The following Fedora 34 Security updates need testing:
Age URL
83
https://bodhi.fedoraproject.org/updates/FEDORA-2022-6aba96e1b8
radare2-5.6.4-1.fc34
35
https://bodhi.fedoraproject.org/updates/FEDORA-2022-63de6726ce
libinput-1.19.4-1.fc34
6
https://bodhi.fedoraproject.org/updates/FEDORA-2022-a49babed75 clash-1.6.5-2.fc34
6
https://bodhi.fedoraproject.org/updates/FEDORA-2022-bd4457bcc4
moodle-3.11.7-1.fc34
5
https://bodhi.fedoraproject.org/updates/FEDORA-2022-353e1cf8b6
rubygem-git-1.11.0-1.fc34
5
https://bodhi.fedoraproject.org/updates/FEDORA-2022-53f0c619c5 gron-0.6.1-2.fc34
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-e980dc71b1
golang-github-opencontainers-runc-1.1.2-1.fc34
2
https://bodhi.fedoraproject.org/updates/FEDORA-2022-6e226a21ed weechat-3.5-2.fc34
The following Fedora 34 Critical Path updates have yet to be approved:
Age URL
413
https://bodhi.fedoraproject.org/updates/FEDORA-2021-1300e131b6 ddpt-0.96-4.fc34
ledmon-0.95-4.fc34 libgpod-0.8.3-38.fc34 libzfcphbaapi-2.2.0-12.fc34 lsvpd-1.7.11-6.fc34
sg3_utils-1.46-1.fc34 udisks-1.0.5-18.fc34
135
https://bodhi.fedoraproject.org/updates/FEDORA-2022-e3b891fe11 gdb-11.1-7.fc34
83
https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f3103b973
hwdata-0.357-1.fc34
64
https://bodhi.fedoraproject.org/updates/FEDORA-2022-dab75a01b8
gnome-shell-40.10-1.fc34 gnome-shell-extensions-40.7-1.fc34 mutter-40.10-1.fc34
50
https://bodhi.fedoraproject.org/updates/FEDORA-2022-eb1d10aba3 libldb-2.3.3-1.fc34
samba-4.14.13-0.fc34
35
https://bodhi.fedoraproject.org/updates/FEDORA-2022-63de6726ce
libinput-1.19.4-1.fc34
11
https://bodhi.fedoraproject.org/updates/FEDORA-2022-b9a676a6de
libretls-3.5.2-1.fc34 netcat-1.218-5.fc34 rpki-client-7.8-2.fc34
11
https://bodhi.fedoraproject.org/updates/FEDORA-2022-4f0b4a4d73
linux-firmware-20220509-132.fc34
8
https://bodhi.fedoraproject.org/updates/FEDORA-2022-43cfd2bbc1 rsync-3.2.4-1.fc34
8
https://bodhi.fedoraproject.org/updates/FEDORA-2022-9ea855c65c
gnutls-3.7.5-1.fc34
5
https://bodhi.fedoraproject.org/updates/FEDORA-2022-45ea77ca58
python3-docs-3.9.13-1.fc34 python3.9-3.9.13-1.fc34
5
https://bodhi.fedoraproject.org/updates/FEDORA-2022-1180dadb39
ansible-packaging-1-5.fc34 redhat-rpm-config-184-1.fc34
The following builds have been pushed to Fedora 34 updates-testing
ansible-collection-community-docker-2.6.0-1.fc34
borgmatic-1.6.1-1.fc34
firefox-100.0.2-2.fc34
gamehub-0.16.3.2-4.fc34
kernel-5.17.11-100.fc34
kernel-headers-5.17.11-100.fc34
kernel-tools-5.17.11-100.fc34
linux-system-roles-1.19.0-1.fc34
logrotate-3.18.0-4.fc34
nginx-1.22.0-1.fc34
oneVPL-2022.1.3-1.fc34
osbuild-57-1.fc34
osbuild-composer-53-1.fc34
python-construct-2.10.68-1.fc34
qownnotes-22.5.3-1.fc34
thunderbird-91.9.1-1.fc34
Details about builds:
================================================================================
ansible-collection-community-docker-2.6.0-1.fc34 (FEDORA-2022-2a833458e6)
Ansible modules and plugins for working with Docker
--------------------------------------------------------------------------------
Update Information:
Update to 2.6.0. Fixes rhbz#2089991. Release notes:
https://github.com/ansible-
collections/community.docker/blob/main/CHANGELOG.rst#v2-6-0
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Maxwell G <gotmax(a)e.email> - 2.6.0-1
- Update to 2.6.0. Fixes rhbz#2089991.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2089991 - ansible-collection-community-docker-2.6.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2089991
--------------------------------------------------------------------------------
================================================================================
borgmatic-1.6.1-1.fc34 (FEDORA-2022-f350da66dc)
Simple Python wrapper script for borgbackup
--------------------------------------------------------------------------------
Update Information:
- [#294](https://projects.torsion.org/borgmatic-
collective/borgmatic/issues/294): Add Healthchecks monitoring hook
"ping_body_limit" option to configure how many bytes of logs to send to
the Healthchecks server. - [#402](https://projects.torsion.org/borgmatic-
collective/borgmatic/issues/402): Remove the error when "archive_name_format"
is
specified but a retention prefix isn't. -
[#420](https://projects.torsion.org/borgmatic-collective/borgmatic/issues/420):
Warn when an unsupported variable is used in a hook command. -
[#439](https://projects.torsion.org/borgmatic-collective/borgmatic/issues/439):
Change connection failures for monitoring hooks (Healthchecks, Cronitor,
PagerDuty, and Cronhub) to be warnings instead of errors. This way, the
monitoring system failing does not block backups. -
[#460](https://projects.torsion.org/borgmatic-collective/borgmatic/issues/460):
Add Healthchecks monitoring hook "send_logs" option to enable/disable sending
borgmatic logs to the Healthchecks server. -
[#525](https://projects.torsion.org/borgmatic-collective/borgmatic/issues/525):
Add Healthchecks monitoring hook "states" option to only enable pinging for
particular monitoring states (start, finish, fail). -
[#528](https://projects.torsion.org/borgmatic-collective/borgmatic/issues/528):
Improve the error message when a configuration override contains an invalid
value. - [#531](https://projects.torsion.org/borgmatic-
collective/borgmatic/issues/531): BREAKING: When deep merging common
configuration, merge colliding list values by appending them. Previously,
one list replaced the other. - [#532](https://projects.torsion.org/borgmatic-
collective/borgmatic/issues/532): When a configuration include is a relative
path, load it from either the current working directory or from the
directory containing the file doing the including. Previously, only the
working directory was used. - Add a randomized delay to the sample systemd
timer to spread out the load on a server. - Change the configuration format
for borgmatic monitoring hooks (Healthchecks, Cronitor, PagerDuty, and
Cronhub) to specify the ping URL / integration key as a named option. The intent
is to support additional options (some in this release). This change is
backwards-compatible. - Add emojis to documentation table of contents to make
it easier to find particular how-to and reference guides at a glance.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Felix Kaechele <felix(a)kaechele.ca> - 1.6.1-1
- update to 1.6.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2089998 - borgmatic-1.6.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2089998
--------------------------------------------------------------------------------
================================================================================
firefox-100.0.2-2.fc34 (FEDORA-2022-c5a8d2c7f4)
Mozilla Firefox Web browser
--------------------------------------------------------------------------------
Update Information:
- Fixed missing popups in some scenarios on Wayland
(
https://bugzilla.mozilla.org/show_bug.cgi?id=1771104) ---- - Updated to
latest upstream (100.0.2) ---- - Fixed crashes on Wayland during recovery from
sleep.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Martin Stransky <stransky(a)redhat.com>- 100.0.2-2
- Added fix for mzbz#1771104
* Fri May 20 2022 Martin Stransky <stransky(a)redhat.com>- 100.0.2-1
- Updated to 100.0.2
* Wed May 18 2022 Martin Stransky <stransky(a)redhat.com>- 100.0.1-1
- Updated to 100.0.1
* Mon May 16 2022 Jan Horak <jhorak(a)redhat.com> - 100.0-6
- Fix spellchecker.dictionary_path of F36+
* Tue May 10 2022 Jan Horak <jhorak(a)redhat.com> - 100.0-5
- Fix crashes on f36 multimonitor setup and too big profile manager
* Mon May 9 2022 Martin Stransky <stransky(a)redhat.com>- 100.0-4
- Added fix for mozbz#1767916.
