The following Fedora 33 Security updates need testing: Age URL 157 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c3d587d52c shim-15.4-1 14 https://bodhi.fedoraproject.org/updates/FEDORA-2021-232161e4d5 lynx-2.8.9-13.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-f53d1bbf50 wordpress-5.8.1-1.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-fed53cbc7d xen-4.14.2-4.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-cd5ee418f6 haproxy-2.2.17-1.fc33 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-db6fb33b05 libtpms-0.8.6-0.20210910git7a4d46a119.fc33 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-450c33d2a6 firefox-92.0-2.fc33 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9f020cf155 mingw-python-pillow-7.2.0-8.fc33 python-pillow-7.2.0-8.fc33 python2-pillow-6.2.2-7.fc33 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9fb6da134f squashfs-tools-4.5-3.20210913gite048580.fc33
The following Fedora 33 Critical Path updates have yet to be approved: Age URL 176 https://bodhi.fedoraproject.org/updates/FEDORA-2021-2961f34ccb PackageKit-1.2.3-1.fc33 111 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4797e362b3 abrt-2.14.6-1.fc33 libreport-2.15.1-1.fc33 satyr-0.37-2.fc33 27 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4ccf3840ed gnome-shell-3.38.6-1.fc33 mutter-3.38.6-1.fc33 13 https://bodhi.fedoraproject.org/updates/FEDORA-2021-f135b880d1 gnome-software-3.38.2-3.fc33 13 https://bodhi.fedoraproject.org/updates/FEDORA-2021-5326e30d64 hwdata-0.351-1.fc33 12 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9958e15ab2 perl-Digest-1.20-1.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-7a74c98205 thunderbird-91.1.0-1.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e7c8ba6301 ntfs-3g-2021.8.22-2.fc33 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-450c33d2a6 firefox-92.0-2.fc33 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b23a9bea6a ethtool-5.14-1.fc33 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e63926a1bb btrfs-progs-5.14-2.fc33 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b45ccbe1a6 libmodulemd-2.13.0-2.fc33 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9e50a13f09 kernel-5.13.16-100.fc33 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9fb6da134f squashfs-tools-4.5-3.20210913gite048580.fc33
The following builds have been pushed to Fedora 33 updates-testing
batctl-2021.3-1.fc33 buildah-1.23.0-1.fc33 composer-2.1.7-1.fc33 createrepo_c-0.17.5-1.fc33 cups-filters-1.28.10-1.fc33 ghostscript-9.54.0-2.1.fc33 gifsicle-1.93-1.fc33 gnome-shell-extension-mediacontrols-17-1.fc33 golang-github-nwaples-rardecode-1.1.2-1.fc33 gucharmap-14.0.0-1.fc33 kde-gtk-config-5.20.5-2.fc33 kimageannotator-0.5.2-1.fc33 ksnip-1.9.1-1.fc33 mod_auth_token-1.0.5-26.fc33 notcurses-2.4.1-2.fc33 openttd-opengfx-7.0-1.fc33 pcp-5.3.3-1.fc33 pungi-4.3.0-1.fc33 python-rpm-head-signing-1.4.2-1.fc33
Details about builds:
================================================================================ batctl-2021.3-1.fc33 (FEDORA-2021-cda61349ec) B.A.T.M.A.N. advanced control and management tool -------------------------------------------------------------------------------- Update Information:
Version number change to match batman-adv, no other changes. -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Felix Kaechele heffer@fedoraproject.org - 2021.3-1 - update to 2021.3 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2004113 - batctl-2021.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2004113 --------------------------------------------------------------------------------
================================================================================ buildah-1.23.0-1.fc33 (FEDORA-2021-46fad1d4ec) A command line tool used for creating OCI Images -------------------------------------------------------------------------------- Update Information:
autobuilt v1.23.0 -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 RH Container Bot rhcontainerbot@fedoraproject.org - 1.23.0-1 - autobuilt v1.23.0 --------------------------------------------------------------------------------
================================================================================ composer-2.1.7-1.fc33 (FEDORA-2021-ff091c0e90) Dependency Manager for PHP -------------------------------------------------------------------------------- Update Information:
