The following Fedora 29 Security updates need testing:
Age URL
109
https://bodhi.fedoraproject.org/updates/FEDORA-2018-51ce232320
xerces-c27-2.7.0-28.fc29
45
https://bodhi.fedoraproject.org/updates/FEDORA-2018-36115ae788
mysql-selinux-1.0.0-5.fc29
38
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b89746cb9b
tomcat-9.0.13-1.fc29
10
https://bodhi.fedoraproject.org/updates/FEDORA-2019-c7da53319c
haproxy-1.8.17-1.fc29
7
https://bodhi.fedoraproject.org/updates/FEDORA-2019-a171d0d192 irssi-1.1.2-1.fc29
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-b4356521ba
runc-1.0.0-67.dev.git12f6a99.fc29
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-00870e8bfc
anaconda-29.24.7-2.fc29 python3-3.7.2-4.fc29
3
https://bodhi.fedoraproject.org/updates/FEDORA-2019-376ecc221c
nagios-4.4.3-1.fc29
2
https://bodhi.fedoraproject.org/updates/FEDORA-2019-a034423db8
docker-1.13.1-63.git1185cfd.fc29
2
https://bodhi.fedoraproject.org/updates/FEDORA-2019-f5b57646b7
docker-latest-1.13.1-40.git1185cfd.fc29
The following Fedora 29 Critical Path updates have yet to be approved:
Age URL
39
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3d43e7dd21
SLOF-0.1.git20180702-2.fc29
10
https://bodhi.fedoraproject.org/updates/FEDORA-2019-b1190b5494
pcmanfm-1.3.1-2.D20181227git0619a81f.fc29
10
https://bodhi.fedoraproject.org/updates/FEDORA-2019-27778372a6
pungi-4.1.32-3.fc29
7
https://bodhi.fedoraproject.org/updates/FEDORA-2019-a022691b72
breeze-icon-theme-5.54.0-1.fc29 extra-cmake-modules-5.54.0-1.fc29 kf5-5.54.0-1.fc29
kf5-attica-5.54.0-1.fc29 kf5-baloo-5.54.0-1.fc29 kf5-bluez-qt-5.54.0-1.fc29
kf5-frameworkintegration-5.54.0-1.fc29 kf5-kactivities-5.54.0-1.fc29
kf5-kactivities-stats-5.54.0-1.fc29 kf5-kapidox-5.54.0-1.fc29 kf5-karchive-5.54.0-1.fc29
kf5-kauth-5.54.0-1.fc29 kf5-kbookmarks-5.54.0-1.fc29 kf5-kcmutils-5.54.0-1.fc29
kf5-kcodecs-5.54.0-1.fc29 kf5-kcompletion-5.54.0-1.fc29 kf5-kconfig-5.54.0-1.fc29
kf5-kconfigwidgets-5.54.0-1.fc29 kf5-kcoreaddons-5.54.0-1.fc29 kf5-kcrash-5.54.0-1.fc29
kf5-kdbusaddons-5.54.0-1.fc29 kf5-kdeclarative-5.54.0-1.fc29 kf5-kded-5.54.0-1.fc29
kf5-kdelibs4support-5.54.0-1.fc29 kf5-kdesignerplugin-5.54.0-1.fc29
kf5-kdesu-5.54.0-1.fc29 kf5-kdewebkit-5.54.0-1.fc29 kf5-kdnssd-5.54.0-1.fc29
kf5-kdoctools-5.54.0-1.fc29 kf5-kemoticons-5.54.0-1.fc29 kf5-kfilemetadata-5.54.0-1.fc29
kf5-kglobalaccel-5.54.0-1.fc29 kf5-kguiad
dons-5.54.0-1.fc29 kf5-kholidays-5.54.0-1.fc29 kf5-khtml-5.54.0-1.fc29
kf5-ki18n-5.54.0-1.fc29 kf5-kiconthemes-5.54.0-1.fc29 kf5-kidletime-5.54.0-1.fc29
kf5-kimageformats-5.54.0-1.fc29 kf5-kinit-5.54.0-1.fc29 kf5-kio-5.54.1-1.fc29
kf5-kirigami2-5.54.0-1.fc29 kf5-kitemmodels-5.54.0-1.fc29 kf5-kitemviews-5.54.0-1.fc29
kf5-kjobwidgets-5.54.0-1.fc29 kf5-kjs-5.54.0-1.fc29 kf5-kjsembed-5.54.0-1.fc29
kf5-kmediaplayer-5.54.0-1.fc29 kf5-knewstuff-5.54.0-1.fc29
kf5-knotifications-5.54.0-1.fc29 kf5-knotifyconfig-5.54.0-1.fc29
kf5-kpackage-5.54.0-1.fc29 kf5-kparts-5.54.0-1.fc29 kf5-kpeople-5.54.0-1.fc29
kf5-kplotting-5.54.0-1.fc29 kf5-kpty-5.54.0-1.fc29 kf5-kross-5.54.0-1.fc29
kf5-krunner-5.54.0-1.fc29 kf5-kservice-5.54.0-1.fc29 kf5-ktexteditor-5.54.0-1.fc29
kf5-ktextwidgets-5.54.0-1.fc29 kf5-kunitconversion-5.54.0-1.fc29 kf5-kwallet-5.54.0-1.fc29
kf5-kwayland-5.54.0-1.fc29 kf5-kwidgetsaddons-5.54.0-1.fc29
kf5-kwindowsystem-5.54.0-1.fc29 kf5-kxmlgui-5.54.0-1.fc29 kf5-kxmlrpcclient-5.54.0-1.fc29
kf5-modemmanager-qt-5.54.0-1.fc29 kf5-networkmanager-qt-5.54.0-1.fc29
kf5-plasma-5.54.0-1.fc29 kf5-prison-5.54.0-1.fc29 kf5-purpose-5.54.0-1.fc29
kf5-solid-5.54.0-1.fc29 kf5-sonnet-5.54.0-1.fc29 kf5-syndication-5.54.0-1.fc29
kf5-syntax-highlighting-5.54.0-1.fc29 kf5-threadweaver-5.54.0-1.fc29
oxygen-icon-theme-5.54.0-1.fc29 qqc2-desktop-style-5.54.0-1.fc29
5
https://bodhi.fedoraproject.org/updates/FEDORA-2019-00870e8bfc
anaconda-29.24.7-2.fc29 python3-3.7.2-4.fc29
3
https://bodhi.fedoraproject.org/updates/FEDORA-2019-0ab485544f
libguestfs-1.40.1-2.fc29
3
https://bodhi.fedoraproject.org/updates/FEDORA-2019-063d6e79f1
hivex-1.3.16-1.fc29
3
https://bodhi.fedoraproject.org/updates/FEDORA-2019-f357f36983
supermin-5.1.20-1.fc29
2
https://bodhi.fedoraproject.org/updates/FEDORA-2019-ca705d784a lorax-29.25-1.fc29
1
https://bodhi.fedoraproject.org/updates/FEDORA-2019-0e7003b946
osinfo-db-20190120-1.fc29
The following builds have been pushed to Fedora 29 updates-testing
accountsservice-0.6.54-4.fc29
appstream-data-29-9.fc29
beets-1.4.7-4.fc29
buildah-1.6-2.git5f95bd9.fc29
cacti-1.2.1-1.fc29
cacti-spine-1.2.1-1.fc29
ccgo-0.3.6.5-10.fc29
checkpolicy-2.8-3.fc29
colin-0.3.1-1.fc29
conu-0.6.2-2.fc29
curl-7.61.1-7.fc29
dbus-1.12.12-1.fc29
doclifter-2.18-1.fc29
exo-0.12.4-1.fc29
fedmod-0.4.5-1.fc29
fedora-messaging-1.2.0-1.fc29
fedora-toolbox-0.0.4-1.fc29
gcr-3.28.1-1.fc29
geoipupdate-3.1.1-2.fc29
gmediarender-0-0.10.20190121gitbb7ce8e.fc29
gnome-documents-3.30.1-1.fc29
golang-rsc-pdf-0.1.1-1.fc29
gsoap-2.8.60-5.fc29
ibus-typing-booster-2.5.0-1.fc29
ipe-7.2.9-1.fc29
libinput-1.12.6-1.fc29
libselinux-2.8-6.fc29
libsemanage-2.8-8.fc29
libsepol-2.8-3.fc29
libsolv-0.7.2-2.fc29
libtpms-0.6.1-0.20190121git9dc915572b.fc29
libvirt-dbus-1.3.0-1.fc29
libxcrypt-4.4.2-6.fc29
llvm-7.0.1-2.fc29
mingw-python-qt5-5.11.3-2.fc29
mingw-qt5-qt3d-5.11.3-1.fc29
mingw-qt5-qtactiveqt-5.11.3-1.fc29
mingw-qt5-qtbase-5.11.3-1.fc29
mingw-qt5-qtcharts-5.11.3-1.fc29
mingw-qt5-qtdeclarative-5.11.3-1.fc29
mingw-qt5-qtgraphicaleffects-5.11.3-1.fc29
mingw-qt5-qtimageformats-5.11.3-1.fc29
mingw-qt5-qtlocation-5.11.3-1.fc29
mingw-qt5-qtmultimedia-5.11.3-1.fc29
mingw-qt5-qtquickcontrols-5.11.3-1.fc29
mingw-qt5-qtscript-5.11.3-1.fc29
mingw-qt5-qtsensors-5.11.3-1.fc29