* Thu May 5 2022 Martin Stransky <stransky(a)redhat.com>- 100.0-3
- Removed Fedora user agent patch (rhbz#2081791).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2082878 - Firefox crashes under wayland when dragged in dual head display
with different scaling
https://bugzilla.redhat.com/show_bug.cgi?id=2082878
--------------------------------------------------------------------------------
================================================================================
gamehub-0.16.3.2-4.fc34 (FEDORA-2022-1273875e3b)
All your games in one place
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.16.3.2-3
- build: libcaca and scummvm now Recommends deps
* Wed May 25 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.16.3.2-2
- chore: Update description
* Tue May 24 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> - 0.16.3.2-1
- Update to 0.16.3-2-master
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> -
0.16.1.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
kernel-5.17.11-100.fc34 (FEDORA-2022-014c3a24d9)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 5.17.11 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Justin M. Forbes <jforbes(a)fedoraproject.org> [5.17.11-0]
- Linux v5.17.11 (Justin M. Forbes)
* Wed May 25 2022 Justin M. Forbes <jforbes(a)fedoraproject.org> [5.17.11-0]
- Linux v5.17.11
* Wed May 25 2022 Justin M. Forbes <jforbes(a)fedoraproject.org> [5.17.10-0]
- fedora: Re-enable efifb and vesafb drivers (Javier Martinez Canillas)
- drivers/firmware: skip simpledrm if nvidia-drm.modeset=1 is set (Javier Martinez
Canillas)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2086753 - CVE-2022-1729 kernel: race condition in perf_event_open leads to
privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=2086753
--------------------------------------------------------------------------------
================================================================================
kernel-headers-5.17.11-100.fc34 (FEDORA-2022-014c3a24d9)
Header files for the Linux kernel for use by glibc
--------------------------------------------------------------------------------
Update Information:
The 5.17.11 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.17.11-100
- Linux v5.17.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2086753 - CVE-2022-1729 kernel: race condition in perf_event_open leads to
privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=2086753
--------------------------------------------------------------------------------
================================================================================
kernel-tools-5.17.11-100.fc34 (FEDORA-2022-014c3a24d9)
Assortment of tools for the Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 5.17.11 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Justin M. Forbes <jforbes(a)fedoraproject.org> - 5.17.11-100
- Linux v5.17.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2086753 - CVE-2022-1729 kernel: race condition in perf_event_open leads to
privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=2086753
--------------------------------------------------------------------------------
================================================================================
linux-system-roles-1.19.0-1.fc34 (FEDORA-2022-a90a85adb7)
Set of interfaces for unified system management
--------------------------------------------------------------------------------
Update Information:
network - Rework the infiniband support ---- sshd - recurse into tests and
examples sub-directories when replacing string in files the sshd role latest
version added sub-directories under tests that need role name replacement - so
just use find ---- storage - mount_options fix; sshd - include directory
handling
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Rich Megginson <rmeggins(a)redhat.com> - 1.19.0-1
- network - Rework the infiniband support
Resolves: rhbz#2086869 (8.7.0)
Resolves: rhbz#2086965 (9.1.0)
* Wed May 18 2022 Rich Megginson <rmeggins(a)redhat.com> - 1.18.1-2
- sshd - recurse into tests and examples sub-directories when replacing string in files
the sshd role latest version added sub-directories under tests that need
role name replacement - so just use find
* Mon May 16 2022 Rich Megginson <rmeggins(a)redhat.com> - 1.18.1-1
- sshd - sshd system role should not assume that RHEL 9 /etc/ssh/sshd_config has
"Include > /etc/ssh/sshd_config.d/*.conf"
Resolves: rhbz#2086934 (8.7.0)
Resolves: rhbz#2052081 (9.1.0)
- sshd - sshd system role should be able to optionally manage /etc/ssh/sshd_config on RHEL
9
Resolves: rhbz#2086935 (8.7.0)
Resolves: rhbz#2052086 (9.1.0)
- storage - storage role cannot set mount_options for volumes
Resolves: rhbz#2083378 (8.7.0)
Resolves: rhbz#2083376 (9.1.0)
--------------------------------------------------------------------------------
================================================================================
logrotate-3.18.0-4.fc34 (FEDORA-2022-71ece75de1)
Rotates, compresses, removes and mails system log files
--------------------------------------------------------------------------------
Update Information:
- fix potential DoS from unprivileged users via the state file (CVE-2022-1348)
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Kamil Dudka <kdudka(a)redhat.com> - 3.18.0-4
- fix potential DoS from unprivileged users via the state file (CVE-2022-1348)
--------------------------------------------------------------------------------
================================================================================
nginx-1.22.0-1.fc34 (FEDORA-2022-dab3d0e3bf)
A high performance web server and reverse proxy server
