The following Fedora 32 Security updates need testing:
Age URL
45
https://bodhi.fedoraproject.org/updates/FEDORA-2020-eb942ee0db libuv-1.39.0-1.fc32
nodejs-12.18.4-1.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2020-9c2f330b5a
arpwatch-2.1a15-48.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2020-ebabb6bf76
blueman-2.1.4-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2020-4f9ee82bc5
community-mysql-8.0.22-1.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2020-d67cc48dce
pngcheck-2.3.0-3.fc32
5
https://bodhi.fedoraproject.org/updates/FEDORA-2020-127d40f1ab
chromium-86.0.4240.111-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2020-4ee7c84cd7
thunderbird-78.4.0-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2020-ded2298c25 xen-4.13.1-8.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2020-58b619cf00
samba-4.12.9-0.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-1f643c272c libntlm-1.6-1.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-95f6a3250a
libtpms-0.7.4-0.20201031git2452a24dab.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-bb91bf9b8e nss-3.58.0-3.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2020-496ab4615a mujs-1.0.9-1.fc32
The following Fedora 32 Critical Path updates have yet to be approved:
Age URL
122
https://bodhi.fedoraproject.org/updates/FEDORA-2020-ebbe0f7b25 cpio-2.13-6.fc32
25
https://bodhi.fedoraproject.org/updates/FEDORA-2020-95b9c09df2
binutils-2.34-6.fc32
18
https://bodhi.fedoraproject.org/updates/FEDORA-2020-a27b8aedcd fedora-repos-32-10
12
https://bodhi.fedoraproject.org/updates/FEDORA-2020-f9ada0f4f8 pcre-8.44-2.fc32
9
https://bodhi.fedoraproject.org/updates/FEDORA-2020-57f9e6e50e koji-1.23.0-1.fc32
7
https://bodhi.fedoraproject.org/updates/FEDORA-2020-62a75b137f
webkit2gtk3-2.30.2-1.fc32
7
https://bodhi.fedoraproject.org/updates/FEDORA-2020-9a96a4b085
nfs-utils-2.5.2-0.fc32
7
https://bodhi.fedoraproject.org/updates/FEDORA-2020-63f76b0bb8
libteam-1.31-2.fc32
7
https://bodhi.fedoraproject.org/updates/FEDORA-2020-082fed0894 pam-1.3.1-27.fc32
6
https://bodhi.fedoraproject.org/updates/FEDORA-2020-efbdd95dca pcre2-10.35-8.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2020-4ee7c84cd7
thunderbird-78.4.0-1.fc32
4
https://bodhi.fedoraproject.org/updates/FEDORA-2020-e38f0e9350
mtools-4.0.25-1.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-e049168198
iputils-20200821-1.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-bb91bf9b8e nss-3.58.0-3.fc32
2
https://bodhi.fedoraproject.org/updates/FEDORA-2020-4458232d79
libbluray-1.2.1-2.fc32
1
https://bodhi.fedoraproject.org/updates/FEDORA-2020-51c03059c6
pipewire-0.3.14-2.fc32
The following builds have been pushed to Fedora 32 updates-testing
R-backports-1.2.0-1.fc32
R-tinytex-0.27-1.fc32
bmake-20201010-1.fc32
cifs-utils-6.11-1.fc32
composer-1.10.17-1.fc32
console-login-helper-messages-0.20.2-1.fc32
corosync-3.0.4-2.fc32
cups-2.3.3-16.fc32
cups-filters-1.28.5-1.fc32
easyrpg-player-0.6.2.3-1.fc32
flmsg-4.0.17-1.fc32
fwupd-1.5.1-1.fc32
gamemode-1.6-1.fc32
gnome-shell-extension-gsconnect-44-1.fc32
golang-github-klauspost-compress-1.11.2-1.fc32
java-latest-openjdk-15.0.1.9-1.rolling.fc32
libstoragemgmt-1.8.6-1.fc32
lua-rpm-macros-1-2.fc32
mscore-3.5.2-2.fc32
netdata-1.26.0-2.fc32
opensm-3.3.23-3.fc32
osbuild-23-1.fc32
pacemaker-2.0.5-0.5.rc2.fc32
paraview-5.8.1-4.fc32
php-alcaeus-mongo-php-adapter-1.1.13-1.fc32
php-brick-math-0.9.1-1.fc32
php-egulias-email-validator2-2.1.23-1.fc32
php-phpspec-6.3.0-1.fc32
php-ramsey-collection-1.1.1-1.fc32
php-symfony-contracts2-2.3.1-1.fc32
python-colcon-ed-0.1.2-1.fc32
python-fedora-1.1.0-1.fc32
python-identify-1.5.7-1.fc32
python-kiwisolver-1.3.1-1.fc32
python-netpyne-0.9.7-2.20201009git548ffc6.fc32
python-vcstool-0.2.15-1.fc32
pytz-2020.4-1.fc32
qpdf-10.0.3-1.fc32
rdma-core-32.0-1.fc32
redhat-rpm-config-150-3.fc32
rr-5.4.0-1.fc32
ufdbGuard-1.35.3-1.fc32
vim-8.2.1941-1.fc32
wordpress-5.5.3-1.fc32
Details about builds:
================================================================================
R-backports-1.2.0-1.fc32 (FEDORA-2020-637e33474c)
Reimplementations of Functions Introduced Since R-3.0.0
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.2.0-1
- Update to latest version (#1893872)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1893872 - R-backports-1.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1893872
--------------------------------------------------------------------------------
================================================================================
R-tinytex-0.27-1.fc32 (FEDORA-2020-2970ec2fb6)
Helper Functions to Install and Maintain TeX Live, and Compile LaTeX Documents
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 1 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 0.27-1
- Update to latest version (#1893509)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1893509 - R-tinytex-0.27 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1893509
--------------------------------------------------------------------------------
================================================================================
bmake-20201010-1.fc32 (FEDORA-2020-8a1bba8ab2)
The NetBSD make(1) tool
