproject.org/updates/FEDORA-2020-43e9e3abbe
tzdata-2020f-1.fc32
10
https://bodhi.fedoraproject.org/updates/FEDORA-2021-50c22ae8fd
lua-socket-3.0-0.27.rc1.fc32
9
https://bodhi.fedoraproject.org/updates/FEDORA-2021-6aba9c3436
perl-libnet-3.13-1.fc32
9
https://bodhi.fedoraproject.org/updates/FEDORA-2021-f36298d6e0
libtiff-4.1.0-3.fc32
9
https://bodhi.fedoraproject.org/updates/FEDORA-2021-8907efd76e
switcheroo-control-2.4-1.fc32
8
https://bodhi.fedoraproject.org/updates/FEDORA-2021-616abd3e65
keyutils-1.6.1-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c737118abd
perl-Socket-2.031-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-3a21976a89
libguestfs-1.44.0-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2021-2297dddc0f
hwdata-0.343-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-2f77ff1189
nfs-utils-2.5.2-1.rc4.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-28c15ce0f9 fwupd-1.5.5-1.fc32
0
https://bodhi.fedoraproject.org/updates/FEDORA-2021-4421544240
libmodulemd-2.11.2-2.fc32
The following builds have been pushed to Fedora 32 updates-testing
cpu-x-4.1.0-2.fc32
deja-dup-42.7-1.fc32
duply-2.3-1.fc32
erlang-22.3.4.14-1.fc32
freeipa-healthcheck-0.8-1.fc32
ghostscript-9.53.3-4.fc32
glmark2-2020.04-2.fc32
ipv6calc-3.0.1-48.fc32
keepassxc-2.6.3-1.fc32
kernel-5.10.7-100.fc32
kernel-headers-5.10.7-100.fc32
libpq-12.5-1.fc32
lxcfs-4.0.7-1.fc32
picard-2.5.6-2.fc32
psi-plus-1.5.1477-1.fc32
qwt5-qt5-5.2.3a-7.20200902git0052f96.fc32
scidavis-2.3.0-3.fc32
selinux-policy-3.14.5-46.fc32
singularity-3.7.1-1.fc32
usrsctp-0.9.5.0-1.fc32
Details about builds:
================================================================================
cpu-x-4.1.0-2.fc32 (FEDORA-2021-2b0228b195)
Gathers information on CPU, motherboard and more
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 4.1.0-2
- build: dmidecode - apply upstream patch & remove -Wno-format-security flag
* Sun Jan 10 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 4.1.0-1
- build(update): 4.1.0
* Sun Dec 27 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> - 4.0.1-5
- Rebuild | Fix RH#1911068
--------------------------------------------------------------------------------
================================================================================
deja-dup-42.7-1.fc32 (FEDORA-2021-deb2cf02f4)
Simple backup tool and frontend for duplicity
--------------------------------------------------------------------------------
Update Information:
42.7
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Gwyn Ciesla <gwync(a)protonmail.com> - 42.7-1
- 42.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1915956 - deja-dup-42.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1915956
--------------------------------------------------------------------------------
================================================================================
duply-2.3-1.fc32 (FEDORA-2021-a027731f79)
Wrapper for duplicity
--------------------------------------------------------------------------------
Update Information:
### Duply 2.3 (30.12.2020) ### - don't import whole key pair anymore if only
pub/sec is requested - gpg import routine informs on missing key files in
profile now - add check/import needed secret key for decryption - featreq 50:
Disable GPG key backups, implemented/added settings
GPG_IMPORT/GPG_EXPORT='disabled' to conf template
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Thomas Moschny <thomas.moschny(a)gmx.de> - 2.3-1
- Update to 2.3.
