The following Fedora 30 Security updates need testing:
Age URL
9
https://bodhi.fedoraproject.org/updates/FEDORA-2019-644ef7ebec
graphite2-1.3.13-1.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-55d101a740
golang-1.12.9-1.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-7f7489dc8c
seamonkey-2.49.5-1.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-2baa1f7b19 lxc-3.0.4-1.fc30
lxcfs-3.0.4-1.fc30 python3-lxc-3.0.4-1.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-baff775841
rdesktop-1.8.6-1.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-e01bc28777
pdfresurrect-0.18-1.fc30
4
https://bodhi.fedoraproject.org/updates/FEDORA-2019-0bb6b876da
grafana-6.3.4-1.fc30
4
https://bodhi.fedoraproject.org/updates/FEDORA-2019-446ca9f695 SDL-1.2.15-41.fc30
4
https://bodhi.fedoraproject.org/updates/FEDORA-2019-0811a88d77 kea-1.5.0-9.fc30
4
https://bodhi.fedoraproject.org/updates/FEDORA-2019-96fe76e02b nsd-4.2.2-1.fc30
2
https://bodhi.fedoraproject.org/updates/FEDORA-2019-9e91afa2be
pdfbox-2.0.16-1.fc30
The following Fedora 30 Critical Path updates have yet to be approved:
Age URL
55
https://bodhi.fedoraproject.org/updates/FEDORA-2019-c05e4425d1
dash-0.5.10.2-3.fc30
46
https://bodhi.fedoraproject.org/updates/FEDORA-2019-45ce99686a
pungi-4.1.38-2.fc30
34
https://bodhi.fedoraproject.org/updates/FEDORA-2019-c6ef0c53d5
iproute-5.2.0-1.fc30
12
https://bodhi.fedoraproject.org/updates/FEDORA-2019-35a7bc6244
perl-5.28.2-439.fc30
12
https://bodhi.fedoraproject.org/updates/FEDORA-2019-56744fc88a
perl-Pod-Perldoc-3.28.01-420.fc30
11
https://bodhi.fedoraproject.org/updates/FEDORA-2019-760282d4aa
telepathy-glib-0.24.1-13.fc30.1
11
https://bodhi.fedoraproject.org/updates/FEDORA-2019-3a3b518302
ostree-2019.3-3.fc30
9
https://bodhi.fedoraproject.org/updates/FEDORA-2019-644ef7ebec
graphite2-1.3.13-1.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-8278841292
libselinux-2.9-3.1.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-aec5fc4920
libcacard-2.7.0-3.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-f75c1a1b26
policycoreutils-2.9-4.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-7f297cb49a
dnsmasq-2.80-10.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-d0179eb247
xfce4-settings-4.14.1-2.fc30
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-40235845dc dnf-4.2.8-1.fc30
dnf-plugins-core-4.0.9-1.fc30 libdnf-0.35.2-1.fc30 swid-tools-0.8.6-1.fc30
4
https://bodhi.fedoraproject.org/updates/FEDORA-2019-83fa1cfd0f file-5.36-4.fc30
4
https://bodhi.fedoraproject.org/updates/FEDORA-2019-ae52a20ff6 curl-7.65.3-3.fc30
1
https://bodhi.fedoraproject.org/updates/FEDORA-2019-bd9727c538
glib2-2.60.7-1.fc30
1
https://bodhi.fedoraproject.org/updates/FEDORA-2019-5ab46923f4
v4l-utils-1.16.7-1.fc30
The following builds have been pushed to Fedora 30 updates-testing
TurboGears2-2.4.1-1.fc30
buildstream-1.4.1-1.fc30
cacti-1.2.6-1.fc30
cacti-spine-1.2.6-1.fc30
cobbler-2.8.5-0.1.fc30
cscope-15.9-4.fc30
fedora-obsolete-packages-30-45
gtkhash-1.2-1.fc30
hwdata-0.327-1.fc30
js-jquery-file-upload-9.34.0-1.fc30
libfaketime-0.9.8-4.fc30
libreoffice-6.2.6.2-3.fc30
lollypop-1.1.4.16-1.fc30
mbedtls-2.16.2-4.fc30
mesa-19.1.6-1.fc30
nfs-utils-2.4.1-0.rc1.fc30
perl-Algorithm-BloomFilter-0.02-1.fc30
perl-DBIx-Class-Helpers-2.034000-2.fc30
perl-Mojo-JWT-0.08-2.fc30
purple-telegram-1.4.2-1.fc30
python-cornice-3.6.0-1.fc30
python-ipdb-0.12.2-1.fc30
python-mako-1.1.0-1.fc30
samba-4.10.8-0.fc30
systemd-241-12.git1e19bcd.fc30
torbrowser-launcher-0.3.2-7.fc30
Details about builds:
================================================================================
TurboGears2-2.4.1-1.fc30 (FEDORA-2019-3dc4ca61c4)
Next generation front-to-back web development megaframework
--------------------------------------------------------------------------------
Update Information:
Update to upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 J��n ONDREJ (SAL) <ondrejj(at)salstar.sk> - 2.4.1-1
- Update to upstream.
