The following Fedora 33 Security updates need testing:
Age URL
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-dc7de65eed
php-pear-1.10.12-5.fc33
5
https://bodhi.fedoraproject.org/updates/FEDORA-2021-06cbd73fba
erlang-23.2.3-1.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-848fd34b0b
opensmtpd-6.8.0p2-1.fc33
3
https://bodhi.fedoraproject.org/updates/FEDORA-2021-ced31f3f0c
mingw-python3-3.9.1-2.fc33
The following Fedora 33 Critical Path updates have yet to be approved:
Age URL
19
https://bodhi.fedoraproject.org/updates/FEDORA-2021-d1074696ac
libguestfs-1.44.0-1.fc33
2
https://bodhi.fedoraproject.org/updates/FEDORA-2021-0ecd4abda7 pungi-4.2.7-2.fc33
The following builds have been pushed to Fedora 33 updates-testing
389-ds-base-1.4.4.11-1.fc33
GoldenCheetah-3.6-0.2.20200808git7c90abf.fc33
OpenIPMI-2.0.31-1.fc33
apt-2.1.18-1.fc33
arm-image-installer-3.1-1.fc33
beakerlib-1.23-1.fc33
bind-dyndb-ldap-11.3-6.fc33
container-selinux-2.156.0-1.fc33
cups-filters-1.28.7-2.fc33
evince-3.38.1-1.fc33
fbzx-4.2.0-1.fc33
feh-3.6.3-1.fc33
gnote-3.38.1-1.fc33
golang-github-facebookincubator-go2chef-0-0.1.20210125git576f5d4.fc33
ibus-typing-booster-2.10.3-1.fc33
icewm-2.1.1-1.fc33
jasper-2.0.24-1.fc33
kernel-5.10.10-200.fc33
libebml-1.4.1-1.fc33
lua-rpm-macros-1-3.fc33
mediawriter-4.2.0-1.fc33
openmpi-4.0.5-1.fc33
pari-2.13.1-1.fc33
pdfbox-2.0.21-3.fc33
perl-5.32.1-466.fc33
perl-CPAN-Perl-Releases-5.20210123-1.fc33
perl-Module-CoreList-5.20210123-1.fc33
perl-autodie-2.34-1.fc33
php-doctrine-datafixtures-1.5.0-1.fc33
php-laminas-servicemanager-3.6.3-1.fc33
php-laminas-validator-2.14.4-1.fc33
python-natsort-7.1.1-1.fc33
python-snaptime-0.2.4-1.fc33
qt5-qtwebengine-5.15.2-7.fc33
quilter-3.1.5-1.fc33
rpmdevtools-9.3-3.fc33
rpmlint-1.11-13.fc33
spectral-0-14.20201224gitfba0df0.fc33
sqlite-3.34.1-1.fc33
tcmu-runner-1.5.2-7.fc33
thunderbird-78.6.1-1.fc33
vte291-0.62.2-1.fc33
Details about builds:
================================================================================
389-ds-base-1.4.4.11-1.fc33 (FEDORA-2021-5258e9cb11)
389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:
Bump version to 1.4.4.11
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Mark Reynolds <mreynolds(a)redhat.com> - 1.4.4.11-1
- Bump version to 1.4.4.11
- Issue 4548 - CLI - dsconf needs better root DN access control plugin validation
- Issue 4513 - Fix schema test and lib389 task module (#4514)
- Issue 4535 - lib389 - Fix log function in backends.py
- Issue 4534 - libasan read buffer overflow in filtercmp (#4541)
* Thu Jan 14 2021 Mark Reynolds <mreynolds(a)redhat.com> - 1.4.4.10-1
- Bump version to 1.4.4.10
- Issue 4381 - RFE - LDAPI authentication DN rewritter
- Issue 4539 - BUG - no such file if no overlays in openldap during migration (#4540)
- Issue 4513 - CI Tests - fix test failures
- Issue 4528 - Fix cn=monitor SCOPE_ONE search (#4529)
- Issue 4535 - lib389 - healthcheck throws exception if backend is not replicated
- Issue 4504 - insure that repl_monitor_test use ldapi (for RHEL) - fix merge issue
(#4533)
- Issue 4504 - Insure ldapi is enabled in repl_monitor_test.py (Needed on RHEL) (#4527)
- Issue 4506 - BUG - Fix bounds on fd table population (#4520)
- Issue 4521 - DS crash in deref plugin if dereferenced entry exists but is not returned
by internal search (#4525)
- Issue 4384 - Separate eventq into REALTIME and MONOTONIC
- Issue 4418 - ldif2db - offline. Warn the user of skipped entries
- Issue 4419 - Warn users of skipped entries during ldif2db online import (#4476)
- Issue 4414 - disk monitoring - prevent division by zero crash
- Issue 4507 - Improve csngen testing task (#4508)
- Issue 4498 - BUG - entryuuid replication may not work (#4503)
- Issue 4504 - Fix pytest test_dsconf_replication_monitor (#4505)
- Issue 4480 - Unexpected info returned to ldap request (#4491)
- Issue 4373 - BUG - one line cleanup, free results in mt if ent 0 (#4502)
- Issue 4500 - Add cockpit enabling to dsctl
- Issue 4272 - RFE - add support for gost-yescrypt for hashing passwords (#4497)
- Issue 1795 - RFE - Enable logging for libldap and libber in error log (#4481)
- Issue 4492 - Changelog cache can upload updates from a wrong starting point (CSN)
(#4493)
- Issue 4373 - BUG - calloc of size 0 in MT build (#4496)
- Issue 4483 - heap-use-after-free in slapi_be_getsuffix
- Issue 4224 - cleanup specfile after libsds removal
- Issue 4421 - Unable to build with Rust enabled in closed environment
- Issue 4229 - RFE - Improve rust linking and build performance (#4474)
- Issue 4464 - RFE - clang with ds+asan+rust
- Issue 4224 - openldap can become confused with entryuuid