mingw-qt5-qtserialport-5.11.3-1.fc29
mingw-qt5-qtsvg-5.11.3-1.fc29
mingw-qt5-qttools-5.11.3-1.fc29
mingw-qt5-qttranslations-5.11.3-1.fc29
mingw-qt5-qtwebkit-5.9.4-0.8.gitbd0657f.fc29
mingw-qt5-qtwebsockets-5.11.3-1.fc29
mingw-qt5-qtwinextras-5.11.3-1.fc29
mingw-qt5-qtxmlpatterns-5.11.3-1.fc29
mingw-sip-4.19.13-2.fc29
ngspice-30-2.fc29
nmstate-0.0.3-3.fc29
p11-kit-0.23.15-1.fc29
perl-Alien-Build-1.51-1.fc29
perl-CPAN-Perl-Releases-3.88-1.fc29
perl-Inline-Struct-0.25-1.fc29
perl-Module-CoreList-5.20190120-1.fc29
policycoreutils-2.8-15.fc29
python-coverage-test-runner-1.15-1.fc29
qt5-qtpbfimageformat-1.2-3.fc29
rubygem-fake_ftp-0.3.0-1.fc29
rust-1.32.0-1.fc29
shorewall-5.2.2-1.fc29
texmaker-5.0.3-1.fc29
winetricks-20181203-2.fc29
wireshark-2.6.6-1.fc29
Details about builds:
================================================================================
accountsservice-0.6.54-4.fc29 (FEDORA-2019-e491739b69)
D-Bus interfaces for querying and manipulating user account information
--------------------------------------------------------------------------------
Update Information:
Add fix for detection of system versus non-system users. Resolves: #1646418
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Alexandru-Sever Horin <alex.sever.h(a)gmail.com> - 0.6.54-4
- Add patch from upstream to fix UID detection
Resolves: #1646418
--------------------------------------------------------------------------------
================================================================================
appstream-data-29-9.fc29 (FEDORA-2019-a97ca934d5)
Fedora AppStream metadata
--------------------------------------------------------------------------------
Update Information:
New metadata version
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Kalev Lember <klember(a)redhat.com> - 29-9
- New metadata version
--------------------------------------------------------------------------------
================================================================================
beets-1.4.7-4.fc29 (FEDORA-2019-023b20d575)
Music library manager and MusicBrainz tagger
--------------------------------------------------------------------------------
Update Information:
Fix python3.7 incompatibilities
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Michele Baldessari <michele(a)acksyn.org> - 1.4.7-4
- Fix python3.7 incompatibility (rhbz#1653869)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1653869 - [abrt] beets: _eq(): hooks.py:436:_eq:AttributeError: module
're' has no attribute '_pattern_type'
https://bugzilla.redhat.com/show_bug.cgi?id=1653869
--------------------------------------------------------------------------------
================================================================================
buildah-1.6-2.git5f95bd9.fc29 (FEDORA-2019-8a515995f8)
A command line tool used for creating OCI Images
--------------------------------------------------------------------------------
Update Information:
Fixed update for 1.6. ---- New Version 1.6
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 16 2019 Dan Walsh <dwalsh(a)redhat.com> - 1.6-2.git5f95bd9a
- Fixes for v1.6 release
* Wed Jan 16 2019 Dan Walsh <dwalsh(a)redhat.com> - 1.6-1.git3ec6a6bd
- bump to v1.6 Release
--------------------------------------------------------------------------------
================================================================================
cacti-1.2.1-1.fc29 (FEDORA-2019-3d463014ba)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
- Update to 1.2.1 Release notes:
https://www.cacti.net/release_notes.php?version=1.2.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.1-1
- Update to 1.2.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1667734 - cacti-1.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1667734
--------------------------------------------------------------------------------
================================================================================
cacti-spine-1.2.1-1.fc29 (FEDORA-2019-3d463014ba)
Threaded poller for Cacti written in C
--------------------------------------------------------------------------------
Update Information:
- Update to 1.2.1 Release notes:
https://www.cacti.net/release_notes.php?version=1.2.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Morten Stevens <mstevens(a)fedoraproject.org> - 1.2.1-1
- Update to 1.2.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1667734 - cacti-1.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1667734
--------------------------------------------------------------------------------
================================================================================
ccgo-0.3.6.5-10.fc29 (FEDORA-2019-bd0a401f0d)
An IGS (Internet Go Server) client written in C++
--------------------------------------------------------------------------------
Update Information:
Fix component type typo in appdata file that caused ccgo to not show up in
gnome-software.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Kalev Lember <klember(a)redhat.com> - 0.3.6.5-10
- Fix component type typo in appdata file
--------------------------------------------------------------------------------
================================================================================
checkpolicy-2.8-3.fc29 (FEDORA-2019-16fd3acb03)
SELinux policy compiler
--------------------------------------------------------------------------------
Update Information:
This update fixes also the following upstream issues: *
https://github.com/SELinuxProject/selinux/issues/123 *
https://github.com/SELinuxProject/selinux/issues/109 *
https://github.com/SELinuxProject/selinux/issues/121 *