* Mon Aug 19 2019 Miro Hron��ok <mhroncok(a)redhat.com> - 2.4.0-3
- Rebuilt for Python 3.8
* Wed Jul 24 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.4.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1748137 - TurboGears2-2.4.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1748137
--------------------------------------------------------------------------------
================================================================================
buildstream-1.4.1-1.fc30 (FEDORA-2019-f632ab4d8b)
Build/integrate software stacks
--------------------------------------------------------------------------------
Update Information:
New feature release, see [the upstream
changelog](https://gitlab.com/BuildStream/buildstream/blob/1.4.1/NEWS) for
details.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Mathieu Bridon <bochecha(a)daitauha.fr> - 1.4.1-1
- Update to the latest upstream release.
--------------------------------------------------------------------------------
================================================================================
cacti-1.2.6-1.fc30 (FEDORA-2019-087fa4bed2)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
- Update to 1.2.6 Release notes:
https://www.cacti.net/release_notes.php?version=1.2.6
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.6-1
- Update to 1.2.6
* Thu Aug 22 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.5-4
- Don't require php-imap
* Sat Aug 3 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.5-3
- Require mariadb instead of mysql
* Wed Jul 24 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
cacti-spine-1.2.6-1.fc30 (FEDORA-2019-087fa4bed2)
Threaded poller for Cacti written in C
--------------------------------------------------------------------------------
Update Information:
- Update to 1.2.6 Release notes:
https://www.cacti.net/release_notes.php?version=1.2.6
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.6-1
- Update to 1.2.6
* Sat Aug 3 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.5-3
- Fix building on RHEL8
* Wed Jul 24 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
cobbler-2.8.5-0.1.fc30 (FEDORA-2019-3cacfb34ad)
Boot server configurator
--------------------------------------------------------------------------------
Update Information:
Update to 2.5.0 (pre-release)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 26 2019 Nicolas Chauvet <kwizart(a)gmail.com> - 2.8.5-0.1
- Update to 2.8.5 - pre-release
* Wed Jul 24 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.8.4-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1614431 - CVE-2018-10931 cobbler: CobblerXMLRPCInterface exports all its
methods over XMLRPC [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1614431
[ 2 ] Bug #1613293 - cobbler: XMLRPC API endpoints are not correctly validating security
tokens [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1613293
[ 3 ] Bug #1613177 - cobbler: Persistent XSS vulnerability in cobbler-web [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1613177
[ 4 ] Bug #1613176 - cobbler: Persistent XSS vulnerability in cobbler-web [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1613176
--------------------------------------------------------------------------------
================================================================================
cscope-15.9-4.fc30 (FEDORA-2019-a32bc266e5)
C source code tree search and browse tool
--------------------------------------------------------------------------------
Update Information:
Fix double close of script file pointer
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 11 2019 Neil Horman <nhorman(a)redhat.com> - 15.9-4
- Fixing double free (bz 1657210)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1745316 - [abrt] cscope: changestring(): cscope killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1745316
--------------------------------------------------------------------------------
================================================================================
fedora-obsolete-packages-30-45 (FEDORA-2019-1227b778f3)
A package to obsolete retired packages
--------------------------------------------------------------------------------
Update Information:
Obsolete gegl. No need to log out or reboot.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 30-45
- Obsolete gegl (#1747428)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1747428 - Obsolete Gegl
https://bugzilla.redhat.com/show_bug.cgi?id=1747428
--------------------------------------------------------------------------------
================================================================================
gtkhash-1.2-1.fc30 (FEDORA-2019-bd8971882e)
GTK+ utility for computing message digests or checksums
--------------------------------------------------------------------------------
Update Information:
update to 1.2
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 1.2-1
- Update to 1.2
* Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.1.1-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1746655 - gtkhash doesn't exit cleanly
https://bugzilla.redhat.com/show_bug.cgi?id=1746655
--------------------------------------------------------------------------------
================================================================================
hwdata-0.327-1.fc30 (FEDORA-2019-72093d6558)
Hardware identification and configuration data
--------------------------------------------------------------------------------
Update Information:
Updated pci, usb and vendor ids.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Vitezslav Crhonek <vcrhonek(a)redhat.com> - 0.327-1
- Updated pci, usb and vendor ids.