- Issue 4313 - improve tests and improve readme re refdel
- Issue 4313 - fix potential syncrepl data corruption
- Issue 4315 - performance search rate: nagle triggers high rate of setsocketopt (#4437)
- Issue 4243 - Fix test (4th): SyncRepl plugin provides a wrong (#4475)
- Issue 4446 - RFE - openldap password hashers
- Issue 4403 - RFE - OpenLDAP pw hash migration tests (#4408)
- Issue 4410 -RFE - ndn cache with arc in rust
- Issue 4460 - BUG - add machine name to subject alt names in SSCA (#4472)
- Issue 4243 - Fix test: SyncRepl plugin provides a wrong cookie (#4466) (#4466)
--------------------------------------------------------------------------------
================================================================================
GoldenCheetah-3.6-0.2.20200808git7c90abf.fc33 (FEDORA-2021-639978bc7b)
Cycling Performance Software
--------------------------------------------------------------------------------
Update Information:
Rebuilt due Qt5 dependencies fix (BZ#1919838)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Martin Gansser <martinkg(a)fedoraproject.org> -
3.6-0.2.20200908git7c90abf
- Rebuilt due Qt5 dependencies fix (BZ#1919838)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1919838 - Outdated dependency requires rebuild
https://bugzilla.redhat.com/show_bug.cgi?id=1919838
--------------------------------------------------------------------------------
================================================================================
OpenIPMI-2.0.31-1.fc33 (FEDORA-2021-b3a172c3df)
IPMI (Intelligent Platform Management Interface) library and tools
--------------------------------------------------------------------------------
Update Information:
New upstream release 2.0.31
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Josef Ridky <jridky(a)redhat.com> - 2.0.31-1
- New upstream release 2.0.31 (#1905768)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1905768 - OpenIPMI-2.0.31 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1905768
--------------------------------------------------------------------------------
================================================================================
apt-2.1.18-1.fc33 (FEDORA-2021-b95183530f)
Command-line package manager for Debian packages
--------------------------------------------------------------------------------
Update Information:
Update to 2.1.18 (#1906457)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 13 2021 Fedora Release Monitoring <release-monitoring(a)fedoraproject.org> -
2.1.18-1
- Update to 2.1.18 (#1906457)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1906457 - apt-2.1.18 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1906457
--------------------------------------------------------------------------------
================================================================================
arm-image-installer-3.1-1.fc33 (FEDORA-2021-dd39eb7b0a)
Writes binary image files to any specified block device
--------------------------------------------------------------------------------
Update Information:
Update to the latest, includes various fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Paul Whalen <pwhalen(a)fedoraproject.org> - 3.1-1
- Update to 3.1
--------------------------------------------------------------------------------
================================================================================
beakerlib-1.23-1.fc33 (FEDORA-2021-f37879cb84)
A shell-level integration testing library
--------------------------------------------------------------------------------
Update Information:
- TestResults state indicator - profiling code - rebased yash to 1.1 - fixed
rlAssertLesser - fixed failed library load name logging
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 26 2021 Dalibor Pospisil <dapospis(a)redhat.com> - 1.23-1
- TestResults state indicator
- profiling code
- rebased yash to 1.1
- fixed rlAssertLesser
- fixed failed library load name logging
--------------------------------------------------------------------------------
================================================================================
bind-dyndb-ldap-11.3-6.fc33 (FEDORA-2021-ad495a044c)
LDAP back-end plug-in for BIND
--------------------------------------------------------------------------------
Update Information:
Rebuilt freeipa part missing in original update of
[
bind](https://bodhi.fedoraproject.org/updates/FEDORA-2021-efbf9890da).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Petr Men����k <pemensik(a)redhat.com> - 11.3-6
- Rebuilt for bind 9.11.27