https://github.com/SELinuxProject/selinux/issues/81 And contains this Fedora PR
https://src.fedoraproject.org/rpms/policycoreutils/pull-request/9
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-3
- Check the result value of hashtable_search
- Destroy the class datum if it fails to initialize
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1013774 - chcat does not quote its arguments properly
https://bugzilla.redhat.com/show_bug.cgi?id=1013774
[ 2 ] Bug #1558861 - AttributeError: 'NoneType' object has no attribute
'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1558861
[ 3 ] Bug #1625158 - [abrt] policycoreutils-devel: tab_change():
gui.py:1345:tab_change:AttributeError: 'SELinuxGui' object has no attribute
'mislabeled_files'
https://bugzilla.redhat.com/show_bug.cgi?id=1625158
[ 4 ] Bug #1665662 - dnf update: AttributeError: 'NoneType' object has no
attribute 'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1665662
[ 5 ] Bug #1312261 - semanage generates ROLE_REMOVE events with invalid new-range=s0-s0
https://bugzilla.redhat.com/show_bug.cgi?id=1312261
--------------------------------------------------------------------------------
================================================================================
colin-0.3.1-1.fc29 (FEDORA-2019-7006fbed73)
Tool to check generic rules/best-practices for containers/images/dockerfiles.
--------------------------------------------------------------------------------
Update Information:
new upstream release ---- latest upstream release ---- Update to latest
upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Tomas Tomecek <nereone(a)gmail.com> 0.3.1-1
- 0.3.1 release
* Fri Jan 18 2019 Tomas Tomecek <ttomecek(a)redhat.com> - 0.3.0-2
- Rebuild for sake of bodhi
* Thu Nov 15 2018 lachmanfrantisek <lachmanfrantisek(a)gmail.com> 0.3.0-1
- 0.3.0 release
* Mon Oct 22 2018 lachmanfrantisek <lachmanfrantisek(a)gmail.com> 0.2.1-1
- 0.2.1 release
--------------------------------------------------------------------------------
================================================================================
conu-0.6.2-2.fc29 (FEDORA-2019-a1865a465d)
library which makes it easy to write tests for your containers
--------------------------------------------------------------------------------
Update Information:
packaging fixes ---- Update conu to latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Tomas Tomecek <ttomecek(a)redhat.com> - 0.6.2-2
- packaging fixes
* Thu Nov 15 2018 Tomas Tomecek <ttomecek(a)redhat.com> 0.6.2-1
- 0.6.2 release
* Wed Nov 14 2018 lachmanfrantisek <lachmanfrantisek(a)gmail.com> 0.6.1-1
- 0.6.1 release
* Wed Oct 24 2018 Radoslav Pito����k <rado.pitonak(a)gmail.com> 0.6.0-1
- 0.6.0 release
--------------------------------------------------------------------------------
================================================================================
curl-7.61.1-7.fc29 (FEDORA-2019-427a0ba9e3)
A utility for getting files from remote servers (FTP, HTTP, and others)
--------------------------------------------------------------------------------
Update Information:
- xattr: strip credentials from any URL that is stored (CVE-2018-20483)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Kamil Dudka <kdudka(a)redhat.com> - 7.61.1-7
- xattr: strip credentials from any URL that is stored (CVE-2018-20483)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1662852 - CVE-2018-20483 curl: wget: Information exposure in
set_file_metadata function in xattr.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1662852
--------------------------------------------------------------------------------
================================================================================
dbus-1.12.12-1.fc29 (FEDORA-2019-192523204b)
D-BUS message bus
--------------------------------------------------------------------------------
Update Information:
Update to 1.12.12 Fix dbus service activation. This update enables dbus service
and socket units according to the presets in fedora-release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 David King <amigadave(a)amigadave.com> - 1:1.12.12-1
- Update to 1.12.12
- Change -devel subpackage to depend on -libs
- Ensure presets are applied during this upgrade only
* Mon Jan 21 2019 David King <amigadave(a)amigadave.com> - 1:1.12.10-8
- Fix requirement on fedora-release
* Tue Nov 6 2018 Tom Gundersen <teg(a)jklm.no> - 1:1.12.10-7
- Fix the messagebus.service alias
* Mon Nov 5 2018 David King <amigadave(a)amigadave.com> - 1:1.12.10-6
- Add further Requires to subpackages
* Tue Oct 23 2018 David Herrmann <dh.herrmann(a)gmail.com> - 1:1.12.10-5
- Move useradd dependency to daemon subpackage
* Fri Oct 19 2018 David King <amigadave(a)amigadave.com> - 1:1.12.10-4
- Move user and group creation to daemon subpackage
- Move systemd to Requires of common subpackage (#1638910)
- Remove unnecessary ldconfig calls
* Fri Aug 31 2018 Tom Gundersen <teg(a)jklm.no> - 1:1.12.10-3
- Make sure presets are applied when upgrading from packages before the presets
existed
* Thu Aug 30 2018 David Herrmann <dh.herrmann(a)gmail.com> - 1:1.12.10-2
- Change 'system-release' dependency to 'fedora-release', since otherwise
hard
version dependencies are ignored.
* Fri Aug 10 2018 David Herrmann <dh.herrmann(a)gmail.com> - 1:1.12.10-2
- Move generic units into 'dbus-common', so other dbus implementations can use
them as well.
* Fri Aug 10 2018 David Herrmann <dh.herrmann(a)gmail.com> - 1:1.12.10-1
- Add [Install] sections to unit files, rather than creating the symlinks
manually during the installation. This will pick up the systemd-presets
global to Fedora from the 'fedora-release' package.
