The following Fedora 34 Security updates need testing:
Age URL
35
https://bodhi.fedoraproject.org/updates/FEDORA-2021-6bd024d2a7
podman-3.4.4-1.fc34
7
https://bodhi.fedoraproject.org/updates/FEDORA-2022-7129fbaeed
python-lxml-4.6.5-1.fc34
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-dc62389784
btrbk-0.31.3-1.fc34
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-5aeda24c24
thefuck-3.32-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-19dcde908c
binaryen-104-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-1daf93c51d
wireshark-3.6.1-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-48b86d586f
vim-8.2.4068-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-a4bca77f88
libreswan-4.6-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-78090d2099
nodejs-14.18.3-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-98f862bf34
firefox-96.0-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-61b55b6ebc
cryptsetup-2.3.7-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-af1728fea9
systemd-248.10-1.fc34
The following Fedora 34 Critical Path updates have yet to be approved:
Age URL
282
https://bodhi.fedoraproject.org/updates/FEDORA-2021-1300e131b6 ddpt-0.96-4.fc34
ledmon-0.95-4.fc34 libgpod-0.8.3-38.fc34 libzfcphbaapi-2.2.0-12.fc34 lsvpd-1.7.11-6.fc34
sg3_utils-1.46-1.fc34 udisks-1.0.5-18.fc34
42
https://bodhi.fedoraproject.org/updates/FEDORA-2021-c8f226c8be
annobin-9.79-3.fc34
11
https://bodhi.fedoraproject.org/updates/FEDORA-2022-6ca43a58b6
hwdata-0.355-1.fc34
7
https://bodhi.fedoraproject.org/updates/FEDORA-2022-7129fbaeed
python-lxml-4.6.5-1.fc34
7
https://bodhi.fedoraproject.org/updates/FEDORA-2022-6ca03da1d7 ndctl-72.1-1.fc34
5
https://bodhi.fedoraproject.org/updates/FEDORA-2022-875349d9f5 git-2.34.1-1.fc34
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-4b47a838eb
gnome-desktop3-40.7-1.fc34
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-e3b891fe11 gdb-11.1-7.fc34
3
https://bodhi.fedoraproject.org/updates/FEDORA-2022-90bf83c4f0
mtools-4.0.37-1.fc34
2
https://bodhi.fedoraproject.org/updates/FEDORA-2022-96c490ce12 zstd-1.5.1-6.fc34
2
https://bodhi.fedoraproject.org/updates/FEDORA-2022-9d9522bc88
gnome-shell-40.8-1.fc34 mutter-40.8-1.fc34
2
https://bodhi.fedoraproject.org/updates/FEDORA-2022-62c39ffea7
pango-1.48.11-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-312c35803c fwupd-1.7.4-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-af1728fea9
systemd-248.10-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-ec576bd84f
cups-2.3.3op2-12.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-61b55b6ebc
cryptsetup-2.3.7-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-98f862bf34
firefox-96.0-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-4edc1860d3
libmetalink-0.1.3-24.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-6367a527e4
augeas-1.13.0-1.fc34
1
https://bodhi.fedoraproject.org/updates/FEDORA-2022-48b86d586f
vim-8.2.4068-1.fc34
The following builds have been pushed to Fedora 34 updates-testing
clamav-0.103.5-1.fc34
crun-1.4.1-1.fc34
flatpak-1.10.6-1.fc34
golang-github-hashicorp-envparse-0-0.1.20220114gitd9cfd74.fc34
golang-github-hodgesds-perf-utils-0.5.1-1.fc34
golang-github-jba-printsrc-0.2.2-1.fc34
golang-github-prometheus-node-exporter-1.3.1-2.fc34
golang-github-prometheus-procfs-0.7.3-3.20220114gitfbe360a.fc34
google-api-python-client-2.35.0-1.fc34
jc-1.17.7-1.fc34
koji-1.27.1-1.fc34
libtree-ldd-3.0.2-1.fc34
mozilla-ublock-origin-1.40.8-1.fc34
openocd-0.11.0-2.fc34
pomchecker-1.2.0-2.fc34
prosody-0.11.12-1.fc34
pungi-4.3.3-1.fc34
python-jsonpickle-2.1.0-1.fc34
python-quantities-0.13.0-1.fc34
python-sklearn-nature-inspired-algorithms-0.7.1-1.fc34
python-sphinx-issues-3.0.1-1.fc34
rdma-core-37.2-2.fc34
rust-1.58.0-1.fc34
rust-ctrlc-3.2.1-1.fc34
rust-libdeflate-sys-0.7.5-1.fc34
rust-libdeflater-0.7.5-1.fc34
rust-nix-0.23.1-1.fc34
rust-nix0.22-0.22.2-1.fc34
stunnel-5.61-1.fc34
texstudio-4.2.0-1.fc34
tigervnc-1.12.0-3.fc34
ulauncher-5.14.3-1.fc34
xrdp-0.9.18-3.fc34
zabbix-5.0.19-1.fc34
Details about builds:
================================================================================
clamav-0.103.5-1.fc34 (FEDORA-2022-5b10335b54)
End-user tools for the Clam Antivirus scanner
--------------------------------------------------------------------------------
Update Information:
https://blog.clamav.net/2022/01/clamav-01035-and-01042-security-patch.html