--------------------------------------------------------------------------------
================================================================================
container-selinux-2.156.0-1.fc33 (FEDORA-2021-721322ed3f)
SELinux policies for container runtimes
--------------------------------------------------------------------------------
Update Information:
Autobuilt v2.156.0 ---- Autobuilt v2.155.0 ---- Autobuilt v2.154.0 ----
Autobuilt v2.153.0 ---- Autobuilt v2.152.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.156.0-1
- autobuilt v2.156.0
* Wed Jan 6 2021 Dan Walsh <dwalsh(a)fedoraproject.org> - 2:2.155.0-2
- Fix build
* Tue Jan 5 2021 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.155.0-1
- autobuilt v2.155.0
* Mon Jan 4 2021 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.154.0-1
- autobuilt v2.154.0
* Mon Jan 4 2021 Dan Walsh <dwalsh(a)fedoraproject.org> - 2:2.154.1-1
- Fix build
* Wed Dec 30 2020 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.154.0-1
- autobuilt v2.154.0
* Sat Dec 26 2020 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.153.0-1
- autobuilt v2.153.0
* Tue Dec 22 2020 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 2:2.152.0-1
- autobuilt v2.152.0
--------------------------------------------------------------------------------
================================================================================
cups-filters-1.28.7-2.fc33 (FEDORA-2021-b4a926cc2d)
OpenPrinting CUPS filters and backends
--------------------------------------------------------------------------------
Update Information:
1.28.7
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Zdenek Dohnal <zdohnal(a)redhat.com> - 1.28.7-2
- unpush fix for 1904405 - M281fdw now often chokes on URF
* Mon Jan 11 2021 Zdenek Dohnal <zdohnal(a)redhat.com> - 1.28.7-1
- 1.28.7, urftopdf nor pdftoopvp aren't compiled anymore
- 1904405 - HP M281fdw: ������ characters printed as squares with "driverless"
driver
--------------------------------------------------------------------------------
================================================================================
evince-3.38.1-1.fc33 (FEDORA-2021-ca6c3f5c43)
Document viewer
--------------------------------------------------------------------------------
Update Information:
evince 3.38.1 release: * Make Esc cancel any annotation in progress * Remove
ability to launch actions * Unescape tooltip URI in Recent Documents view *
Fix X11 regression * Text search if match not in page keep looking for others
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Kalev Lember <klember(a)redhat.com> - 3.38.1-1
- Update to 3.38.1
--------------------------------------------------------------------------------
================================================================================
fbzx-4.2.0-1.fc33 (FEDORA-2021-d3fa01fa46)
A ZX Spectrum emulator for FrameBuffer
--------------------------------------------------------------------------------
Update Information:
* Fixed RETI
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 24 2021 Andrea Musuruane <musuruan(a)gmail.com> - 4.2.0-1
- Updated to new upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1914709 - fbzx-4.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1914709
--------------------------------------------------------------------------------
================================================================================
feh-3.6.3-1.fc33 (FEDORA-2021-46142c6f5c)
Fast command line image viewer using Imlib2
--------------------------------------------------------------------------------
Update Information:
New: - %a format specifier (slideshow state) - flip and rotate options added
to the menu - improved image detection time (use FEH_SKIP_MAGIC=1 if this is a
problem) <
https://phab.enlightenment.org/T8739> and
<
https://github.com/derf/feh/issues/505> have more Fixed: - Crash when
combining --reload and --multiwindow - various memory leaks - save_filelist
not respecting --output-dir - --start-at now handles file:// paths properly
- issues when opening files with spaces or unicode in the path when opening from
a file manager
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Ben Boeckel <fedora(a)me.benboeckel.net> - 3.6.3-1
- update to 3.6.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1873690 - feh-3.6.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1873690
--------------------------------------------------------------------------------
================================================================================
gnote-3.38.1-1.fc33 (FEDORA-2021-7cad5991cb)
Note-taking application