**Version 2.1.7** - 2021-09-14 * Added many type annotations internally, which may have an effect on CI/static analysis for people using Composer as a dependency. This work will continue in following releases * Fixed regression in 2.1.6 when parsing classmaps with empty heredocs (#10067) * Fixed regression in 2.1.6 where list command was not showing plugin commands (#10075) * Fixed issue handling package updates where the package type changed (#10076) * Fixed docker being detected as WSL when run inside WSL (#10094) -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Remi Collet remi@remirepo.net - 2.1.7-1 - update to 2.1.7 --------------------------------------------------------------------------------
================================================================================ createrepo_c-0.17.5-1.fc33 (FEDORA-2021-fd41bb269a) Creates a common metadata repository -------------------------------------------------------------------------------- Update Information:
``` * Wed Sep 15 2021 Pavla Kratochvilova pkratoch@redhat.com - 0.17.5-1 - Update to 0.17.5 - Fix error when updating repo with removed modules metadata - Exit with status code 1 when loading of repo's metadata fails - Fix memory leaks and covscan warnings ``` -------------------------------------------------------------------------------- ChangeLog:
* Wed Sep 15 2021 Pavla Kratochvilova pkratoch@redhat.com - 0.17.5-1 - Update to 0.17.5 - Fix error when updating repo with removed modules metadata - Exit with status code 1 when loading of repo's metadata fails - Fix memory leaks and covscan warnings --------------------------------------------------------------------------------
================================================================================ cups-filters-1.28.10-1.fc33 (FEDORA-2021-440e59d43e) OpenPrinting CUPS filters and backends -------------------------------------------------------------------------------- Update Information:
1.28.10 -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Zdenek Dohnal zdohnal@redhat.com - 1.28.10-1 - 1.28.10 * Tue Jul 27 2021 Zdenek Dohnal zdohnal@redhat.com - 1.28.9-5 - rebuilt with poppler-21.07.0 * Tue Jul 27 2021 Zdenek Dohnal zdohnal@redhat.com - 1.28.9-4 - remove build requirement on poppler-devel - we need just poppler-cpp-devel * Wed Jul 21 2021 Fedora Release Engineering releng@fedoraproject.org - 1.28.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ ghostscript-9.54.0-2.1.fc33 (FEDORA-2021-be0a93fb15) Interpreter for PostScript language & PDF -------------------------------------------------------------------------------- Update Information:
Rebase with Security fix for CVE-2021-3781 -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Richard Lescak rlescak@redhat.com - 9.54.0-2.1 - Bumped a version to unblock build * Tue Sep 14 2021 Richard Lescak rlescak@redhat.com - 9.54.0-1 - Rebase with patches for (#1989084) and CVE-2021-3781 (#2003085) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2002271 - CVE-2021-3781 ghostscript: sandbox escape using '%pipe%' https://bugzilla.redhat.com/show_bug.cgi?id=2002271 --------------------------------------------------------------------------------
================================================================================ gifsicle-1.93-1.fc33 (FEDORA-2021-b349650e52) Powerful program for manipulating GIF images and animations -------------------------------------------------------------------------------- Update Information:
Update to 1.93, fixes CVE-2020-19752 -------------------------------------------------------------------------------- ChangeLog:
* Thu Jul 1 2021 Orion Poplawski orion@nwra.com - 1.93-1 - Update to 1.93 * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 1.92-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2004042 - CVE-2020-19752 gifsicle: NULL pointer dereference in find_color_or_error function https://bugzilla.redhat.com/show_bug.cgi?id=2004042 --------------------------------------------------------------------------------
================================================================================ gnome-shell-extension-mediacontrols-17-1.fc33 (FEDORA-2021-0fc963a245) Show controls for the current playing media in the panel -------------------------------------------------------------------------------- Update Information:
https://github.com/cliffniff/media-controls/releases/tag/v17 ---- https://github.com/cliffniff/media-controls/releases/tag/v15 -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Carl George carl@george.computer 17-1 - Latest upstream * Mon Sep 13 2021 Carl George carl@george.computer 15-1 - Latest upstream -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2003812 - gnome-shell-extension-mediacontrols-15 is available https://bugzilla.redhat.com/show_bug.cgi?id=2003812 [ 2 ] Bug #2004195 - gnome-shell-extension-mediacontrols-17 is available https://bugzilla.redhat.com/show_bug.cgi?id=2004195 --------------------------------------------------------------------------------