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 13 2022 S��rgio Basto <sergio(a)serjux.com> - 0.103.5-1
- Update to 0.103.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1995855 - clamav-0.104.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1995855
--------------------------------------------------------------------------------
================================================================================
crun-1.4.1-1.fc34 (FEDORA-2022-dc463668fa)
OCI runtime written in C
--------------------------------------------------------------------------------
Update Information:
autobuilt 1.4.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 RH Container Bot <rhcontainerbot(a)fedoraproject.org> - 1.4.1-1
- autobuilt 1.4.1
--------------------------------------------------------------------------------
================================================================================
flatpak-1.10.6-1.fc34 (FEDORA-2022-f28d52fc17)
Application deployment framework for desktop apps
--------------------------------------------------------------------------------
Update Information:
Update to 1.10.6 Fixes these two security issues: * CVE-2021-43860 or
https://github.com/flatpak/flatpak/security/advisories/GHSA-qpjc-vq3c-572j *
CVE-2022-21682 or
https://github.com/flatpak/flatpak/security/advisories/GHSA-8ch7-5j3h-g4fx Full
release notes:
https://github.com/flatpak/flatpak/releases/tag/1.12.3
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Debarshi Ray <rishi(a)fedoraproject.org> - 1.10.6-1
- Update to 1.10.6
--------------------------------------------------------------------------------
================================================================================
golang-github-hashicorp-envparse-0-0.1.20220114gitd9cfd74.fc34 (FEDORA-2022-0f3b4f08af)
Minimal environment variable parser for Go
--------------------------------------------------------------------------------
Update Information:
Initial import
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 13 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 0-0.1
- Initial release
--------------------------------------------------------------------------------
================================================================================
golang-github-hodgesds-perf-utils-0.5.1-1.fc34 (FEDORA-2022-b879417f5d)
Perf Utilities for Go
--------------------------------------------------------------------------------
Update Information:
Update to 0.5.1 Close: rhbz#2003873
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 0.5.1-1
- Update to 0.5.1 Close: rhbz#2003873
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.2.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2003873 - golang-github-hodgesds-perf-utils-0.5.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2003873
--------------------------------------------------------------------------------
================================================================================
golang-github-jba-printsrc-0.2.2-1.fc34 (FEDORA-2022-88deb4337b)
Print Go values as Go source
--------------------------------------------------------------------------------
Update Information:
Preform initial import. Closes rhbz#2035685
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 11 2022 Maxwell G <gotmax(a)e.email> - 0.2.2-1
- Preform initial import. Closes rhbz#2035685
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2035685 - Review Request: golang-github-jba-printsrc - Print Go values as Go
source
https://bugzilla.redhat.com/show_bug.cgi?id=2035685
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-node-exporter-1.3.1-2.fc34 (FEDORA-2022-cc6d254197)
Exporter for machine metrics
--------------------------------------------------------------------------------
Update Information:
Fix home directory permissions
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 1.3.1-2
- Fix home directory permissions
* Fri Jan 14 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 1.3.1-1
- Update to 1.3.1 Close: rhbz#2024811 Close: rhbz#2039257
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-procfs-0.7.3-3.20220114gitfbe360a.fc34 (FEDORA-2022-ba8a33c214)
Retrieve system, kernel and process metrics from proc
--------------------------------------------------------------------------------
Update Information:
Disable tests for 32 bits arches ---- Update to 0.7.3 Close: rhbz#1994101