--------------------------------------------------------------------------------
Update Information:
gnote 3.38.1 release: * Do not use deprecated Gtk::Menu::popup * Fix find
previous match * Fix changing sorting not always works
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Kalev Lember <klember(a)redhat.com> - 3.38.1-1
- Update to 3.38.1
--------------------------------------------------------------------------------
================================================================================
golang-github-facebookincubator-go2chef-0-0.1.20210125git576f5d4.fc33
(FEDORA-2021-e6ae246a32)
Tool to bootstrap a system from zero so that it's able to run Chef
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1912668 - Review Request: golang-github-facebookincubator-go2chef - Tool to
bootstrap a system from zero so that it's able to run Chef
https://bugzilla.redhat.com/show_bug.cgi?id=1912668
--------------------------------------------------------------------------------
================================================================================
ibus-typing-booster-2.10.3-1.fc33 (FEDORA-2021-366a5f8058)
A completion input method
--------------------------------------------------------------------------------
Update Information:
Update to 2.10.3; zh_CN translations 100%
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 24 2021 Mike FABIAN <mfabian(a)redhat.com> - 2.10.3-1
- Update to 2.10.3
- Update emoji annotations from CLDR
- Translation update from Weblate for ja, zh_CN
(zh_CN is 100% complete now)
--------------------------------------------------------------------------------
================================================================================
icewm-2.1.1-1.fc33 (FEDORA-2021-5d1a173cf3)
Window manager designed for speed, usability, and consistency
--------------------------------------------------------------------------------
Update Information:
Update to 2.1.1 ---- Update to 2.1.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 2.1.1-1
- build(update): 2.1.1
* Sat Jan 23 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 2.1.0-1
- build(update): 2.1.0
--------------------------------------------------------------------------------
================================================================================
jasper-2.0.24-1.fc33 (FEDORA-2021-2b151590d9)
Implementation of the JPEG-2000 standard, Part 1
--------------------------------------------------------------------------------
Update Information:
New upstream version 2.0.24 with all reported CVE fixes available.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Josef Ridky <jridky(a)redhat.com> - 2.0.24-1
- New upstream release 2.0.24 (#1905690)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1434464 - CVE-2016-9396 CVE-2016-9397 CVE-2016-9398 CVE-2016-9399
CVE-2017-1000050 CVE-2017-13745 CVE-2017-13746 CVE-2017-13747 CVE-2017-13748
CVE-2017-13749 CVE-2017-13750 CVE-2017-13751 CVE-2017-13752 CVE-2017-14132 ... jasper:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1434464
[ 2 ] Bug #1905202 - CVE-2020-27828 jasper: heap-based buffer overflow in cp_create() in
jpc_enc.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1905202
[ 3 ] Bug #1905690 - jasper-2.0.24 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1905690
--------------------------------------------------------------------------------
================================================================================
kernel-5.10.10-200.fc33 (FEDORA-2021-3bcc7198c8)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 5.10.10 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 24 2021 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.10.10-200
- Linux v5.10.10
- Fixes CVE-2021-3178 (rhbz 1918179 1918181)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1918179 - CVE-2021-3178 kernel: path traversal in fs/nfsd/nfs3xdr.c may lead
to Information Disclosure or RCE
https://bugzilla.redhat.com/show_bug.cgi?id=1918179
--------------------------------------------------------------------------------
================================================================================
libebml-1.4.1-1.fc33 (FEDORA-2021-e84e1aaa2c)
Extensible Binary Meta Language library
--------------------------------------------------------------------------------
Update Information:
Fixes heap use-after-free when parsing malformed file (upstream issue
[
2989](https://gitlab.com/mbunkus/mkvtoolnix/-/issues/2989)).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Dominik Mierzejewski <rpm(a)greysector.net> - 1.4.1-1
- update to 1.4.1 (#1912485)