* Fri Aug 10 2018 David Herrmann <dh.herrmann(a)gmail.com> - 1:1.12.10-1
- Provide custom systemd unit files to replace the upstream units. Also rename
the service to 'dbus-daemon.service', but provide an alias to
'dbus.service'.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1641456 - D-Bus activation broken, dbus-daemon-launch-helper has wrong
permissions
https://bugzilla.redhat.com/show_bug.cgi?id=1641456
--------------------------------------------------------------------------------
================================================================================
doclifter-2.18-1.fc29 (FEDORA-2019-930938146d)
Translates documents written in troff macros to DocBook
--------------------------------------------------------------------------------
Update Information:
New upstream version
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 19 2019 Dan ��erm��k <dan.cermak(a)cgc-instruments.com> - 2.18-1
- New upstream version
- Fix make check
- Add missing dependencies
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1569529 - manlifier fails
https://bugzilla.redhat.com/show_bug.cgi?id=1569529
[ 2 ] Bug #1569530 - doclifier fails on .SH DESCRIPTION
https://bugzilla.redhat.com/show_bug.cgi?id=1569530
--------------------------------------------------------------------------------
================================================================================
exo-0.12.4-1.fc29 (FEDORA-2019-ea8a50f7eb)
Application library for the Xfce desktop environment
--------------------------------------------------------------------------------
Update Information:
update to 0.12.4
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 19 2019 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 0.12.4-1
- Update to 0.12.4
* Tue Oct 16 2018 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 0.12.3-1
- Update to 0.12.3
--------------------------------------------------------------------------------
================================================================================
fedmod-0.4.5-1.fc29 (FEDORA-2019-5ce34523f9)
Utilities for generating & maintaining modulemd files
--------------------------------------------------------------------------------
Update Information:
This update fixes a crash when using non-default datasets and allows using
dashes in dataset release names. Additionally, it adds the `--flatpak-common`
option, copes with Flatpak manifests using `id` rather than `app-id` and cleans
up modulemd files generated for Flatpaks.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Nils Philippsen <nils(a)redhat.com> 0.4.5-1
- Update version metadata for release 0.4.5 (nils(a)redhat.com)
- fix typo (nils(a)redhat.com)
- Change rationale from "Runtime dependencies" to "Runtime
dependency"
(otaylor(a)fishsoup.net)
- Clean up generated Flatpak modulemd (otaylor(a)fishsoup.net)
- rpm2flatpak: Handle manifests with 'id' rather than 'app-id'
(otaylor(a)fishsoup.net)
- rpm2flatpak: Add 'platform' as a dependency (otaylor(a)fishsoup.net)
- rpm2flatpak: add a --flatpak-common option (otaylor(a)fishsoup.net)
* Wed Jan 16 2019 Nils Philippsen <nils(a)redhat.com> 0.4.4-1
- Update version metadata for release 0.4.4 (nils(a)redhat.com)
- access default-architecture via template expansion (nils(a)redhat.com)
- log and re-raise unhandled exceptions (nils(a)redhat.com)
- dataset: cope with dashes in release name (nils(a)redhat.com)
--------------------------------------------------------------------------------
================================================================================
fedora-messaging-1.2.0-1.fc29 (FEDORA-2019-a6ad42bbb2)
Set of tools for using Fedora's messaging infrastructure
--------------------------------------------------------------------------------
Update Information:
Update to v1.2.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Jeremy Cline <jeremy(a)jcline.org> - 1.2.0-1
- Update to v1.2.0
--------------------------------------------------------------------------------
================================================================================
fedora-toolbox-0.0.4-1.fc29 (FEDORA-2019-1def4b0b1b)
Toolbox containers & images for hacking on OSTree-based Fedoras
--------------------------------------------------------------------------------
Update Information:
* Avoid spooky root-like behaviour for non-root interactive shells * Give access
to the FUSE kernel module * Improve the readability of the debug output * Set up
$HOME and /home to match the host * Try to enter the same directory inside the
toolbox
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Debarshi Ray <rishi(a)fedoraproject.org> - 0.0.4-1
- Update to 0.0.4
--------------------------------------------------------------------------------
================================================================================
gcr-3.28.1-1.fc29 (FEDORA-2019-057ba29a5a)
A library for bits of crypto UI and parsing
--------------------------------------------------------------------------------
Update Information:
gcr 3.28.1 release. - system-prompter: Fix use of g_hash_table_lookup_extended
- Updated translations
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Kalev Lember <klember(a)redhat.com> - 3.28.1-1
- Update to 3.28.1
* Fri Jan 4 2019 Kalev Lember <klember(a)redhat.com> - 3.28.0-3
- Backport a patch to fix gnome-shell crashes with glib 2.59
- Use make_build and make_install macros
--------------------------------------------------------------------------------
================================================================================
geoipupdate-3.1.1-2.fc29 (FEDORA-2019-e0c7e605e8)
Update GeoIP2 and GeoIP Legacy binary databases from MaxMind
--------------------------------------------------------------------------------
Update Information:
This update drops support for the free legacy GeoIP databases, which are no
longer being distributed by MaxMind. The geoipupdate-cron6 package is now
obsolete (and not built) as the files it attempts to download are no longer
available. The default configuration is now to download the free GeoIP2
databases, which are supported by libmaxminddb.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Paul Howarth <paul(a)city-fan.org> - 3.1.1-2
- Don't try to update the free legacy GeoIP databases as they are no longer
distributed by upstream
- Drop the cron6 sub-package as the files it tries to download are no longer
distributed by upstream
--------------------------------------------------------------------------------
================================================================================
gmediarender-0-0.10.20190121gitbb7ce8e.fc29 (FEDORA-2019-9f7f78aaf0)
Resource efficient UPnP/DLNA renderer
--------------------------------------------------------------------------------
Update Information:
Temporary switch to a compatible upstream for libupnp-1.8.* support
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1604136 - gmediarender: FTBFS in Fedora rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1604136
--------------------------------------------------------------------------------
================================================================================
gnome-documents-3.30.1-1.fc29 (FEDORA-2019-43f78641b6)
A document manager application for GNOME
--------------------------------------------------------------------------------
Update Information:
gnome-documents 3.30.1 release. - allow libgdprivate-1.0.so to find libgd -
search: be more careful when constructing a GFile - Update Basque translation -
Update Esperanto translation - flatpak: Tell Tracker not to use a media
extractor - build: Update to latest libgd - flatpak: Build liboauth against NSS
- Update dependencies of flatpak to use meson - build: Ensure that the Git
submodules are kept updated - build: Remove unused variable
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Kalev Lember <klember(a)redhat.com> - 3.30.1-1
- Update to 3.30.1
--------------------------------------------------------------------------------
================================================================================
golang-rsc-pdf-0.1.1-1.fc29 (FEDORA-2019-5e660ab14a)
PDF reader implemented in Go
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1654881 - Review Request: golang-rsc-pdf - PDF Reader for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1654881
--------------------------------------------------------------------------------