--------------------------------------------------------------------------------
Update Information:
New package update, mostly unit test epanded
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 20 2020 Petr Men����k <pemensik(a)redhat.com> - 20201010-1
- Update to 20201010 (#1876115)
* Sat Aug 1 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
20200710-3
- Second attempt - Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
20200710-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Thu Jul 16 2020 Petr Men����k <pemensik(a)redhat.com> - 20200710-1
- Update to 20200710
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1876115 - bmake-20201010 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1876115
--------------------------------------------------------------------------------
================================================================================
cifs-utils-6.11-1.fc32 (FEDORA-2020-cfdd73f1b4)
Utilities for mounting and managing CIFS mounts
--------------------------------------------------------------------------------
Update Information:
New upstream release: - fixes CVE-2020-14342 cifs-utils: shell command
injection in mount.cifs - adds `smb2-quota` tool - adds `mount.smb3` as a
symlink to `mount.cifs`
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Alexander Bokovoy <abokovoy(a)redhat.com> - 6.11-1
- Update to v6.11 release
- Resolves: rhbz#1876400 - CVE-2020-14342 - cifs-utils: shell command injection
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1784578 - cifs-utils-6.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1784578
[ 2 ] Bug #1876400 - CVE-2020-14342 cifs-utils: shell command injection in mount.cifs
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1876400
--------------------------------------------------------------------------------
================================================================================
composer-1.10.17-1.fc32 (FEDORA-2020-d051b4ab2e)
Dependency Manager for PHP
--------------------------------------------------------------------------------
Update Information:
**Version 1.10.17** - 2020-10-30 * Fixed Bitbucket API authentication issue *
Fixed parsing of Composer 2 lock files breaking in some rare conditions ----
**Version 1.10.16** - 2020-10-24 * Added warning to `validate` command for
cases where packages provide/replace a package that they also require * Fixed
JSON schema validation issue with PHPStorm * Fixed symlink handling in `archive`
command
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Remi Collet <remi(a)remirepo.net> - 1.10.17-1
- update to 1.10.17
* Sun Oct 25 2020 Remi Collet <remi(a)remirepo.net> - 1.10.16-1
- update to 1.10.16
--------------------------------------------------------------------------------
================================================================================
console-login-helper-messages-0.20.2-1.fc32 (FEDORA-2020-f2a1dc11f6)
Combines motd, issue, profile features to show system information to the user before/on
login
--------------------------------------------------------------------------------
Update Information:
Suppress systemd error message if systemd not running.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 30 2020 Kelvin Fan <kfan(a)redhat.com> - 0.20.2-1
- Update to 0.20.2
--------------------------------------------------------------------------------
================================================================================
corosync-3.0.4-2.fc32 (FEDORA-2020-f053fe3848)
The Corosync Cluster Engine and Application Programming Interfaces
--------------------------------------------------------------------------------
Update Information:
Add isa version of corosync-devel
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Jan Friesse <jfriesse(a)redhat.com> - 3.0.4-2
- Add isa version of corosync-devel
- Add release to corosync-devel version to match autogenerated
corosynclib-devel provides
--------------------------------------------------------------------------------
================================================================================
cups-2.3.3-16.fc32 (FEDORA-2020-6a15abda69)
CUPS printing system
--------------------------------------------------------------------------------
Update Information:
Various backports from upstream
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.3.3-16
- backport cups-ipptool-mdns-uri.patch from upstream
- backport cups-prioritize-print-color-mode.patch from upstream
* Thu Sep 3 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.3.3-14
- revert previous commit - resolved doesn't work with avahi due missing link
in NetworkManager
* Mon Aug 31 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.3.3-14
- MDNS resolving should be done by systemd-resolved now
* Mon Aug 10 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 1:2.3.3-14
- CUPS exception isn't in spdx database, use only ASL 2.0
--------------------------------------------------------------------------------
================================================================================
cups-filters-1.28.5-1.fc32 (FEDORA-2020-d2cae2fd30)
OpenPrinting CUPS filters and backends
--------------------------------------------------------------------------------