- fixes heap use-after-free when parsing malformed file
(
https://gitlab.com/mbunkus/mkvtoolnix/-/issues/2989)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1912485 - libebml-1.4.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1912485
--------------------------------------------------------------------------------
================================================================================
lua-rpm-macros-1-3.fc33 (FEDORA-2021-1070a05bdb)
The common Lua RPM macros
--------------------------------------------------------------------------------
Update Information:
- Modify several conditionals to support RHEL 9+ and drop ancient Fedora 17 -
Add explicit conflict with older lua-devel - Require rpm, not redhat-rpm-config
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 1 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 1-3
- Modify several conditionals to support RHEL 9+ and drop ancient Fedora 17
- Add explicit conflict with older lua-devel
- Require rpm, not redhat-rpm-config
--------------------------------------------------------------------------------
================================================================================
mediawriter-4.2.0-1.fc33 (FEDORA-2021-eb2cae2303)
Fedora Media Writer
--------------------------------------------------------------------------------
Update Information:
Fedora MediaWriter 4.2.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Jan Grulich <jgrulich(a)redhat.com> - 4.2.0-1
- 4.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1897013 - mediawriter-4.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1897013
--------------------------------------------------------------------------------
================================================================================
openmpi-4.0.5-1.fc33 (FEDORA-2021-52c167e3da)
Open Message Passing Interface
--------------------------------------------------------------------------------
Update Information:
Update to 4.0.5 --------------------- - Fix a problem with MPI RMA compare
and swap operations. Thanks to Wojciech Chlapek for reporting. - Disable
binding of MPI processes to system resources by Open MPI if an application
is launched using SLURM's srun command. - Disable building of the Fortran
mpi_f08 module when configuring Open MPI with default 8 byte Fortran integer
size. Thanks to @ahcien for reporting. - Fix a problem with mpirun when
the --map-by option is used. Thanks to Wenbin Lyu for reporting. - Fix
some issues with MPI one-sided operations uncovered using Global Arrays
regression test-suite. Thanks to @bjpalmer for reporting. - Fix a problem
with make check when using the PGI compiler. Thanks to Carl Ponder for
reporting. - Fix a problem with MPI_FILE_READ_AT_ALL that could lead to
application hangs under certain circumstances. Thanks to Scot Breitenfeld
for reporting. - Fix a problem building C++ applications with newer
versions of GCC. Thanks to Constantine Khrulev for reporting.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 2 2020 Orion Poplawski <orion(a)nwra.com> - 4.0.5-1
- Update to 4.0.5
--------------------------------------------------------------------------------
================================================================================
pari-2.13.1-1.fc33 (FEDORA-2021-011244fd64)
Number Theory-oriented Computer Algebra System
--------------------------------------------------------------------------------
Update Information:
See
http://pari.math.u-bordeaux.fr/pub/pari/unix/pari-2.13.1.changelog for
changes in version 2.13.1.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Jerry James <loganjerry(a)gmail.com> - 2.13.1-1
- Version 2.13.1
* Tue Jan 19 2021 Adam Jackson <ajax(a)redhat.com> - 2.13.0-2
- Drop BuildRequires: xmkmf, which was only used when building the X11 (not
fltk) GUI.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1716583 - pari-2.13.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1716583
[ 2 ] Bug #1920143 - pari-2.13.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1920143
--------------------------------------------------------------------------------
================================================================================
pdfbox-2.0.21-3.fc33 (FEDORA-2021-c2a2c2c9e5)
Apache PDFBox library for working with PDF documents
--------------------------------------------------------------------------------
Update Information:
Add bouncycastle 1.67 support (from daviddavid)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 10 2020 Fabio Valentini <decathorpe(a)gmail.com> - 2.0.21-2
- Drop log4j12 dependency, it seems to not be necessary any longer.