================================================================================
gsoap-2.8.60-5.fc29 (FEDORA-2019-126fe4d33b)
Generator Tools for Coding SOAP/XML Web Services in C and C++
--------------------------------------------------------------------------------
Update Information:
This update addresses an advisory published by upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 18 2019 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 2.8.60-5
- Apply fix for advisory regarding abort with cookies enabled
- Adjust gsoap-size-aname.patch to corresponf to upstream's fix
--------------------------------------------------------------------------------
================================================================================
ibus-typing-booster-2.5.0-1.fc29 (FEDORA-2019-093897a5d4)
A completion input method
--------------------------------------------------------------------------------
Update Information:
Update to 2.5.0: Adds speech recognition feature, See:
http://mike-
fabian.github.io/ibus-typing-booster/documentation.html#speech-recognition
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 16 2019 Mike FABIAN <mfabian(a)redhat.com> - 2.5.0-1
- Update to 2.5.0
- Update translations from zanata (de, ja, uk updated)
- Add a property menu for the highest priority dictonary
- Add a missing _update_preedit()
- When lookup is enabled by tab but the lookup table is empty,
the first cancel should clear the input
- Reset self.is_lookup_table_enabled_by_tab and
self.is_lookup_table_enabled_by_min_char_complete when input is cleared
- Get suggestions from hunspell dictionaries only for input
which does not contain spaces
- Don���t reinitialize the dictionaries if only the order of the dictionaries has changed
- Add key bindings to change the priority of dictionaries
- Speech recognition input using Google speech-to-text
- Change the default input methods for as_IN, kn_IN, and ta_IN
- Make ur-phonetic the default input method for ur_IN and add en_GB dictionary to default
- Update emoji annotations from CLDR
- Add Recommends: python3-pyaudio (For voice recognition)
--------------------------------------------------------------------------------
================================================================================
ipe-7.2.9-1.fc29 (FEDORA-2019-cc11b340c8)
Drawing editor for creating figures in PDF or PostScript formats
--------------------------------------------------------------------------------
Update Information:
update to 7.2.9
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 7.2.9-1
- Update to 7.2.9
--------------------------------------------------------------------------------
================================================================================
libinput-1.12.6-1.fc29 (FEDORA-2019-d9657fce37)
Input device library
--------------------------------------------------------------------------------
Update Information:
libinput 1.12.6, fixes a button issue with the Contour Roller Mouse and a
keyboard issue with the Acer Spin 5 when in tablet mode.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Peter Hutterer <peter.hutterer(a)redhat.com> 1.12.6-1
- libinput 1.12.6
--------------------------------------------------------------------------------
================================================================================
libselinux-2.8-6.fc29 (FEDORA-2019-16fd3acb03)
SELinux library and simple utilities
--------------------------------------------------------------------------------
Update Information:
This update fixes also the following upstream issues: *
https://github.com/SELinuxProject/selinux/issues/123 *
https://github.com/SELinuxProject/selinux/issues/109 *
https://github.com/SELinuxProject/selinux/issues/121 *
https://github.com/SELinuxProject/selinux/issues/81 And contains this Fedora PR
https://src.fedoraproject.org/rpms/policycoreutils/pull-request/9
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-6
- selinux_restorecon: Skip customized files also without -v
- Do not dereference symlink with statfs in selinux_restorecon
* Tue Nov 13 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-5
- Fix RESOURCE_LEAK coverity scan defects
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1013774 - chcat does not quote its arguments properly
https://bugzilla.redhat.com/show_bug.cgi?id=1013774
[ 2 ] Bug #1558861 - AttributeError: 'NoneType' object has no attribute
'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1558861
[ 3 ] Bug #1625158 - [abrt] policycoreutils-devel: tab_change():
gui.py:1345:tab_change:AttributeError: 'SELinuxGui' object has no attribute
'mislabeled_files'
https://bugzilla.redhat.com/show_bug.cgi?id=1625158
[ 4 ] Bug #1665662 - dnf update: AttributeError: 'NoneType' object has no
attribute 'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1665662
[ 5 ] Bug #1312261 - semanage generates ROLE_REMOVE events with invalid new-range=s0-s0
https://bugzilla.redhat.com/show_bug.cgi?id=1312261
--------------------------------------------------------------------------------
================================================================================
libsemanage-2.8-8.fc29 (FEDORA-2019-16fd3acb03)
SELinux binary policy manipulation library
--------------------------------------------------------------------------------
Update Information:
This update fixes also the following upstream issues: *
https://github.com/SELinuxProject/selinux/issues/123 *
https://github.com/SELinuxProject/selinux/issues/109 *
https://github.com/SELinuxProject/selinux/issues/121 *
https://github.com/SELinuxProject/selinux/issues/81 And contains this Fedora PR
https://src.fedoraproject.org/rpms/policycoreutils/pull-request/9
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-8
- Always set errno to 0 before calling getpwent()
- Set selinux policy root around calls to selinux_boolean_sub
* Mon Dec 10 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-7
- genhomedircon - improve handling large groups
* Tue Nov 13 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-6
- Fix RESOURCE_LEAK and USE_AFTER_FREE coverity scan defects
* Mon Sep 17 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-5
- Include user name in ROLE_REMOVE audit events
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1013774 - chcat does not quote its arguments properly
https://bugzilla.redhat.com/show_bug.cgi?id=1013774
[ 2 ] Bug #1558861 - AttributeError: 'NoneType' object has no attribute
'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1558861
[ 3 ] Bug #1625158 - [abrt] policycoreutils-devel: tab_change():
gui.py:1345:tab_change:AttributeError: 'SELinuxGui' object has no attribute
'mislabeled_files'
https://bugzilla.redhat.com/show_bug.cgi?id=1625158
[ 4 ] Bug #1665662 - dnf update: AttributeError: 'NoneType' object has no
attribute 'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1665662
[ 5 ] Bug #1312261 - semanage generates ROLE_REMOVE events with invalid new-range=s0-s0
https://bugzilla.redhat.com/show_bug.cgi?id=1312261
--------------------------------------------------------------------------------
================================================================================
libsepol-2.8-3.fc29 (FEDORA-2019-16fd3acb03)
SELinux binary policy manipulation library
--------------------------------------------------------------------------------
Update Information:
This update fixes also the following upstream issues: *
https://github.com/SELinuxProject/selinux/issues/123 *
https://github.com/SELinuxProject/selinux/issues/109 *
https://github.com/SELinuxProject/selinux/issues/121 *
https://github.com/SELinuxProject/selinux/issues/81 And contains this Fedora PR
https://src.fedoraproject.org/rpms/policycoreutils/pull-request/9
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 13 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-3
- Fix RESOURCE_LEAK coverity scan defects
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1013774 - chcat does not quote its arguments properly
https://bugzilla.redhat.com/show_bug.cgi?id=1013774
[ 2 ] Bug #1558861 - AttributeError: 'NoneType' object has no attribute
'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1558861
[ 3 ] Bug #1625158 - [abrt] policycoreutils-devel: tab_change():
gui.py:1345:tab_change:AttributeError: 'SELinuxGui' object has no attribute
'mislabeled_files'
https://bugzilla.redhat.com/show_bug.cgi?id=1625158
[ 4 ] Bug #1665662 - dnf update: AttributeError: 'NoneType' object has no