Update Information:
1.28.5, 1881365 - cups-browsed crashing ---- 1891720 - foomatic-rip files up
/var/spool/tmp with temporary files
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 1.28.5-1
- 1.28.5, 1881365 - cups-browsed crashing
* Tue Sep 29 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 1.28.2-3
- 1891720 - foomatic-rip files up /var/spool/tmp with temporary files
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1881365 - cups-browsed crashing
https://bugzilla.redhat.com/show_bug.cgi?id=1881365
[ 2 ] Bug #1891720 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1891720
--------------------------------------------------------------------------------
================================================================================
easyrpg-player-0.6.2.3-1.fc32 (FEDORA-2020-cf12ade476)
Game interpreter for RPG Maker 2000/2003 and EasyRPG games
--------------------------------------------------------------------------------
Update Information:
Update to v0.6.2.3
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Artur Frenszek-Iwicki <fedora(a)svgames.pl> - 0.6.2.3-1
- Update to v0.6.2.3
- Drop Patch2 (build static library - now default)
- Drop Patch3 (Freetype & Harfbuzz circular dependency - accepted upstream)
- Drop Patch4 (man page install issues - accepted upstream)
- Cherry-pick an upstream PR for installing the bash-completion file
--------------------------------------------------------------------------------
================================================================================
flmsg-4.0.17-1.fc32 (FEDORA-2020-4809241d19)
Fast Light Message Amateur Radio Forms Manager
--------------------------------------------------------------------------------
Update Information:
Version 4.0.17 * Maintenance release Seg fault on Send bug * test for
empty string in arq log Memory leaks * fix memory leaks in following
source files - csv.cxx - custom.cxx - flmsg.cxx -
transfer.cxx - parse_xml.cxx - status.cxx Bug fixes courtesy of
Richard Shaw, Fedora maintainer.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 7 2020 Richard Shaw <hobbes1069(a)gmail.com> - 4.0.17-1
- Update to 4.0.17.
* Tue Aug 18 2020 Jeff Law <law(a)redhat.com> - 4.0.16-4
- Force C++14 as this code is not C++17 ready
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.0.16-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1877155 - flmsg-4.0.17 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1877155
--------------------------------------------------------------------------------
================================================================================
fwupd-1.5.1-1.fc32 (FEDORA-2020-4cda00ea06)
Firmware update daemon
--------------------------------------------------------------------------------
Update Information:
- New upstream release - Delete unused EFI variables when deploying firmware -
Fix probe warning for the Logitech Unifying device - Include the amount of NVRAM
size in use in the LVFS failure report - Make bcm57xx hotplug more reliable -
Recognize authorized thunderbolt value of 2 - Remove the duplicate parent-child
data in FwupdDevice and FuDevice - Show a less scary fwupdate output for devices
without info - Use a different Device ID for the OptionROM devices - Use UDisks
to find out if swap devices are encrypted ---- - New upstream release - Add
async versions of the library for GUI tools - Add commands for interacting with
the ESP to fwupdtool - Add plugin for Goodix fingerprint sensors - Add plugin
that can update the BCM5719 network adapter - Add plugin to update Elan
Touchpads using HID - Add support for ChromeOS Quiche and Gingerbread - Add
support for the Host Security ID - Add support for ThunderBolt retimers - Add
switch-branch command to fwupdtool and fwupdmgr - Allow blocking specific
firmware releases by checksum - Allow constructing a firmware with multiple
images - Allow firmware to require specific features from front-end clients -
Fix setting BootNext correctly when multiple updates are scheduled - Fix the
topology of the audio device on the Lenovo TR dock - Include the HSI results and
attributes in the uploaded report - Make return code different for get-updates
with no updates - Make specific authorizations also imply others - Parse the HEX
version before comparing for equality - Prevent dell-dock updates to occur via
synaptics-mst plugin - Record the UEFI failure in more cases - Support loading
DMI data from DT systems - Support LVFS::UpdateImage for GUI clients - Use
pkttyagent to request user passwords if running without GUI
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 1 2020 Richard Hughes <richard(a)hughsie.com> 1.5.2-1
- New upstream release
- Delete unused EFI variables when deploying firmware
- Fix probe warning for the Logitech Unifying device
- Include the amount of NVRAM size in use in the LVFS failure report
- Make bcm57xx hotplug more reliable
- Recognize authorized thunderbolt value of 2
- Remove the duplicate parent-child data in FwupdDevice and FuDevice
- Show a less scary fwupdate output for devices without info
- Use a different Device ID for the OptionROM devices
- Use UDisks to find out if swap devices are encrypted