--------------------------------------------------------------------------------
================================================================================
perl-5.32.1-466.fc33 (FEDORA-2021-326f7b8e4b)
Practical Extraction and Report Language
--------------------------------------------------------------------------------
Update Information:
Update to Perl 5.32.1
https://metacpan.org/pod/release/SHAY/perl-5.32.1/pod/perldelta.pod
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 4:5.32.1-466
- 5.32.1 bump (see
<
https://metacpan.org/pod/release/SHAY/perl-5.32.1/pod/perldelta.pod>
or release notes)
--------------------------------------------------------------------------------
================================================================================
perl-CPAN-Perl-Releases-5.20210123-1.fc33 (FEDORA-2021-45680b498d)
Mapping Perl releases on CPAN to the location of the tarballs
--------------------------------------------------------------------------------
Update Information:
Updated for v5.32.1 ---- Updated for v5.33.6
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 5.20210123-1
- 5.20210123 bump
* Thu Jan 21 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 5.20210120-1
- 5.20210120 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1918643 - perl-CPAN-Perl-Releases-5.20210120 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1918643
--------------------------------------------------------------------------------
================================================================================
perl-Module-CoreList-5.20210123-1.fc33 (FEDORA-2021-fa236894f3)
What modules are shipped with versions of perl
--------------------------------------------------------------------------------
Update Information:
Updated for v5.32.1 ---- Updated for v5.33.6
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 1:5.20210123-1
- 5.20210123 bump
* Thu Jan 21 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 1:5.20210120-1
- 5.20210120 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1918641 - perl-Module-CoreList-5.20210120 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1918641
--------------------------------------------------------------------------------
================================================================================
perl-autodie-2.34-1.fc33 (FEDORA-2021-b9d52a8b18)
Replace functions with ones that succeed or die
--------------------------------------------------------------------------------
Update Information:
Remove
rt.cpan.org reference ---- Add missing use Scalar::Utils for using
bless.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 2.34-1
- 2.34 bump
* Fri Jan 22 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 2.33-1
- 2.33 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1919099 - perl-autodie-2.33 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1919099
[ 2 ] Bug #1919377 - perl-autodie-2.34 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1919377
--------------------------------------------------------------------------------
================================================================================
php-doctrine-datafixtures-1.5.0-1.fc33 (FEDORA-2021-be84c4ba8e)
Data Fixtures for all Doctrine Object Managers
--------------------------------------------------------------------------------
Update Information:
**Version 1.5.0** * 347: Allow Custom ORMPurger thanks to @kissifrot
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Remi Collet <remi(a)remirepo.net> - 1.5.0-1
- update to 1.5.0
--------------------------------------------------------------------------------
================================================================================
php-laminas-servicemanager-3.6.3-1.fc33 (FEDORA-2021-be787c50d2)
Laminas Framework ServiceManager component
--------------------------------------------------------------------------------
Update Information:
**Version 3.6.3** - 2021-01-25 Bug - [78: Regression in 3.6.x regarding
aliased services in combination with non-shared
services](https://github.com/laminas/laminas-servicemanager/pull/78) thanks to
@boesing ---- **Version 3.6.2** - 2021-01-17 * 74: Fix invokables merging
precedence in 3.6.x thanks to @driehle ---- **Version 3.6.1** - 2021-01-10
Bug - [71: Regression fix regarding
initializers](https://github.com/laminas/laminas-servicemanager/pull/71) thanks
to @boesing and @Grundik ----- **Version 3.6.0** - 2021-01-10 Added -
[#51](https://github.com/laminas/laminas-servicemanager/pull/51) Adds PHP 8.0
support - [#64](https://github.com/laminas/laminas-servicemanager/pull/64)
Backports changes from upcoming 4.0 release and re-adds PHP 7.3 support.
Changed - [#40](https://github.com/laminas/laminas-servicemanager/pull/40)
modifies the behavior of the `FactoryCreator` to alphabetize import statements.
- [
zendframework/zend-servicemanager#221](https://github.com/zendframework/z...
servicemanager/pull/221) provides enormous performance improvements for each of
the various mutator methods (`setAlias()`, `setFactory()`, etc.), `has()`
lookups, and initial container configuration. Removed -
[#50](https://github.com/laminas/laminas-servicemanager/pull/50) Removes PHP
support prior 7.4.0 - [zendframework/zend-
servicemanager#197](https://github.com/zendframework/zend-
servicemanager/pull/197) drops support for PHP versions prior to 7.1. -
[
zendframework/zend-servicemanager#193](https://github.com/zendframework/z...
servicemanager/pull/193) drops support for HHVM. Fixed -
[
zendframework/zend-servicemanager#230](https://github.com/zendframework/z...