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 0.7.3-3
- Disable tests for 32 bits arches
* Fri Jan 14 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 0.7.3-2
- Bump to commit fbe360a68cc652b7d44167e8ec79e2ee70261569
* Fri Jan 14 2022 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> 0.7.3-1
- Update to 0.7.3 Close: rhbz#1994101
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1994101 - golang-github-prometheus-procfs-0.7.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1994101
--------------------------------------------------------------------------------
================================================================================
google-api-python-client-2.35.0-1.fc34 (FEDORA-2022-3aaa9f1eaa)
Google APIs Client Library for Python
--------------------------------------------------------------------------------
Update Information:
Update to 2.35.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 2:2.35.0-1
- Update to 2.35.0 - Closes rhbz#2040568
* Thu Jan 6 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 2:2.34.0-1
- Update to 2.34.0 - Closes rhbz#2037573
* Wed Dec 8 2021 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 2:2.33.0-1
- Update to 2.33.0 - Fixes rhbz#2030093
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2040568 - google-api-python-client-2.35.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2040568
--------------------------------------------------------------------------------
================================================================================
jc-1.17.7-1.fc34 (FEDORA-2022-73b2b095c2)
Serialize the output of CLI tools and file-types to structured JSON
--------------------------------------------------------------------------------
Update Information:
Update to v1.17.7
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Artur Frenszek-Iwicki <fedora(a)svgames.pl> - 1.17.7-1
- Update to v1.17.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2040875 - jc-1.17.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2040875
--------------------------------------------------------------------------------
================================================================================
koji-1.27.1-1.fc34 (FEDORA-2022-ef464a6b1c)
Build system tools
--------------------------------------------------------------------------------
Update Information:
Update to bugfix release 1.27.1.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 13 2022 Kevin Fenzi <kevin(a)scrye.com> - 1.27.1-1
- Update to 1.27.1. Fixes rhbz#2040251
--------------------------------------------------------------------------------
================================================================================
libtree-ldd-3.0.2-1.fc34 (FEDORA-2022-eb39d6145b)
Like ldd but as a tree
--------------------------------------------------------------------------------
Update Information:
Update to 3.0.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 3.0.2-1
- Update to 3.0.2 - Closes rhbz#2040631
* Fri Jan 14 2022 Mikel Olasagasti Uranga <mikel(a)olasagasti.info> 3.0.1-2
- Convert to rpmautospec
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2040631 - libtree-ldd-3.0.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2040631
--------------------------------------------------------------------------------
================================================================================
mozilla-ublock-origin-1.40.8-1.fc34 (FEDORA-2022-7424245ab5)
An efficient blocker for Firefox
--------------------------------------------------------------------------------
Update Information:
### Notes: Given that the format of compiled lists and selfie changed, this may
cause a noticeable delay for the first launch after updating to 1.40.0 or later
on less powerful devices. For a concrete example, in Firefox for Android I got
~7 seconds launch time after update to 1.40.0. Subsequent launches will be back
to normal, for example on mobile I get ~790ms with selfie (and "uBlock filters
-- Annoyances" enabled). On more powerful devices, this should be less
noticeable if at all. ### New A new setting in *"Filter lists"* pane to
control
whether uBO should wait for all filter lists to be loaded before unsuspending
network activity. ![Screenshot from 2021-12-30 09-51-16](https://user-images.gi
thubusercontent.com/585534/147762415-c632bceb-60b7-466c-b918-e16ae1cff555...)