* Mon Oct 26 2020 Richard Hughes <richard(a)hughsie.com> 1.5.0-1
- New upstream release
- Add async versions of the library for GUI tools
- Add commands for interacting with the ESP to fwupdtool
- Add plugin for Goodix fingerprint sensors
- Add plugin that can update the BCM5719 network adapter
- Add plugin to update Elan Touchpads using HID
- Add support for ChromeOS Quiche and Gingerbread
- Add support for the Host Security ID
- Add support for ThunderBolt retimers
- Add switch-branch command to fwupdtool and fwupdmgr
- Allow blocking specific firmware releases by checksum
- Allow constructing a firmware with multiple images
- Allow firmware to require specific features from front-end clients
- Fix setting BootNext correctly when multiple updates are scheduled
- Fix the topology of the audio device on the Lenovo TR dock
- Include the HSI results and attributes in the uploaded report
- Make return code different for get-updates with no updates
- Make specific authorizations also imply others
- Parse the HEX version before comparing for equality
- Prevent dell-dock updates to occur via synaptics-mst plugin
- Record the UEFI failure in more cases
- Support loading DMI data from DT systems
- Support LVFS::UpdateImage for GUI clients
- Use pkttyagent to request user passwords if running without GUI
* Mon Sep 7 2020 Richard Hughes <richard(a)hughsie.com> 1.4.6-1
- New upstream release
- Add a re-implementation of the rhboot dbxtool
- Add missing Synaptics Prometheus GUIDs for ConfigId
- Add support for the LabTop Mk IV
- Add support for the Realtek RTD21XX I��C protocol
- Allow blocking specific firmware releases by checksum
- Allow DFU device to attach to runtime without a bus reset
- Allow plugins to set remove delay only on the child
- Cancel the file monitor before disposal to avoid a potential deadlock
- Correctly label the vebdor for more NVMe devices
- Specify a remove delay for Poly USB Cameras
- Support download of large DFU firmware
- Support polling the status from device in dfuManifest state
- Use newer libxmlb features to properly display more AppStream markup
--------------------------------------------------------------------------------
================================================================================
gamemode-1.6-1.fc32 (FEDORA-2020-7dfad912e2)
Optimize system performance for games on demand
--------------------------------------------------------------------------------
Update Information:
New upstream release (1.6)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 15 2020 Christian Birk <mail(a)birkc.de> - 1.6-1
- New upstream release (1.6)
- Add new binary gamemode-simulate-game
- Add new manpages for gamemoderun and gamemode-simulate-game
- Add new metadata and a inital config file
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-gsconnect-44-1.fc32 (FEDORA-2020-e8547394e9)
KDE Connect implementation for GNOME Shell
--------------------------------------------------------------------------------
Update Information:
* Fix pairing notification ([#982](https://github.com/andyholmes/gnome-shell-
extension-gsconnect/issues/982), reported by
[
truckerboy](https://github.com/truckerboy)) * Fix --share-uri CLI option
([#995](https://github.com/andyholmes/gnome-shell-extension-
gsconnect/issues/995), reported by
[
vodkawithcoke](https://github.com/vodkawithcoke)) * Fix contacts not appearing
in Messaging window ([#1000](https://github.com/andyholmes/gnome-shell-
extension-gsconnect/issues/1000) by [
sigmaSd](https://github.com/sigmaSd))
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 44-1
- Update to 44
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1892177 - gnome-shell-extension-gsconnect-44 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1892177
--------------------------------------------------------------------------------
================================================================================
golang-github-klauspost-compress-1.11.2-1.fc32 (FEDORA-2020-58802ac33a)
Optimized compression packages
--------------------------------------------------------------------------------
Update Information:
* s2: Fix `EncodeBetter` out of bounds read. (#291)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Dominik Mierzejewski <rpm(a)greysector.net> - 1.11.2-1
- update to 1.11.2 (#1892279)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1892279 - golang-github-klauspost-compress-1.11.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1892279
--------------------------------------------------------------------------------
================================================================================
java-latest-openjdk-15.0.1.9-1.rolling.fc32 (FEDORA-2020-d1b8d3f94a)
OpenJDK Runtime Environment 15
--------------------------------------------------------------------------------
Update Information:
java-latest-openjdk October CPU update
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 25 2020 Petra Alice Mikova <pmikova(a)redhat.com> - 1:15.0.1.9-1.rolling
- updated to October CPU 2020 sources
* Thu Oct 22 2020 Severin Gehwolf <sgehwolf(a)redhat.com> - 1:15.0.0.36-4.rolling
- Fix directory ownership of -static-libs sub-package.