servicemanager/pull/230) fixes a problem in detecting cyclic aliases, ensuring
they are detected correctly.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Remi Collet <remi(a)remirepo.net> - 3.6.3-1
- update to 3.6.3
* Mon Jan 18 2021 Remi Collet <remi(a)remirepo.net> - 3.6.2-1
- update to 3.6.2
* Mon Jan 11 2021 Remi Collet <remi(a)remirepo.net> - 3.6.1-1
- update to 3.6.1
- raise dependency on PHP 7.3
- switch to phpunit 9
--------------------------------------------------------------------------------
================================================================================
php-laminas-validator-2.14.4-1.fc33 (FEDORA-2021-6ad28b8528)
Laminas Framework Validator component
--------------------------------------------------------------------------------
Update Information:
**Version 2.14.4** - 2021-01-24 Bug - [91: Fix immutability issue when
validating a `DateTimeImmutable` instance with the `DateStep`
validator](https://github.com/laminas/laminas-validator/pull/91) thanks to
@netiul ----- **Version 2.14.3** - 2021-01-24 Bug - [89: Fix Type Error
when validating a `DateTimeImmutable` instance to the `DateStep`
validator](https://github.com/laminas/laminas-validator/pull/89) thanks to
@netiul ---- **Version 2.14.2** - 2021-01-22 Bug - [87: Removed hardcoded
`version` field from `composer.json`](https://github.com/laminas/laminas-
validator/pull/87) thanks to @Ocramius ----- **Version 2.14.1** - 2021-01-13
Fixed - [#83](https://github.com/laminas/laminas-validator/pull/83) Fixes
regression regarding boolean `strict` option in `InArray` validator
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Remi Collet <remi(a)remirepo.net> - 2.14.4-1
- update to 2.14.4
* Fri Jan 22 2021 Remi Collet <remi(a)remirepo.net> - 2.14.2-1
- update to 2.14.2
--------------------------------------------------------------------------------
================================================================================
python-natsort-7.1.1-1.fc33 (FEDORA-2021-1b711aaa07)
Python library that sorts lists using the "natural order" sort
--------------------------------------------------------------------------------
Update Information:
Update to the latest stable release fixing a small documentation typo.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Jos�� Matos <jamatos(a)fedoraproject.org> - 7.1.1-1
- update to 7.1.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1920146 - python-natsort-7.1.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1920146
--------------------------------------------------------------------------------
================================================================================
python-snaptime-0.2.4-1.fc33 (FEDORA-2021-177de515d0)
Transforming timestamps simply
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
qt5-qtwebengine-5.15.2-7.fc33 (FEDORA-2021-c91c2cae35)
Qt5 - QtWebEngine components
--------------------------------------------------------------------------------
Update Information:
This update changes QtWebEngine to use the system ICU library again. On 32-bit
platforms, it also fixes a sandbox issue with the time64 syscalls that was
causing occasional crashes. (64-bit platforms are not affected by that issue
because they do not have separate time64 syscalls, since their time syscalls
always use 64-bit time_t.)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 23 2021 Kevin Kofler <Kevin(a)tigcc.ticalc.org> - 5.15.2-7
- Fix sandbox issue on 32-bit architectures with glibc >= 2.31 (from Debian)
* Sat Jan 23 2021 Kevin Kofler <Kevin(a)tigcc.ticalc.org> - 5.15.2-6
- Reenable system ICU on F33+, ICU 67 supported since 5.15.1 according to Debian
* Wed Jan 20 2021 Kevin Kofler <Kevin(a)tigcc.ticalc.org> - 5.15.2-5
- Fix sandbox issue breaking text rendering with glibc 2.33 (#1904652)
* Wed Dec 30 2020 Mattia Verga <mattia.verga(a)protonmail.com> - 5.15.2-4
- Rebuild for gcc bugfix upgrade
* Fri Dec 4 2020 Jeff Law <law(a)redhat.com> - 5.15.2-3
- Fix another missing #include for gcc-11
* Tue Nov 24 2020 Jan Grulich <jgrulich(a)redhat.com> - 5.15.2-2
- Rebuild for qtbase with -no-reduce-relocations option
--------------------------------------------------------------------------------
================================================================================
quilter-3.1.5-1.fc33 (FEDORA-2021-998fe5dc18)
Focus on your writing
--------------------------------------------------------------------------------
Update Information:
Update to latest version ---- Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 3.1.5-1
- build(update): 3.1.5
* Sat Jan 23 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 3.1.1-1
- build(update): 3.1.1
* Sat Jan 23 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 3.1.0-1
- build(update): 3.1.0
* Fri Jan 22 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 3.0.3-1
- build(update): 3.0.3
* Thu Jan 21 2021 Artem Polishchuk <ego.cordatus(a)gmail.com> - 3.0.2-1
- build(update): 3.0.2
--------------------------------------------------------------------------------