--------------------------------------------------------------------------------
================================================================================
js-jquery-file-upload-9.34.0-1.fc30 (FEDORA-2019-ab8831aae2)
File Upload widget for jQuery
--------------------------------------------------------------------------------
Update Information:
Update to [
9.34.0](https://github.com/blueimp/jQuery-File-
Upload/compare/v9.31.0...v9.34.0).
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 9.34.0-1
- Update to 9.34.0 (#1723177).
--------------------------------------------------------------------------------
================================================================================
libfaketime-0.9.8-4.fc30 (FEDORA-2019-e6266b93b5)
Manipulate system time per process for testing purposes
--------------------------------------------------------------------------------
Update Information:
This package FTBFS since Fedora 27. Update to latest upstream fixes this and
numerous other bugs. This update should not break any Fedora packages as
faketime is currently used only in rare instances of of testing and building
non-Fedora stuff.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Warren Togami <warren(a)blockstream.com> - 0.9.8-4
- upstream says to use FORCE_PTHREAD_NONVER on any glibc+arch that gets stuck
For Fedora 31+ "make test" gets stuck on i686 x86_64 ppc64le s390x
* Wed Aug 28 2019 Warren Togami <warren(a)blockstream.com> - 0.9.8-3
- 0.9.8
- x86_64 EL7: DFORCE_MONOTONIC_FIX
aarch64 EL7: DFORCE_MONOTONIC_FIX and FORCE_PTHREAD_NONVER
ppc64le EL7: DFORCE_MONOTONIC_FIX and FORCE_PTHREAD_NONVER
ppc64le F30+ FORCE_PTHREAD_NONVER
* Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.6-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.6-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.9.6-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1604581 - libfaketime: FTBFS in Fedora rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1604581
[ 2 ] Bug #1735994 - libfaketime: FTBFS in Fedora rawhide/f31
https://bugzilla.redhat.com/show_bug.cgi?id=1735994
--------------------------------------------------------------------------------
================================================================================
libreoffice-6.2.6.2-3.fc30 (FEDORA-2019-a95452a6e3)
Free Software Productivity Suite
--------------------------------------------------------------------------------
Update Information:
- relax dependency on firebird to just libreoffice-base requiring it, for its
default database target of embedded-firebird, as opposed to all components
requiring it
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 2 2019 Caol��n McNamara <caolanm(a)redhat.com> - 1:6.3.0.4-3
- rhbz#1747596 try if a depend on firebird from just base is sufficient
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1747596 - firebird as dependency?