* Fri Oct 9 2020 Jiri Vanek <jvanek(a)redhat.com> - 1:15.0.0.36-3.rolling
- Build static-libs-image and add resulting files via -static-libs sub-package.
- Disable stripping of debug symbols for static libraries part of the -static-libs
sub-package.
- JDK-8245832 increases the set of static libraries, so try and include them all with a
wildcard.
- Update static-libs packaging to new layout
* Mon Sep 21 2020 Petra Alice Mikova <pmikova(a)redhat.com> - 1:15.0.0.36-2.rolling
- Add support for fastdebug builds on 64 bit architectures
--------------------------------------------------------------------------------
================================================================================
libstoragemgmt-1.8.6-1.fc32 (FEDORA-2020-b61484b8a5)
Storage array management library
--------------------------------------------------------------------------------
Update Information:
Update to new upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Tony Asleson <tasleson(a)redhat.com> - 1.8.6-1
- Upgrade to 1.8.6
* Thu Oct 1 2020 Tony Asleson <tasleson(a)redhat.com> - 1.8.5-3
- Remove pywbem version check as its not needed and breaks
now that epoch is used in it.
* Fri Sep 4 2020 Tony Asleson <tasleson(a)redhat.com> - 1.8.5-2
- Fix test compile error for i386
* Tue Aug 11 2020 Tony Asleson <tasleson(a)redhat.com> - 1.8.5-1
- Upgrade to 1.8.5
- Fixes:
https://bugzilla.redhat.com/show_bug.cgi?id=1864052
* Sat Aug 1 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8.4-5
- Second attempt - Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8.4-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Mon Jul 13 2020 Tom Stellard <tstellar(a)redhat.com> - 1.8.4-3
- Use make macros
-
https://fedoraproject.org/wiki/Changes/UseMakeBuildInstallMacro
* Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 1.8.4-2
- Rebuilt for Python 3.9
--------------------------------------------------------------------------------
================================================================================
lua-rpm-macros-1-2.fc32 (FEDORA-2020-0333483397)
The common Lua RPM macros
--------------------------------------------------------------------------------
Update Information:
redhat-rpm-config now pulls in lua-srpm-macros, meaning Lua specs for Fedora >=
32 and EPEL >= 7 can be refactored to use standard macros rather than hardcoding
what versions of Lua they support
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
mscore-3.5.2-2.fc32 (FEDORA-2020-f8e83fa466)
Music Composition & Notation Software
--------------------------------------------------------------------------------
Update Information:
The previous build was inadvertently set as a development version. This build
is from the same sources but has been marked as a release build.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Jerry James <loganjerry(a)gmail.com> - 3.5.2-2
- Ensure a release build, not a dev build
--------------------------------------------------------------------------------
================================================================================
netdata-1.26.0-2.fc32 (FEDORA-2020-1278b0d297)
Real-time performance monitoring
--------------------------------------------------------------------------------
Update Information:
Fix wrong drop for el6 support
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Didier Fabert <didier.fabert(a)gmail.com> 1.26.0-2
- Fix wrong drop for el6 support
- Fix tmpfiles (from /var/run to /run)
- Minors changes in netdata.conf
* Sun Nov 1 2020 Didier Fabert <didier.fabert(a)gmail.com> 1.26.0-1
- Update from upstream
* Tue Sep 22 2020 Didier Fabert <didier.fabert(a)gmail.com> 1.25.0-1
- Update from upstream
- Drop el6 support
* Thu Aug 13 2020 Didier Fabert <didier.fabert(a)gmail.com> 1.24.0-1
- Update from upstream
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.23.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1858056 - netdata-1.26.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1858056
--------------------------------------------------------------------------------
================================================================================
opensm-3.3.23-3.fc32 (FEDORA-2020-fdc2c801c3)
OpenIB InfiniBand Subnet Manager and management utilities
--------------------------------------------------------------------------------
Update Information:
Update systemd service file
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 29 2020 Honggang Li <honli(a)redhat.com> -3.3.23-3
- Update systemd service file
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.3.23-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
osbuild-23-1.fc32 (FEDORA-2020-ce92fb717c)
A build system for OS images
--------------------------------------------------------------------------------
Update Information:
Upstream release 23
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 23 2020 Christian Kellner <ckellner(a)redhat.com> - 23-1
- Upstream release 23
- Do not mangle shebangs for assemblers, runners & stages.