================================================================================
rpmdevtools-9.3-3.fc33 (FEDORA-2021-cb926a505c)
RPM Development Tools
--------------------------------------------------------------------------------
Update Information:
spectool: Download text as text
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Miro Hron��ok <mhroncok(a)redhat.com> - 9.3-3
- spectool: Download text as text
* Fri Jan 22 2021 Michal Domonkos <mdomonko(a)redhat.com> - 9.3-2
- Replace requests-download dependency with requests
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1918326 - rpmdevtools-9.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1918326
--------------------------------------------------------------------------------
================================================================================
rpmlint-1.11-13.fc33 (FEDORA-2021-44d0bba655)
Tool for checking common errors in RPM packages
--------------------------------------------------------------------------------
Update Information:
Filter out empty `py.typed` files in Python site-packages. You can test this at
least on following packages: ``` python3-attrs python3-cairo python3-dns
python3-html2text python3-marshmallow python3-packaging python3-py
python3-pyrsistent python3-pytest python3-tornado python3-xcffib
python3-zeroconf twine ```
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Miro Hron��ok <mhroncok(a)redhat.com> - 1.11-13
- Filter out empty py.typed files in Python site-packages
--------------------------------------------------------------------------------
================================================================================
spectral-0-14.20201224gitfba0df0.fc33 (FEDORA-2021-d10ac8a694)
Glossy cross-platform Matrix client
--------------------------------------------------------------------------------
Update Information:
Updated to fba0df0 Git snapshot. Should fix installation issues, related to the
latest Qt update.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Vitaly Zaitsev <vitaly(a)easycoding.org> - 0-14.20201224gitfba0df0
- Updated to fba0df0 Git snapshot.
* Mon Nov 23 2020 Vitaly Zaitsev <vitaly(a)easycoding.org> - 0-13.20200729gitd600947
- Rebuilt due to Qt 5.15.2 update.
--------------------------------------------------------------------------------
================================================================================
sqlite-3.34.1-1.fc33 (FEDORA-2021-ce785b5fe0)
Library that implements an embeddable SQL database engine
--------------------------------------------------------------------------------
Update Information:
rebase to version 3.34.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 21 2021 Ondrej Dubaj <odubaj(a)redhat.com> - 3.34.1-1
- Updated to version 3.34.1 (
https://sqlite.org/releaselog/3_34_1.html)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1918359 - sqlite-3.34.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1918359
--------------------------------------------------------------------------------
================================================================================
tcmu-runner-1.5.2-7.fc33 (FEDORA-2021-4a91649cf3)
A daemon that supports LIO userspace backends
--------------------------------------------------------------------------------
Update Information:
Fixes CVE-2020-28374 See tcmu-runner commit
2b16e96e6b63d0419d857f53e4cc67f0adb383fd tcmu-runner can't determine whether
the device(s) referred to in XCOPY Copy Source/Copy Destination (CSCD)
descriptors should be accessible to the initiator via transport settings, ACLs,
etc. Consequently, fail XCOPY requests with CSCD descriptors which refer to any
device other than where the XCOPY request is processed.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Maurizio Lombardi <mlombard(a)redhat.com> - 1.5.2-7
- Fixes CVE-2020-28374
--------------------------------------------------------------------------------
================================================================================
thunderbird-78.6.1-1.fc33 (FEDORA-2021-43e458d707)
Mozilla Thunderbird mail/newsgroup client
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream version.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 14 2021 Jan Horak <jhorak(a)redhat.com> - 78.6.1-1
- Update to 78.6.1 build1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1914997 - thunderbird-78.6.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1914997
--------------------------------------------------------------------------------
================================================================================
vte291-0.62.2-1.fc33 (FEDORA-2021-8656548c9b)
Terminal emulator library
--------------------------------------------------------------------------------
Update Information:
vte 0.62.2 release. For details, see
https://mail.gnome.org/archives/ftp-
release-list/2021-January/msg00087.html
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 25 2021 Kalev Lember <klember(a)redhat.com> - 0.62.2-1
- Update to 0.62.2
--------------------------------------------------------------------------------