--------------------------------------------------------------------------------
Update Information:
[
nginx-1.22.0](http://nginx.org/en/download.html) stable version has been
released, incorporating new features and bug fixes from the 1.21.x mainline
branch ��� including hardening against potential requests smuggling and cross-
protocol attacks, [ALPN
support](http://nginx.org/en/docs/stream/ngx_stream_ssl_module.html#ssl_a... in
the stream module, better distribution of connections among worker processes on
Linux, support for the PCRE2 library, support for OpenSSL 3.0 and
`SSL_sendfile()`, improved
[
sendfile](http://nginx.org/en/docs/http/ngx_http_core_module.html#sendfile)
handling on FreeBSD, the [
mp4_start_key_frame](http://nginx.org/en/docs/http/ngx
_http_mp4_module.html#mp4_start_key_frame) directive, and more.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Felix Kaechele <heffer(a)fedoraproject.org> - 1:1.22.0-1
- update to 1.22.0
- switch to pcre2
- drop CVE-2021-3618 patch, it's upstreamed
- add signing key of Konstantin Pavlov
- add stream_geoip_module and stream_realip_module
* Thu Mar 24 2022 Honza Horak <hhorak(a)redhat.com> - 1:1.20.2-4
- Introduce core sub-package for having a daemon only with a minimal footprint
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:1.20.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2089875 - nginx-1.22.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2089875
--------------------------------------------------------------------------------
================================================================================
oneVPL-2022.1.3-1.fc34 (FEDORA-2022-22115be21e)
oneAPI Video Processing Library
--------------------------------------------------------------------------------
Update Information:
Updates to base dispatcher and Intel GPU implementation.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Simone Caronni <negativo17(a)gmail.com> - 2022.1.3-1
- Update to 2022.1.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2080551 - oneVPL-2022.1.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2080551
--------------------------------------------------------------------------------
================================================================================
osbuild-57-1.fc34 (FEDORA-2022-b07c39509b)
A build system for OS images
--------------------------------------------------------------------------------
Update Information:
Update osbuild to the latest version
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 25 2022 Packit <hello(a)packit.dev> - 57-1
Changes with 57
----------------
* meta: show stage name when schema is missing (#1022)
* sources: curl max_workers 2 * num_cpus (#1024)
* stages/ostree.passwd: fix subid source path (#1027)
* stages/udev.rules: use correct separator (#1026)
* stages: add new sgdisk stage (#1029)
Contributions from: Christian Kellner, Simon de Vlieger
��� Somewhere on the Internet, 2022-05-25
--------------------------------------------------------------------------------
================================================================================
osbuild-composer-53-1.fc34 (FEDORA-2022-e1cc2beab0)
An image building service based on osbuild
--------------------------------------------------------------------------------
Update Information:
Update osbuild-composer to the latest version
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2022 Packit <hello(a)packit.dev> - 53-1
Changes with 53
----------------
* Old worker - New composer test: Use Cloud API (#2654)
* Post release version bump (#2670)
* distro/rhel90: add support for azure marketplace (#2665)
* go.mod: Update openshift-online/ocm-sdk-go (#2660)
Contributions from: Achilleas Koutsou, Christian Kellner, Sanne Raymaekers, Simon
Steinbeiss
��� Somewhere on the Internet, 2022-05-19
--------------------------------------------------------------------------------
================================================================================
python-construct-2.10.68-1.fc34 (FEDORA-2022-803b9ac1ae)
A powerful declarative parser/builder for binary data
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release construct 2.10.68.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Feb 26 2022 Terje Rosten <terje.rosten(a)ntnu.no> - 2.10.68-1
- 2.10.68
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.10.67-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.10.67-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 2.10.67-2
- Rebuilt for Python 3.10
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2056727 - python-construct-2.10.68 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2056727
--------------------------------------------------------------------------------
================================================================================
qownnotes-22.5.3-1.fc34 (FEDORA-2022-f57270f0fc)
Plain-text file markdown note taking with Nextcloud integration
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 24 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> 22.5.3-1
- chore(update): 22.5.3
--------------------------------------------------------------------------------
================================================================================
thunderbird-91.9.1-1.fc34 (FEDORA-2022-8ebd42ce1c)
Mozilla Thunderbird mail/newsgroup client
--------------------------------------------------------------------------------
Update Information:
Update to 91.9.1
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 24 2022 Eike Rathke <erack(a)redhat.com> - 91.9.1-1
- Update to 91.9.1
--------------------------------------------------------------------------------