--------------------------------------------------------------------------------
================================================================================
pacemaker-2.0.5-0.5.rc2.fc32 (FEDORA-2020-3ddc2644dd)
Scalable High-Availability cluster resource manager
--------------------------------------------------------------------------------
Update Information:
- Update for new upstream tarball for release candidate: Pacemaker-2.0.5-rc2,
includes fix for CVE-2020-25654 for full details, see included ChangeLog file
or
https://github.com/ClusterLabs/pacemaker/releases/tag/Pacemaker-2.0.5-rc2 -
Remove dependencies to nagios-plugins from metadata-package - some sync with
structure of upstream spec-file - removed some legacy conditionals - added with-
cibsecrets - enable some basic gating-tests - remove building documentation
using publican from ELN - rename doc-dir for ELN
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 1 2020 Klaus Wenninger <kwenning(a)redhat.com> - 2.0.5-0.5.rc2
- Update for new upstream tarball for release candidate: Pacemaker-2.0.5-rc2,
includes fix for CVE-2020-25654
for full details, see included ChangeLog file or
https://github.com/ClusterLabs/pacemaker/releases/tag/Pacemaker-2.0.5-rc2
- Remove dependencies to nagios-plugins from metadata-package
- some sync with structure of upstream spec-file
- removed some legacy conditionals
- added with-cibsecrets
- enable some basic gating-tests
- remove building documentation using publican from ELN
- rename doc-dir for ELN
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1889581 - pacemaker-2.0.5-rc2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1889581
[ 2 ] Bug #1891718 - CVE-2020-25654 pacemaker: ACL restrictions bypass [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1891718
--------------------------------------------------------------------------------
================================================================================
paraview-5.8.1-4.fc32 (FEDORA-2020-ef32a78e7d)
Parallel visualization application
--------------------------------------------------------------------------------
Update Information:
* Update to 5.8.1 * Fix MPI linking issue
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 1 2020 Orion Poplawski <orion(a)nwra.com> - 5.8.1-4
- Add -DOMPI_SKIP_MPICXX to work around Exodus II MPI linkage issue (bz#1892171)
* Sat Oct 31 2020 Orion Poplawski <orion(a)nwra.com> - 5.8.1-3
- Add patch to fix build with newer freetype
* Wed Sep 23 2020 Adrian Reber <adrian(a)lisas.de> - 5.8.1-2
- Rebuilt for protobuf 3.13
* Wed Aug 5 2020 Orion Poplawski <orion(a)nwra.com> - 5.8.1-1
- Update to 5.8.1
- Disable LTO for now
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.8.0-11
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Fri Jul 24 2020 Jeff Law <law(a)redhat.com> - 5.8.0-10
- Use __cmake_in_source_build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1847967 - paraview-5.8.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1847967
[ 2 ] Bug #1892171 - Exit 127 paraview: symbol lookup error:
/usr/lib64/openmpi/bin/../lib/paraview/libvtkIOExodus.so.1: undefined symbol:
_ZN3MPI8Datatype4FreeEv
https://bugzilla.redhat.com/show_bug.cgi?id=1892171
--------------------------------------------------------------------------------
================================================================================
php-alcaeus-mongo-php-adapter-1.1.13-1.fc32 (FEDORA-2020-557f1104ec)
Mongo PHP Adapter
--------------------------------------------------------------------------------
Update Information:
**Version 1.1.13** * 274: Fix wrong handling of timezones when converting
UTCDateTime thanks to @alcaeus and @carlos-granados
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Remi Collet <remi(a)remirepo.net> - 1.1.13-1
- update to 1.1.13
--------------------------------------------------------------------------------
================================================================================
php-brick-math-0.9.1-1.fc32 (FEDORA-2020-ae7ffbfa49)
Arbitrary-precision arithmetic library
--------------------------------------------------------------------------------
Update Information:
A PHP library to work with arbitrary precision numbers. Autoloader:
/usr/share/php/Brick/Math/autoload.php
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1884218 - Review Request: php-brick-math - Arbitrary-precision arithmetic
library
https://bugzilla.redhat.com/show_bug.cgi?id=1884218
--------------------------------------------------------------------------------
================================================================================
php-egulias-email-validator2-2.1.23-1.fc32 (FEDORA-2020-8e86848846)
A library for validating emails
--------------------------------------------------------------------------------
Update Information:
**Version 2.1.23** - Fix 215: email addresses with single quote should not be
valid
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Remi Collet <remi(a)remirepo.net> - 2.1.23-1
- update to 2.1.23
--------------------------------------------------------------------------------
================================================================================
php-phpspec-6.3.0-1.fc32 (FEDORA-2020-5a2c2475ff)
Specification-oriented BDD framework for PHP
--------------------------------------------------------------------------------
Update Information:
**Version 6.3.0** Added * PHP 8.0 support @ciaranmcnulty * Support
--fake with object state matcher @naomigo ---- **Version 6.2.2** Fixed -
Better failure messages for object state matcher
[@naomigo](https://github.com/naomigo) - Various issues preparing for PHP 8