attribute 'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1665662
[ 5 ] Bug #1312261 - semanage generates ROLE_REMOVE events with invalid new-range=s0-s0
https://bugzilla.redhat.com/show_bug.cgi?id=1312261
--------------------------------------------------------------------------------
================================================================================
libsolv-0.7.2-2.fc29 (FEDORA-2019-7eace99b9b)
Package dependency solver
--------------------------------------------------------------------------------
Update Information:
** LIBSOLV ** - backport patch to not install i686 packages on x86_64 system if
it is not directly requested (
https://github.com/openSUSE/libsolv/issues/292)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2019 Jaroslav Mracek <jmracek(a)redhat.com> - 0.7.2-2
- Backport Do-not-disable-infarch-rules-when-they-dont-conflict-with-the-job
--------------------------------------------------------------------------------
================================================================================
libtpms-0.6.1-0.20190121git9dc915572b.fc29 (FEDORA-2019-a295f0bec5)
Library providing Trusted Platform Module (TPM) functionality
--------------------------------------------------------------------------------
Update Information:
Libtpms was updated to rev. 150 of TPM 2.0 code
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Stefan Berger <stefanb(a)linux.ibm.com> -
0.6.1-0.20190121git9dc915572b
- Libtpms was updated to rev. 150 of TPM 2.0 code
- following branch stable-0.6.0
--------------------------------------------------------------------------------
================================================================================
libvirt-dbus-1.3.0-1.fc29 (FEDORA-2019-d1233266e2)
libvirt D-Bus API binding
--------------------------------------------------------------------------------
Update Information:
Update to 1.3.0 release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Pavel Hrdina <phrdina(a)redhat.com> - 1.3.0-1
- Update to 1.3.0 release
--------------------------------------------------------------------------------
================================================================================
libxcrypt-4.4.2-6.fc29 (FEDORA-2019-c3348f8b36)
Extended crypt library for descrypt, md5crypt, bcrypt, and others
--------------------------------------------------------------------------------
Update Information:
- Add upstream patch to add proper C++-guards in `xcrypt.h`.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Bj��rn Esser <besser82(a)fedoraproject.org> - 4.4.2-6
- Add upstream patch to add proper C++-guards in <xcrypt.h>
* Mon Jan 14 2019 Bj��rn Esser <besser82(a)fedoraproject.org> - 4.4.2-5
- Build the compat package with glibc hashing methods only
- Add an option to disable the compat-package for future use
* Mon Jan 14 2019 Bj��rn Esser <besser82(a)fedoraproject.org> - 4.4.2-4
- Bump SO-name for Fedora >= 30 and enable compat package (#1666033)
- Add distribution README file
- Update description of the compat package
- Conditionally remove non-built hashing methods from description
--------------------------------------------------------------------------------
================================================================================
llvm-7.0.1-2.fc29 (FEDORA-2019-c790d75439)
The Low Level Virtual Machine
--------------------------------------------------------------------------------
Update Information:
New versions of Rust and related tools -- see the release notes for
[
1.32.0](https://blog.rust-lang.org/2019/01/17/Rust-1.32.0.html).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Josh Stone <jistone(a)redhat.com> - 7.0.1-2
- Fix discriminators in metadata, rhbz#1668033
--------------------------------------------------------------------------------
================================================================================
mingw-python-qt5-5.11.3-2.fc29 (FEDORA-2019-3c45bd2cc3)
MinGW Windows PyQt5
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-2
- Rebuild for qt5-5.11.3
* Thu Oct 4 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Mon Sep 24 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-5
- Bump qt_ver
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-4
- Rebuild for qt5-5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qt3d-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - Qt3d component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtactiveqt-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtActiveQt component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sat Sep 22 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtbase-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtBase component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Fri Sep 21 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
* Fri Aug 24 2018 Richard W.M. Jones <rjones(a)redhat.com> - 5.11.1-6
- Rebuild for new mingw-openssl.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtcharts-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtCharts component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtdeclarative-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtDeclarative component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sat Sep 22 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtgraphicaleffects-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtGraphicalEffects component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtimageformats-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtImageFormats component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sat Sep 22 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtlocation-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtLocation component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtmultimedia-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtMultimedia component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtquickcontrols-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtQuickControls component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtscript-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtScript component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sat Sep 22 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtsensors-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtSensors component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtserialport-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - Qt Serial Port component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sat Sep 22 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtsvg-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtSvg component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sat Sep 22 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qttools-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtTools component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qttranslations-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtTranslations component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sat Sep 22 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtwebkit-5.9.4-0.8.gitbd0657f.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtWebKit component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.9.4-0.8.gitbd0657f
- Rebuild for mingw-qt5-5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.9.4-0.7.gitbd0657f
- Rebuild for mingw-qt5-5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtwebsockets-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtWebsockets component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtwinextras-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtWinExtras component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sun Sep 23 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-qt5-qtxmlpatterns-5.11.3-1.fc29 (FEDORA-2019-3c45bd2cc3)
Qt5 for Windows - QtXmlPatterns component
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2019 Sandro Mani <manisandro(a)gmail.com> - 5.11.3-1
- Update to 5.11.3
* Sat Sep 22 2018 Sandro Mani <manisandro(a)gmail.com> - 5.11.2-1
- Update to 5.11.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
mingw-sip-4.19.13-2.fc29 (FEDORA-2019-3c45bd2cc3)
MinGW Windows SIP
--------------------------------------------------------------------------------
Update Information:
Update to mingw-qt5-*-5.11.3, see
http://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-u...