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
erlang-22.3.4.14-1.fc32 (FEDORA-2021-b9f5dabe73)
General-purpose programming language and runtime environment
--------------------------------------------------------------------------------
Update Information:
Erlang ver. 22.3.4.14
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Peter Lemenkov <lemenkov(a)gmail.com> - 22.3.4.14-1
- Ver. 22.3.4.14
--------------------------------------------------------------------------------
================================================================================
freeipa-healthcheck-0.8-1.fc32 (FEDORA-2021-7399dee084)
Health check tool for FreeIPA
--------------------------------------------------------------------------------
Update Information:
Update to upstream 0.8 maintenance release * Handle systemd-resolved owning
files * Add test compatibility with dnspython 2.1.0+
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Rob Crittenden <rcritten(a)redhat.com> - 0.8-1
- Update to upstream 0.8
- Fix FTBFS in F34/rawhide (#1915256)
--------------------------------------------------------------------------------
================================================================================
ghostscript-9.53.3-4.fc32 (FEDORA-2021-644648d619)
Interpreter for PostScript language & PDF
--------------------------------------------------------------------------------
Update Information:
Restore opvp for good
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 22 2020 Michael J Gruber <mjg(a)fedoraproject.org> - 9.53.3-4
- Restore opvp for good (#1909950)
--------------------------------------------------------------------------------
================================================================================
glmark2-2020.04-2.fc32 (FEDORA-2021-2fb0fb4e06)
Benchmark for OpenGL 2.0
--------------------------------------------------------------------------------
Update Information:
This release is linked, per upstream recommendation, against libpng (1.6)
instead of legacy libpng12 and uses Fedora default compiler flags to build. It
also fixes upstream issue #125.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Dominik Mierzejewski <rpm(a)greysector.net> - 2020.04-2
- build against libpng 1.6 instead of 1.2
- backport fixes for
https://github.com/glmark2/glmark2/issues/125
- ensure Fedora build flags are used
--------------------------------------------------------------------------------
================================================================================
ipv6calc-3.0.1-48.fc32 (FEDORA-2021-95b10713f5)
IPv6 address format change and calculation utility
--------------------------------------------------------------------------------
Update Information:
Final release 3.0.1
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Peter Bieringer <pb(a)bieringer.de> - 3.0.1-48
- Final release 3.0.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1915669 - ipv6calc-3.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1915669
--------------------------------------------------------------------------------
================================================================================
keepassxc-2.6.3-1.fc32 (FEDORA-2021-0c072c6470)
Cross-platform password manager
--------------------------------------------------------------------------------
Update Information:
- Update to 2.6.3
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 2.6.3-1
- Update to 2.6.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1915574 - keepassxc-2.6.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1915574
--------------------------------------------------------------------------------
================================================================================
kernel-5.10.7-100.fc32 (FEDORA-2021-082e638d02)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 5.10.7 stable kernel rebase contains new features, improved hardware
support, and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 12 2021 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.10.7-100
- Linux v5.10.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1899804 - CVE-2020-28374 kernel: SCSI target (LIO) write to any block on ILO
backstore
https://bugzilla.redhat.com/show_bug.cgi?id=1899804
--------------------------------------------------------------------------------
================================================================================
kernel-headers-5.10.7-100.fc32 (FEDORA-2021-082e638d02)
Header files for the Linux kernel for use by glibc
--------------------------------------------------------------------------------
Update Information:
The 5.10.7 stable kernel rebase contains new features, improved hardware
support, and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 12 2021 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.10.7-100
- Linux v5.10.7
* Tue Jan 12 2021 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.10.6-100
- Linux v5.10.6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1899804 - CVE-2020-28374 kernel: SCSI target (LIO) write to any block on ILO
backstore
https://bugzilla.redhat.com/show_bug.cgi?id=1899804
--------------------------------------------------------------------------------
================================================================================
libpq-12.5-1.fc32 (FEDORA-2021-b251eb773c)
PostgreSQL client library
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Honza Horak <hhorak(a)redhat.com> - 12.5-1
- Rebase to 12.5
--------------------------------------------------------------------------------
================================================================================
lxcfs-4.0.7-1.fc32 (FEDORA-2021-cf73fb6f08)
FUSE based filesystem for LXC
--------------------------------------------------------------------------------
Update Information:
Update to the latest released version. See
[
here](https://discuss.linuxcontainers.org/t/lxcfs-4-0-7-lts-has-been-
released/9893) for the upstream announcement.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Thomas Moschny <thomas.moschny(a)gmx.de> - 4.0.7-1
- Update to 4.0.7.