[@ciaranmcnulty](https://github.com/ciaranmcnulty)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Remi Collet <remi(a)remirepo.net> - 6.3.0-1
- update to 6.3.0
* Thu Oct 29 2020 Remi Collet <remi(a)remirepo.net> - 6.2.2-1
- update to 6.2.2
- switch to phpunit9
--------------------------------------------------------------------------------
================================================================================
php-ramsey-collection-1.1.1-1.fc32 (FEDORA-2020-1fc90ad058)
Library for representing and manipulating collections
--------------------------------------------------------------------------------
Update Information:
ramsey/collection is a PHP library for representing and manipulating
collections. Much inspiration for this library comes from the Java Collections
Framework. Autoloader: /usr/share/php/Ramsey/Collection/autoload.php
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1884235 - Review Request: php-ramsey-collection - Library for representing
and manipulating collections
https://bugzilla.redhat.com/show_bug.cgi?id=1884235
--------------------------------------------------------------------------------
================================================================================
php-symfony-contracts2-2.3.1-1.fc32 (FEDORA-2020-296d551a8b)
A set of abstractions extracted out of the Symfony, version 2
--------------------------------------------------------------------------------
Update Information:
A set of abstractions extracted out of the Symfony components. Can be used to
build on semantics that the Symfony components proved useful - and that already
have battle tested implementations. Autoloader:
/usr/share/php/Symfony/Contracts2/autoload.php
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1892366 - Review Request: php-symfony-contracts2 - A set of abstractions
extracted out of the Symfony, version 2
https://bugzilla.redhat.com/show_bug.cgi?id=1892366
--------------------------------------------------------------------------------
================================================================================
python-colcon-ed-0.1.2-1.fc32 (FEDORA-2020-657a5fd415)
Extension for colcon to edit a file within a package
--------------------------------------------------------------------------------
Update Information:
Update to the latest `colcon-ed` release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Scott K Logan <logans(a)cottsay.net> - 0.1.2-1
- Update to 0.1.2 (rhbz#1893555)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1893555 - python-colcon-ed-0.1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1893555
--------------------------------------------------------------------------------
================================================================================
python-fedora-1.1.0-1.fc32 (FEDORA-2020-0ddf0c668b)
Python modules for talking to Fedora Infrastructure Services
--------------------------------------------------------------------------------
Update Information:
Version 1.1.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Aurelien Bompard <abompard(a)fedoraproject.org> - 1.1.0-1
- Version 1.1.0
* Sun Sep 27 2020 Kevin Fenzi <kevin(a)scrye.com> - 1.0.0-1
- Update to 1.0.0. Fixes #1796367
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.10.0-15
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Mon May 25 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 0.10.0-14
- Rebuilt for Python 3.9
--------------------------------------------------------------------------------
================================================================================
python-identify-1.5.7-1.fc32 (FEDORA-2020-a0901623cb)
File identification library for Python
--------------------------------------------------------------------------------
Update Information:
1.5.7
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Gwyn Ciesla <gwync(a)protonmail.com> - 1.5.7-1
- 1.5.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1893834 - python-identify-1.5.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1893834
--------------------------------------------------------------------------------
================================================================================
python-kiwisolver-1.3.1-1.fc32 (FEDORA-2020-28393e4300)
A fast implementation of the Cassowary constraint solver
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.3.1-1
- Update to latest version (#1893587)
* Wed Oct 28 2020 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> - 1.3.0-1
- Update to latest version (#1892158)
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.2.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Mon May 25 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 1.2.0-2
- Rebuilt for Python 3.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1892158 - python-kiwisolver-1.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1892158
[ 2 ] Bug #1893587 - python-kiwisolver-1.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1893587
--------------------------------------------------------------------------------
================================================================================
python-netpyne-0.9.7-2.20201009git548ffc6.fc32 (FEDORA-2020-eead172880)
Develop, simulate and analyse biological neuronal networks in NEURON
--------------------------------------------------------------------------------
Update Information:
New package! NetPyNE: NetPyNE is an open-source Python package to facilitate
the development, simulation, parallelization, analysis, and optimization of
biological neuronal networks using the NEURON simulator.