https://bugzilla.redhat.com/show_bug.cgi?id=1747596
--------------------------------------------------------------------------------
================================================================================
lollypop-1.1.4.16-1.fc30 (FEDORA-2019-19cf67da23)
Music player for GNOME
--------------------------------------------------------------------------------
Update Information:
- Update to 1.1.4.16 - Fix (RHBZ#1737737), (RHBZ#1748217)
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1748482 - lollypop-1.1.4.16 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1748482
[ 2 ] Bug #1737737 - [abrt] lollypop: __init__():
widgets_row_playlist.py:64:__init__:IndexError: list index out of range
https://bugzilla.redhat.com/show_bug.cgi?id=1737737
[ 3 ] Bug #1748217 - [abrt] lollypop: __reset_database():
widgets_settings_collections.py:237:__reset_database:AttributeError: 'NoneType'
object has no attribute 'hide'
https://bugzilla.redhat.com/show_bug.cgi?id=1748217
--------------------------------------------------------------------------------
================================================================================
mbedtls-2.16.2-4.fc30 (FEDORA-2019-5c47735ddd)
Light-weight cryptographic and SSL/TLS library
--------------------------------------------------------------------------------
Update Information:
- devel package needs pkcs11-helper-devel (#1748468)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 2.16.2-4
- devel package needs pkcs11-helper-devel (#1748468)
* Sat Aug 3 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 2.16.2-3
- Fix building on RHEL8
* Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.16.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1748468 - mbedtls-devel missing dependency on pkcs11-helper-devel
https://bugzilla.redhat.com/show_bug.cgi?id=1748468
--------------------------------------------------------------------------------
================================================================================
mesa-19.1.6-1.fc30 (FEDORA-2019-def4d9a3f0)
Mesa graphics libraries
--------------------------------------------------------------------------------
Update Information:
Update to 19.1.6
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Pete Walter <pwalter(a)fedoraproject.org> - 19.1.6-1
- Update to 19.1.6
--------------------------------------------------------------------------------
================================================================================
nfs-utils-2.4.1-0.rc1.fc30 (FEDORA-2019-27b017d993)
NFS utilities and supporting clients and daemons for the kernel NFS server
--------------------------------------------------------------------------------
Update Information:
Updated to the latest upstream RC release: nfs-utils-2-4-2-rc1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 29 2019 Steve Dickson <steved(a)redhat.com> 2.4.1-0.rc1
- Updated to the latest upstream RC release: nfs-utils-2-4-2-rc1
--------------------------------------------------------------------------------
================================================================================
perl-Algorithm-BloomFilter-0.02-1.fc30 (FEDORA-2019-aea9a125a5)
A simple bloom filter data structure
--------------------------------------------------------------------------------
Update Information:
This package contains the perl module Algorithm-BloomFilter, which implements a
simple bloom filter in C/XS.
--------------------------------------------------------------------------------
================================================================================
perl-DBIx-Class-Helpers-2.034000-2.fc30 (FEDORA-2019-c22fd0a690)
A collection of various components for DBIx::Class
--------------------------------------------------------------------------------
Update Information:
This package contains the perl distribution DBIx-Class-Helpers, which contains a
collection of various helper components for DBIx::Class.
--------------------------------------------------------------------------------
================================================================================
perl-Mojo-JWT-0.08-2.fc30 (FEDORA-2019-2534a6401d)
JSON Web Token the Mojo way
--------------------------------------------------------------------------------
Update Information:
This package contains the perl module Mojo::JWT, an implementation of the
standard JSON Web Token (
https://tools.ietf.org/html/rfc7519) with an API that
should feel familiar to Mojolicious users (though of course it is useful
elsewhere).
--------------------------------------------------------------------------------
================================================================================
purple-telegram-1.4.2-1.fc30 (FEDORA-2019-7851e68ffe)
Libpurple protocol plugin for Telegram support
--------------------------------------------------------------------------------
Update Information:
* Support ancient glib (See #501) * Update translations. Thanks to the following
people: Eduardo Tr��pani etrapani(a)gmail.com (es) Olesya Gerasimenko
gammaray(a)basealt.ru (ru) * Fix: Handle forwarded messages and captioned images
better * Fix: Handle replies better * Fix: Images in own messages * Fix: Remove
some of the duplicate messages seen (Maybe fixes #258?)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Jiri Eischmann <eischmann(a)redhat.com> - 1.4.2-1
- Update to 1.4.2
* Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1747645 - purple-telegram-1.4.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1747645
--------------------------------------------------------------------------------
================================================================================
python-cornice-3.6.0-1.fc30 (FEDORA-2019-2e287a7278)
Define Web Services in Pyramid
--------------------------------------------------------------------------------
Update Information:
Update to [
3.6.0](https://github.com/Cornices/cornice/blob/3.6.0/CHANGES.txt).
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 3.6.0-1
- Update to 3.6.0 (#1742282).