for details. Update to mingw-sip-4.19.13, see
https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for details.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Sandro Mani <manisandro(a)gmail.com> - 4.19.13-2
- Bump
* Thu Oct 4 2018 Sandro Mani <manisandro(a)gmail.com> - 4.19.13-1
- Update to 4.19.13
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1659001 - CVE-2018-15518 CVE-2018-19870 CVE-2018-19873 mingw-qt5-qtbase:
various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1659001
[ 2 ] Bug #1661461 - CVE-2018-19869 mingw-qt5-qtsvg: qt5-qtsvg: Invalid parsing of
malformed url reference resulting in a denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661461
[ 3 ] Bug #1661466 - CVE-2018-19871 mingw-qt5-qtimageformats: qt5-qtimageformats:
QTgaFile CPU exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1661466
--------------------------------------------------------------------------------
================================================================================
ngspice-30-2.fc29 (FEDORA-2019-b71d912484)
A mixed level/signal circuit simulator
--------------------------------------------------------------------------------
Update Information:
This ngspice removes some configure option, especially disables --enable-ndev
option.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 20 2019 Mamoru TASAKA <mtasaka(a)fedoraproject.org> - 30-2
- Remove some obsolete or dangerous configure options by
the request from the upstream (and ref: bug 1666505)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1666505 - libngspice produces a megabyte of unwanted status with % and
backspaces
https://bugzilla.redhat.com/show_bug.cgi?id=1666505
--------------------------------------------------------------------------------
================================================================================
nmstate-0.0.3-3.fc29 (FEDORA-2019-1535a6bc95)
Declarative network manager API
--------------------------------------------------------------------------------
Update Information:
Add missing runtime dependency for nmstatectl.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Gris Ge <fge(a)redhat.com> - 0.0.3-3
- Add missing runtime dependency for nmstatectl.
* Wed Jan 2 2019 Gris Ge <fge(a)redhat.com> - 0.0.3-2
- Add source file PGP verification.
--------------------------------------------------------------------------------
================================================================================
p11-kit-0.23.15-1.fc29 (FEDORA-2019-791dec47d1)
Library for loading and sharing PKCS#11 modules
--------------------------------------------------------------------------------
Update Information:
- Update to upstream 0.23.15 release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Daiki Ueno <dueno(a)redhat.com> - 0.23.15-1
- Update to upstream 0.23.15 release
--------------------------------------------------------------------------------
================================================================================
perl-Alien-Build-1.51-1.fc29 (FEDORA-2019-8d794e622c)
Build external dependencies for use in CPAN
--------------------------------------------------------------------------------
Update Information:
This release corrects an library installation path for cmake-driven builds.
---- This release removes unneeded files from a source archive and iproves
tests. We deliver it only to provide an up-to-date version string.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Petr Pisar <ppisar(a)redhat.com> - 1.51-1
- 1.51 bump
* Fri Jan 18 2019 Petr Pisar <ppisar(a)redhat.com> - 1.50-1
- 1.50 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1667684 - perl-Alien-Build-1.51 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1667684
[ 2 ] Bug #1667380 - Upgrade perl-Alien-Build to 1.50
https://bugzilla.redhat.com/show_bug.cgi?id=1667380
--------------------------------------------------------------------------------
================================================================================
perl-CPAN-Perl-Releases-3.88-1.fc29 (FEDORA-2019-e34a3d9551)
Mapping Perl releases on CPAN to the location of the tarballs
--------------------------------------------------------------------------------
Update Information:
Updated to the latest release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Jitka Plesnikova <jplesnik(a)redhat.com> - 3.88-1
- 3.88 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1667713 - perl-CPAN-Perl-Releases-3.88 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1667713
--------------------------------------------------------------------------------
================================================================================
perl-Inline-Struct-0.25-1.fc29 (FEDORA-2019-042d59731e)
Manipulate C structures directly from Perl
--------------------------------------------------------------------------------
Update Information:
This release fixes handling unsingned types and comments. It also adds support
for volatalite storage class.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Petr Pisar <ppisar(a)redhat.com> - 0.25-1
- 0.25 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1667692 - perl-Inline-Struct-0.25 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1667692
--------------------------------------------------------------------------------
================================================================================
perl-Module-CoreList-5.20190120-1.fc29 (FEDORA-2019-92a0bc9d4d)
What modules are shipped with versions of perl
--------------------------------------------------------------------------------
Update Information:
This release delivers data about Perl 5.29.7.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Petr Pisar <ppisar(a)redhat.com> - 1:5.20190120-1
- 5.20190120 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1667714 - perl-Module-CoreList-5.20190120 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1667714
--------------------------------------------------------------------------------
================================================================================
policycoreutils-2.8-15.fc29 (FEDORA-2019-16fd3acb03)
SELinux policy core utilities
--------------------------------------------------------------------------------
Update Information:
This update fixes also the following upstream issues: *
https://github.com/SELinuxProject/selinux/issues/123 *
https://github.com/SELinuxProject/selinux/issues/109 *
https://github.com/SELinuxProject/selinux/issues/121 *
https://github.com/SELinuxProject/selinux/issues/81 And contains this Fedora PR
https://src.fedoraproject.org/rpms/policycoreutils/pull-request/9
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-15
- setsebool: support use of -P on SELinux-disabled hosts
- sepolicy: initialize mislabeled_files in __init__()
- audit2allow: use local sepolgen-ifgen-attr-helper for tests
- audit2allow: allow using audit2why as non-root user
- audit2allow/sepolgen-ifgen: show errors on stderr
- audit2allow/sepolgen-ifgen: add missing \n to error message
- sepolgen: close /etc/selinux/sepolgen.conf after parsing it
- sepolicy: Make policy files sorting more robust
- semanage: Load a store policy and set the store SELinux policy root
* Thu Dec 20 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-14
- chcat: fix removing categories on users with Fedora default setup
- semanage: Include MCS/MLS range when exporting local customizations
- semanage: Start exporting "ibendport" and "ibpkey" entries
- semanage: do not show "None" levels when using a non-MLS policy
- sepolicy: Add sepolicy.load_store_policy(store)
- semanage: import sepolicy only when it's needed
- semanage: move valid_types initialisations to class constructors
* Mon Dec 10 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-13
- chcat: use check_call instead of getstatusoutput
- Use matchbox-window-manager instead of openbox
- Use ipaddress python module instead of IPy
- semanage: Fix handling of -a/-e/-d/-r options
- semanage: Use standard argparse.error() method
* Mon Nov 12 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-12
- sepolicy,semanage: replace aliases with corresponding type names
- sepolicy-generate: Handle more reserved port types
- Fix RESOURCE_LEAK coverity scan defects
* Tue Oct 16 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-11
- sepolicy: Fix get_real_type_name to handle query failure properly
- sepolicy: search() for dontaudit rules as well
* Tue Oct 2 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-10
- semanage: "semanage user" does not use -s, fix documentation
- semanage: add a missing space in ibendport help
- sepolicy: Update to work with setools-4.2.0
* Fri Sep 14 2018 Petr Lautrbach <plautrba(a)redhat.com> - 2.8-9
- semanage: Stop rejecting aliases in semanage commands
- sepolicy: Stop rejecting aliases in sepolicy commands
- sepolicy: Fix "info" to search aliases as well
- setfiles: Improve description of -d switch
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1013774 - chcat does not quote its arguments properly
https://bugzilla.redhat.com/show_bug.cgi?id=1013774
[ 2 ] Bug #1558861 - AttributeError: 'NoneType' object has no attribute
'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1558861
[ 3 ] Bug #1625158 - [abrt] policycoreutils-devel: tab_change():
gui.py:1345:tab_change:AttributeError: 'SELinuxGui' object has no attribute
'mislabeled_files'
https://bugzilla.redhat.com/show_bug.cgi?id=1625158
[ 4 ] Bug #1665662 - dnf update: AttributeError: 'NoneType' object has no
attribute 'typeattributes'
https://bugzilla.redhat.com/show_bug.cgi?id=1665662
[ 5 ] Bug #1312261 - semanage generates ROLE_REMOVE events with invalid new-range=s0-s0
https://bugzilla.redhat.com/show_bug.cgi?id=1312261
--------------------------------------------------------------------------------
================================================================================
python-coverage-test-runner-1.15-1.fc29 (FEDORA-2019-68127e857c)
Python module for enforcing code coverage completeness
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release; build for python 3
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 20 2019 Michel Alexandre Salim <salimma(a)fedoraproject.org> - 1.15-1
- Update to 1.15 based on PR by Jan Beran <jberan(a)redhat.com>
https://src.fedoraproject.org/rpms/python-coverage-test-runner/pull-reque...