================================================================================ golang-github-nwaples-rardecode-1.1.2-1.fc33 (FEDORA-2021-183fffe3cf) Go package for reading RAR archives -------------------------------------------------------------------------------- Update Information:
* fix premature masking of filter offset * fallback to old volume naming scheme if open of next volume fails -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Dominik Mierzejewski dominik@greysector.net - 1.1.2-1 - update to 1.1.2 (#1983345) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1983345 - golang-github-nwaples-rardecode-1.1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1983345 --------------------------------------------------------------------------------
================================================================================ gucharmap-14.0.0-1.fc33 (FEDORA-2021-33a7319d89) Unicode character picker and font browser -------------------------------------------------------------------------------- Update Information:
* Support for Unicode 14 * Updated translations -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Alexander Ploumistos alexpl@fedoraproject.org - 14.0.0-1 - Update to 14.0.0 (#2004196) * Thu Jul 22 2021 Fedora Release Engineering releng@fedoraproject.org - 13.0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2004196 - gucharmap-14.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2004196 --------------------------------------------------------------------------------
================================================================================ kde-gtk-config-5.20.5-2.fc33 (FEDORA-2021-44c4a49ff5) Configure the appearance of GTK apps in KDE -------------------------------------------------------------------------------- Update Information:
Backport upstream fix to quell debug output. -------------------------------------------------------------------------------- ChangeLog:
* Fri Sep 3 2021 S��rgio Basto sergio@serjux.com - 5.20.5-2 - Backport commit that remove debug message to avoid polute to stdout. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2000939 - please backport kde-gtk-config to F33 https://bugzilla.redhat.com/show_bug.cgi?id=2000939 --------------------------------------------------------------------------------
================================================================================ kimageannotator-0.5.2-1.fc33 (FEDORA-2021-5631770025) Library and a tool for annotating images -------------------------------------------------------------------------------- Update Information:
Updated ksnip to version 1.9.1. -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Vitaly Zaitsev vitaly@easycoding.org - 0.5.2-1 - Updated to version 0.5.2. * Thu Jul 22 2021 Fedora Release Engineering releng@fedoraproject.org - 0.5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ ksnip-1.9.1-1.fc33 (FEDORA-2021-5631770025) Qt based cross-platform screenshot tool -------------------------------------------------------------------------------- Update Information:
Updated ksnip to version 1.9.1. -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Vitaly Zaitsev vitaly@easycoding.org - 1.9.1-1 - Updated to version 1.9.1. * Thu Jul 22 2021 Fedora Release Engineering releng@fedoraproject.org - 1.9.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ mod_auth_token-1.0.5-26.fc33 (FEDORA-2021-a23a482f68) Token based URI access module for Apache -------------------------------------------------------------------------------- Update Information:
- Add a patch for improvements with Apache httpd >= 2.4. - Consolidate the patches for Autotools with more fixes. - Apply CFLAGS properly. - Add a patch to add the AuthTokenLimitByIp configuration option. - Modernize spec file. -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Bj��rn Esser besser82@fedoraproject.org - 1.0.5-26 - Consolidate the patches for Autotools with more fixes - Add a patch to add the AuthTokenLimitByIp configuration option - Modernize spec file * Tue Sep 14 2021 Bj��rn Esser besser82@fedoraproject.org - 1.0.5-25 - Add a patch for improvements with Apache httpd >= 2.4 - Update Patch1 to also apply CFLAGS properly * Thu Jul 22 2021 Fedora Release Engineering releng@fedoraproject.org - 1.0.5-24 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 1.0.5-23 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ notcurses-2.4.1-2.fc33 (FEDORA-2021-c20464251c) Character graphics and TUI library -------------------------------------------------------------------------------- Update Information:
https://github.com/dankamongmen/notcurses/releases/tag/v2.4.1 -------------------------------------------------------------------------------- ChangeLog:
* Mon Sep 13 2021 Nick Black dankamongmen@gmail.com 2.4.1-1 - new upstream 2.4.1 --------------------------------------------------------------------------------