-
https://github.com/Cornices/cornice/blob/3.6.0/CHANGES.txt
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1742282 - python-cornice-3.6.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1742282
--------------------------------------------------------------------------------
================================================================================
python-ipdb-0.12.2-1.fc30 (FEDORA-2019-ebea784d58)
IPython enabled Python debugger
--------------------------------------------------------------------------------
Update Information:
Upgrade to [
0.12.2](https://github.com/gotcha/ipdb/blob/0.12.2/HISTORY.txt).
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 0.12.2-1
- Update to 0.12.2 (#1742353).
-
https://github.com/gotcha/ipdb/blob/0.12.2/HISTORY.txt
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1742353 - python-ipdb-0.12.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1742353
--------------------------------------------------------------------------------
================================================================================
python-mako-1.1.0-1.fc30 (FEDORA-2019-89ecce35b2)
Mako template library for Python
--------------------------------------------------------------------------------
Update Information:
Update to
[
1.1.0](https://docs.makotemplates.org/en/latest/changelog.html#change-1.1.0).
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Randy Barlow <bowlofeggs(a)fedoraproject.org> - 1.1.0-1
- Update to 1.1.0 (#1725969).
-
https://docs.makotemplates.org/en/latest/changelog.html#change-1.1.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1725969 - python-mako-1.1.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1725969
--------------------------------------------------------------------------------
================================================================================
samba-4.10.8-0.fc30 (FEDORA-2019-e3e521e5b3)
Server and Client software to interoperate with Windows machines
--------------------------------------------------------------------------------
Update Information:
Update to Samba 4.10.8 - Security fixes for CVE-2019-10197
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Guenther Deschner <gdeschner(a)redhat.com> - 4.10.8-0
- Update to Samba 4.10.8
- resolves: #1746225, #1748308 - Security fixes for CVE-2019-10197
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1746225 - CVE-2019-10197 samba: Combination of parameters and permissions can
allow user to escape from the share path definition.
https://bugzilla.redhat.com/show_bug.cgi?id=1746225
--------------------------------------------------------------------------------
================================================================================
systemd-241-12.git1e19bcd.fc30 (FEDORA-2019-24e1d561e5)
System and Service Manager
--------------------------------------------------------------------------------
Update Information:
- Security issue: unprivileged users were allowed to change DNS servers
configured in systemd-resolved (CVE-2019-15718). - Various minor fixes (memory
issues, compat with newer kernels, log message improvements, etc.). - hwdb
entries for keyboards are updated to the latest version No need to log out or
reboot.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 3 2019 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> -
241-12.git1e19bcd
- hwdb entries for keyboards are updated to the latest version (#1725717)
* Tue Sep 3 2019 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> -
241-11.git1e19bcd
- Security issue: unprivileged users were allowed to change DNS
servers configured in systemd-resolved. Now proper polkit authorization
is required.
- Various minor fixes (memory issues, compat with newer kernels, log
message improvements, etc.).
- Add hwdb entry for HP laptops to fix "inverted screen" (#1717712)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1725717 - Update 60-keyboard.hwdb to the latest upstream version
https://bugzilla.redhat.com/show_bug.cgi?id=1725717
--------------------------------------------------------------------------------
================================================================================
torbrowser-launcher-0.3.2-7.fc30 (FEDORA-2019-d1f4da921c)
Tor Browser Bundle managing tool
--------------------------------------------------------------------------------
Update Information:
Appdata fix.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 19 2019 Miro Hron��ok <mhroncok(a)redhat.com> - 0.3.2-7
- Rebuilt for Python 3.8
* Thu Jul 25 2019 Gwyn Ciesla <gwync(a)protonmail.com> - 0.3.2-6
- Patch setup to honor prefix.
* Thu Jul 25 2019 Gwyn Ciesla <gwync(a)protonmail.com> - 0.3.2-5
- Appdata fix.
* Thu Jul 25 2019 Gwyn Ciesla <gwync(a)protonmail.com> - 0.3.2-4
- Create appdata dir.
* Thu Jul 25 2019 Gwyn Ciesla <gwync(a)protonmail.com> - 0.3.2-3
- Validate desktop files in build.
* Thu Jul 25 2019 Gwyn Ciesla <gwync(a)protonmail.com> - 0.3.2-2
- Cleanup.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1748494 - Tor Browser Launcher is missing in GNOME Software
https://bugzilla.redhat.com/show_bug.cgi?id=1748494
--------------------------------------------------------------------------------