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.11-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1468071 - python-coverage-test-runner-1.15.orig is available
https://bugzilla.redhat.com/show_bug.cgi?id=1468071
[ 2 ] Bug #1605638 - python-coverage-test-runner: FTBFS in Fedora rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1605638
--------------------------------------------------------------------------------
================================================================================
qt5-qtpbfimageformat-1.2-3.fc29 (FEDORA-2019-619980d5e5)
Qt image plugin for displaying Mapbox vector tiles
--------------------------------------------------------------------------------
Update Information:
Rebuilt against updated qt5-qtbase.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Nikola Forr�� <nforro(a)redhat.com> - 1.2-3
- Rebuild against updated qt5-qtbase
--------------------------------------------------------------------------------
================================================================================
rubygem-fake_ftp-0.3.0-1.fc29 (FEDORA-2019-b041a0ffc0)
Creates a fake FTP server for use in testing
--------------------------------------------------------------------------------
Update Information:
Rebase to the latest upstream release 0.3.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 TOmas Hrcka <thrcka(a)redhat.com> - 0.3.0-1
- Update to latest upstream release
--------------------------------------------------------------------------------
================================================================================
rust-1.32.0-1.fc29 (FEDORA-2019-c790d75439)
The Rust Programming Language
--------------------------------------------------------------------------------
Update Information:
New versions of Rust and related tools -- see the release notes for
[
1.32.0](https://blog.rust-lang.org/2019/01/17/Rust-1.32.0.html).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 17 2019 Josh Stone <jistone(a)redhat.com> - 1.32.0-1
- Update to 1.32.0.
--------------------------------------------------------------------------------
================================================================================
shorewall-5.2.2-1.fc29 (FEDORA-2019-4e8deba862)
An iptables front end for firewall configuration
--------------------------------------------------------------------------------
Update Information:
Update to latest minor
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Michele Baldessari <michele(a)acksyn.org> - 5.2.2-1
- New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1657474 - Unescaped left brace in regex is deprecated and will be fatal in
Perl 5.32
https://bugzilla.redhat.com/show_bug.cgi?id=1657474
[ 2 ] Bug #1667456 - shorewall-5.2.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1667456
--------------------------------------------------------------------------------
================================================================================
texmaker-5.0.3-1.fc29 (FEDORA-2019-d933006245)
LaTeX editor
--------------------------------------------------------------------------------
Update Information:
update to 5.0.3
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 4 2019 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 1:5.0.3-11
- Update to 5.0.3
* Thu Dec 13 2018 Rex Dieter <rdieter(a)fedoraproject.org> - 1:5.0.2-11
- rebuild (qt5)
* Tue Nov 13 2018 Caol��n McNamara <caolanm(a)redhat.com> - 1:5.0.2-10
- rebuild for hunspell 1.7.0
--------------------------------------------------------------------------------
================================================================================
winetricks-20181203-2.fc29 (FEDORA-2019-ea2550435b)
Work around common problems in Wine
--------------------------------------------------------------------------------
Update Information:
Update to 20181203 and add conditional dependency on kdialog or zenity,
depending on whether kdialog is installed (zenity is the de facto default, but
kdialog satisfies the dependency as well, if already installed). The logic is
complicated due to the fact that otherwise kdialog would take precedence.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 20 2019 Ernestas Kulik <ekulik(a)redhat.com> - 20181203-2
- Drop old path appdata exclude
- Add bash completions
* Sun Jan 20 2019 Ernestas Kulik <ekulik(a)redhat.com> - 20181203-1
- Update to 20181203
* Sun Jan 20 2019 Ernestas Kulik <ekulik(a)redhat.com> - 20180603-4
- Add dependency on zenity or kdialog for GUI
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1626632 - Package dependencies
https://bugzilla.redhat.com/show_bug.cgi?id=1626632
--------------------------------------------------------------------------------
================================================================================
wireshark-2.6.6-1.fc29 (FEDORA-2019-866b01407a)
Network traffic analyzer
--------------------------------------------------------------------------------
Update Information:
New version 2.6.6. Security fix for CVE-2019-5716, CVE-2019-5717, CVE-2019-5718,
CVE-2019-5719
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 21 2019 Michal Ruprich <mruprich(a)redhat.com> - 1:2.6.5-3
- New version 2.6.6
- Contains fixes for CVE-2019-5716, CVE-2019-5717, CVE-2019-5718, CVE-2019-5719
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1667593 - CVE-2019-5719 wireshark: ISAKMP dissector crash in
epan/dissectors/packet-isakmp.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1667593
[ 2 ] Bug #1667587 - CVE-2019-5718 wireshark: RTSE and other ASN.1 dissectors crash in
epan/charsets.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1667587
[ 3 ] Bug #1667582 - CVE-2019-5717 wireshark: P_MUL dissector crash in
epan/dissectors/packet-p_mul.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1667582
[ 4 ] Bug #1667580 - CVE-2019-5716 wireshark: 6LoWPAN dissector crash in
epan/dissectors/packet-6lowpan.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1667580
--------------------------------------------------------------------------------