--------------------------------------------------------------------------------
================================================================================
picard-2.5.6-2.fc32 (FEDORA-2021-18f4f97274)
MusicBrainz-based audio tagger
--------------------------------------------------------------------------------
Update Information:
Update dependencies rhbz#1915526
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 12 2021 Gerald Cox <gbcox(a)fedoraproject.org> - 2.5.6-2
- Update dependencies rhbz#1915526
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1915526 - picard - update required dependencies
https://bugzilla.redhat.com/show_bug.cgi?id=1915526
--------------------------------------------------------------------------------
================================================================================
psi-plus-1.5.1477-1.fc32 (FEDORA-2021-8205d2a2b3)
Jabber client based on Qt
--------------------------------------------------------------------------------
Update Information:
Updated Psi+ to version 1.5.1477.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Vitaly Zaitsev <vitaly(a)easycoding.org> - 1:1.5.1477-1
- Updated to version 1.5.1477.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1906395 - psi-plus-1.5.1477 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1906395
--------------------------------------------------------------------------------
================================================================================
qwt5-qt5-5.2.3a-7.20200902git0052f96.fc32 (FEDORA-2021-83a2b50578)
Qt Widgets for Technical Applications adapted to Qt5
--------------------------------------------------------------------------------
Update Information:
Rebuild for latest qwt5-qt5 snapshot
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 12 2021 Alexander Ploumistos <alexpl(a)fedoraproject.org> -
5.2.3a-7.20200902git0052f96
- Update to latest snapshot
* Sat Aug 1 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
5.2.3a-6.20190819giteeacc44
- Second attempt - Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
5.2.3a-5.20190819giteeacc44
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
scidavis-2.3.0-3.fc32 (FEDORA-2021-83a2b50578)
Application for Scientific Data Analysis and Visualization
--------------------------------------------------------------------------------
Update Information:
Rebuild for latest qwt5-qt5 snapshot
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Alexander Ploumistos <alexpl(a)fedoraproject.org> - 2.3.0-3
- Rebuild for latest qwt5-qt5 snapshot
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.3.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.14.5-46.fc32 (FEDORA-2021-3036e7bf00)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
New F32 selinux-policy build:
https://koji.fedoraproject.org/koji/taskinfo?taskID=59631895
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Zdenek Pytela <zpytela(a)redhat.com> - 3.14.5-46
- Allow sssd read /run/systemd directory
- Allow dovecot bind to smtp ports
- Set correct default file context for /usr/libexec/pcp/lib/*
- Add default file context for /usr/libexec/pcp/lib/*
- Update targetd nfs & lvm
- Add interface rpc_manage_exports
- Allow cups_pdf_t domain to communicate with unix_dgram_socket
- Set default file context for /var/lib/ipsec/nss
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1827466 - SELinux is preventing sssd from 'read' access on the
directory systemd
https://bugzilla.redhat.com/show_bug.cgi?id=1827466
[ 2 ] Bug #1883666 - libreswan moved NSS directory requires selinux-policy change
https://bugzilla.redhat.com/show_bug.cgi?id=1883666
[ 3 ] Bug #1889142 - SELinux is preventing dovecot from 'name_bind' accesses on
the tcp_socket port 587.
https://bugzilla.redhat.com/show_bug.cgi?id=1889142
[ 4 ] Bug #1903724 - PCP daemons run as unconfined_service_t
https://bugzilla.redhat.com/show_bug.cgi?id=1903724
--------------------------------------------------------------------------------
================================================================================
singularity-3.7.1-1.fc32 (FEDORA-2021-07914fabe5)
Application and environment virtualization
--------------------------------------------------------------------------------
Update Information:
Upgrade to upstream 3.7.1.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 12 2021 Dave Dykstra <dwd(a)fedoraproject.org> - 3.7.1-1
- Upgrade to upstream 3.7.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1915866 - singularity-3.7.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1915866
--------------------------------------------------------------------------------
================================================================================
usrsctp-0.9.5.0-1.fc32 (FEDORA-2021-8205d2a2b3)
Portable SCTP userland stack
--------------------------------------------------------------------------------
Update Information:
Updated Psi+ to version 1.5.1477.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Vitaly Zaitsev <vitaly(a)easycoding.org> - 1:0.9.5.0-1
- Updated to version 0.9.5.0.
* Mon Jan 11 2021 Vitaly Zaitsev <vitaly(a)easycoding.org> -
1.0.0-0.2.20210110gitf1de842
- Updated to f1de842 snapshot (upstream release 0.9.4.0).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1906395 - psi-plus-1.5.1477 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1906395
--------------------------------------------------------------------------------