http://netpyne.org/
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1731592 - Review Request: python-netpyne - Develop, simulate and analyse
biological neuronal networks in NEURON
https://bugzilla.redhat.com/show_bug.cgi?id=1731592
--------------------------------------------------------------------------------
================================================================================
python-vcstool-0.2.15-1.fc32 (FEDORA-2020-d671bcdfa6)
Tool to invoke vcs commands on multiple repositories
--------------------------------------------------------------------------------
Update Information:
Update to the latest `vcstool` release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Scott K Logan <logans(a)cottsay.net> - 0.2.15-1
- Update to 0.2.15 (rhbz#1891662)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1891662 - python-vcstool-0.2.15 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1891662
--------------------------------------------------------------------------------
================================================================================
pytz-2020.4-1.fc32 (FEDORA-2020-f7548a29e4)
World Timezone Definitions for Python
--------------------------------------------------------------------------------
Update Information:
2020.4
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Gwyn Ciesla <gwync(a)protonmail.com> - 2020.4-1
- 2020.4
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 2020.1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Fri May 22 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 2020.1-2
- Rebuilt for Python 3.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1893605 - pytz-2020.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1893605
--------------------------------------------------------------------------------
================================================================================
qpdf-10.0.3-1.fc32 (FEDORA-2020-e44cf51de0)
Command-line tools and library for transforming PDF files
--------------------------------------------------------------------------------
Update Information:
10.0.3
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 10.0.3-1
- 10.0.3
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 10.0.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1892102 - qpdf-10.0.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1892102
--------------------------------------------------------------------------------
================================================================================
rdma-core-32.0-1.fc32 (FEDORA-2020-4225cd814c)
RDMA core userspace libraries and daemons
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release rdma-core-32.0
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 29 2020 Honggang Li <honli(a)redhat.com> - 32.0-1
- Rebase to upstream release v32.0
--------------------------------------------------------------------------------
================================================================================
redhat-rpm-config-150-3.fc32 (FEDORA-2020-0333483397)
Red Hat specific rpm configuration files
--------------------------------------------------------------------------------
Update Information:
redhat-rpm-config now pulls in lua-srpm-macros, meaning Lua specs for Fedora >=
32 and EPEL >= 7 can be refactored to use standard macros rather than hardcoding
what versions of Lua they support
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 30 2020 Michel Alexandre Salim <salimma(a)fedoraproject.org> - 150-3
- Add Requires: lua-srpm-macros
--------------------------------------------------------------------------------
================================================================================
rr-5.4.0-1.fc32 (FEDORA-2020-8695051899)
Tool to record and replay execution of applications
--------------------------------------------------------------------------------
Update Information:
rr-5.4.0 release includes initial support for some AMD Zen and Zen 2 processors.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 William Cohen <wcohen(a)redhat.com> - 5.4.0-1
- Rebase to rr-5.4.0.
--------------------------------------------------------------------------------
================================================================================
ufdbGuard-1.35.3-1.fc32 (FEDORA-2020-3cefef356b)
A URL filter for squid
--------------------------------------------------------------------------------
Update Information:
1.35.3 ---- 1.35.2
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Gwyn Ciesla <gwync(a)protonmail.com> - 1.35.3-1
- 1.35.3
* Fri Oct 30 2020 Gwyn Ciesla <gwync(a)protonmail.com> - 1.35.2-1
- 1.35.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1893326 - ufdbGuard-1.35.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1893326
[ 2 ] Bug #1893819 - ufdbGuard-1.35.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1893819
--------------------------------------------------------------------------------
================================================================================
vim-8.2.1941-1.fc32 (FEDORA-2020-468809b1bc)
The VIM editor
--------------------------------------------------------------------------------
Update Information:
The newest upstream commit
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 2 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.1941-1
- patchlevel 1941
* Mon Nov 2 2020 Zdenek Dohnal <zdohnal(a)redhat.com> - 2:8.2.1885-2
- move vim.fish to vendor_functions.d
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1892465 - Fish functions should go in vendor_functions.d, not vendor_conf.d
https://bugzilla.redhat.com/show_bug.cgi?id=1892465
--------------------------------------------------------------------------------
================================================================================
wordpress-5.5.3-1.fc32 (FEDORA-2020-b386fac43a)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
**WordPress 5.5.3 Maintenance Release** This maintenance release fixes an issue
introduced in WordPress 5.5.2 which makes it impossible to install WordPress on
a brand new website that does not have a database connection configured. ----
**WordPress 5.5.2 Security and Maintenance Release** **Security Updates** *
Props to Alex Concha of the WordPress Security Team for their work in hardening
deserialization requests. * Props to David Binovec on a fix to disable spam
embeds from disabled sites on a multisite network. * Thanks to Marc Montas
from Sucuri for reporting an issue that could lead to XSS from global variables.
* Thanks to Justin Tran who reported an issue surrounding privilege
escalation in XML-RPC. He also found and disclosed an issue around privilege
escalation around post commenting via XML-RPC. * Props to Omar Ganiev who
reported a method where a DoS attack could lead to RCE. * Thanks to Karim El
Ouerghemmi from RIPS who disclosed a method to store XSS in post slugs. *
Thanks to Slavco for reporting, and confirmation from Karim El Ouerghemmi, a
method to bypass protected meta that could lead to arbitrary file deletion. *
Thanks to Erwan LR from WPScan who responsibly disclosed a method that could
lead to CSRF. * And a special thanks to @zieladam who was integral in many of
the releases and patches during this release.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 31 2020 Remi Collet <remi(a)remirepo.net> - 5.5.3-1
- WordPress 5.5.3 Maintenance Release
* Fri Oct 30 2020 Remi Collet <remi(a)remirepo.net> - 5.5.2-1
- WordPress 5.5.2 Security and Maintenance Release
--------------------------------------------------------------------------------