================================================================================ openttd-opengfx-7.0-1.fc33 (FEDORA-2021-a8826b9481) OpenGFX replacement graphics for OpenTTD -------------------------------------------------------------------------------- Update Information:
OpenGFX 7.0 (12 Sep 2021) ------------------------- - Add: GUI sprites for OpenTTD 12.0 - Fix: Remove animated pixels from highscore.png - Codechange: change version numbering system to match change of OpenTTD versions from 12.0 onward - Update translations -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Felix Kaechele felix@kaechele.ca - 7.0-1 - update to 7.0 * Thu Jul 22 2021 Fedora Release Engineering releng@fedoraproject.org - 0.6.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2003869 - openttd-opengfx-7.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2003869 --------------------------------------------------------------------------------
================================================================================ pcp-5.3.3-1.fc33 (FEDORA-2021-cf0424ca82) System-level performance monitoring and performance management -------------------------------------------------------------------------------- Update Information:
Update to latest upstream PCP release. -------------------------------------------------------------------------------- ChangeLog:
* Wed Sep 15 2021 Nathan Scott nathans@redhat.com - 5.3.3-1 - Update to latest PCP sources. * Tue Sep 14 2021 Sahana Prasad sahana@redhat.com - 5.3.2-2 - Rebuilt with OpenSSL 3.0.0 --------------------------------------------------------------------------------
================================================================================ pungi-4.3.0-1.fc33 (FEDORA-2021-90604978ab) Distribution compose tool -------------------------------------------------------------------------------- Update Information:
New upstream release: - Allow specifying $COMPOSE_ID in the `repo` value for osbs phase. - Enable pungi to send compose_url patches to CTS - Use xorriso instead of isoinfo when createiso_use_xorrisofs is enabled - Handle the pungi failures to ensure creation of log files - Add createrepo_enable_cache to configuration doc - Supersede ModuleStream loading with ModuleIndex - Adding multithreading support for Image Checksum phase - Documentation improvements -------------------------------------------------------------------------------- ChangeLog:
* Wed Sep 15 2021 Lubom��r Sedl���� lsedlar@redhat.com - 4.3.0-1 - Only build CTS url when configured (lsedlar) - Require requests_kerberos only when needed (lsedlar) - Allow specifying $COMPOSE_ID in the `repo` value for osbs phase. (jkaluza) - Make getting old compose config reusable (lsedlar) - paths: Allow customizing log file extension (lsedlar) - Add authentication for updating the compose URL in CTS. (ounsal) - Fix type detection for osbuild images (lsedlar) - Enable pungi to send compose_url patches to CTS (ounsal) - Use xorriso instead of isoinfo when createiso_use_xorrisofs is enabled (ounsal) - Fix tests for createrepo (drumian) - Formatted files according to flake8 and black feedback (drumian) - Handle the pungi failures to ensure creation of log files (ounsal) - Add createrepo_enable_cache to configuration doc (hlin) - Fix formatting (hlin) - Install missing deps in ci image (hlin) - Use pytest directly incl. support for posargs, e.g.: tox -- -s -vvv tests/path/to/a/single/test_something.py (fvalder) - Supersede ModuleStream loading with ModuleIndex (fvalder) - Better error message than 'KeyError' in pungi (drumian) - Adding multithreading support for pungi/phases/image_checksum.py (jkunstle) - doc: more additional_packages documentation (kdreyer) - doc: fix typo in additional_packages description (kdreyer) - doc: improve signed packages retry docs (kdreyer) - Better error message than 'KeyError' in pungi (drumian) - doc: explain buildContainer API (kdreyer) --------------------------------------------------------------------------------
================================================================================ python-rpm-head-signing-1.4.2-1.fc33 (FEDORA-2021-030366e6a4) Small python module to extract RPM header and file digests -------------------------------------------------------------------------------- Update Information:
Fixes handling of symbolic links during verification ---- Ensure xattrs are passed in as bytes -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 14 2021 Patrick Uiterwijk patrick@puiterwijk.org - 1.4.2-1 - Ignore symbolic links when verifying RPMs * Fri Sep 10 2021 Patrick Uiterwijk patrick@puiterwijk.org - 1.4.1-1 - Ensure xattrs are passed in as bytes --------------------------------------------------------------------------------