By default, at browser launch uBO waits for all filter lists to be loaded before
unsuspending network activity so as to ensure web pages are properly filtered at
launch. The new setting allows to opt out of network activity suspension at
launch, i.e. allowing web pages to load without waiting for filter lists to be
fully loaded, of course at the cost of potentially not filtering properly those
web pages.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Dominik Mierzejewski <rpm(a)greysector.net> - 1.40.8-1
- update to 1.40.8 (#2034966)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2034966 - mozilla-ublock-origin-1.40.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2034966
--------------------------------------------------------------------------------
================================================================================
openocd-0.11.0-2.fc34 (FEDORA-2022-6c0d37c565)
Debugging, in-system programming and boundary-scan testing for embedded devices
--------------------------------------------------------------------------------
Update Information:
This update fixes installation of openocd with the latest version of jimtcl.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Nils Philippsen <nils(a)tiptoe.de> - 0.11.0-2
- rebuild against jimtcl-0.81
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> -
0.11.0-1.1
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2039268 - F34FailsToInstall: openocd
https://bugzilla.redhat.com/show_bug.cgi?id=2039268
--------------------------------------------------------------------------------
================================================================================
pomchecker-1.2.0-2.fc34 (FEDORA-2022-68151b24bc)
POM syntax checker
--------------------------------------------------------------------------------
Update Information:
* Add requires in cli subpackage
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 13 2022 Didik Supriadi <didiksupriadi41(a)fedoraproject.org> - 1.2.0-2
- Add requires in cli subpackage
--------------------------------------------------------------------------------
================================================================================
prosody-0.11.12-1.fc34 (FEDORA-2022-426ea6c0b7)
Flexible communications server for Jabber/XMPP
--------------------------------------------------------------------------------
Update Information:
# Prosody 0.11.12 Upstream is pleased to announce a new minor release from
their stable branch. This is a security release that addresses a denial-of-
service vulnerability in Prosody���s mod_websocket. For more information, refer to
the [20220113 advisory](https://prosody.im/security/advisory_20220113/). ##
Security * util.xml: Do not allow doctypes, comments or processing
instructions
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Robert Scheck <robert(a)fedoraproject.org> 0.11.12-1
- Upgrade to 0.11.12 (#2040350)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2040639 - CVE-2022-0217 prosody: unauthenticated remote Denial of Service
Attack
https://bugzilla.redhat.com/show_bug.cgi?id=2040639
--------------------------------------------------------------------------------
================================================================================
pungi-4.3.3-1.fc34 (FEDORA-2022-fdf455183e)
Distribution compose tool
--------------------------------------------------------------------------------
Update Information:
4.3.3-1 release: - hybrid: Explicitly pull in debugsource packages (lsedlar) -
Add module obsoletes feature (fvalder) - buildinstall: Add ability to install
extra packages in runroot (ounsal) - Ignore osbs/osbuild config when reusing iso
images (hlin) - compose: Make sure temporary dirs are world readable (lsedlar) -
Pass compose parameter for debugging git issue (hlin) - Generate images.json for
extra_isos phase (hlin) - Fix tests for python 2.6 (hlin)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Haibo Lin <hlin(a)redhat.com> - 4.3.3-1
- hybrid: Explicitly pull in debugsource packages (lsedlar)
- Add module obsoletes feature (fvalder)
- buildinstall: Add ability to install extra packages in runroot (ounsal)
- Ignore osbs/osbuild config when reusing iso images (hlin)
- compose: Make sure temporary dirs are world readable (lsedlar)
- Pass compose parameter for debugging git issue (hlin)
- Generate images.json for extra_isos phase (hlin)
- Fix tests for python 2.6 (hlin)
--------------------------------------------------------------------------------
================================================================================
python-jsonpickle-2.1.0-1.fc34 (FEDORA-2022-508650daef)
A module that allows any object to be serialized into JSON
--------------------------------------------------------------------------------
Update Information:
2.1.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Gwyn Ciesla <gwync(a)protonmail.com> - 2.1.0-1
- 2.1.0
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.0.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 2.0.0-2
- Rebuilt for Python 3.10
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2040598 - python-jsonpickle-2.1.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2040598
--------------------------------------------------------------------------------
================================================================================
python-quantities-0.13.0-1.fc34 (FEDORA-2022-fa835aa0fe)
Support for physical quantities with units, based on numpy
--------------------------------------------------------------------------------
Update Information:
Update to latest bugfix release
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Tom���� Hrn��iar <thrnciar(a)redhat.com> - 0.13.0-1
- Update to 0.13.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2040362 - python-quantities-0.13.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2040362
--------------------------------------------------------------------------------
================================================================================
python-sklearn-nature-inspired-algorithms-0.7.1-1.fc34 (FEDORA-2022-3f56c3c764)
Nature-inspired algorithms for scikit-learn
--------------------------------------------------------------------------------
Update Information:
New release
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 31 2021 Iztok Fister Jr. <iztokf AT fedoraproject DOT org> - 0.7.1-1
- Update to the latest upstream's release
--------------------------------------------------------------------------------
================================================================================
python-sphinx-issues-3.0.1-1.fc34 (FEDORA-2022-b3bee000a3)
Sphinx extension for linking to your project's issue tracker
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 3.0.1-1
- Update to latest version (#2039434)
* Tue Jan 11 2022 Elliott Sales de Andrade <quantum.analyst(a)gmail.com> 3.0.0-1
- Update to latest version (#2039133)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2039133 - python-sphinx-issues-3.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2039133
[ 2 ] Bug #2039434 - python-sphinx-issues-3.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2039434
--------------------------------------------------------------------------------
================================================================================
rdma-core-37.2-2.fc34 (FEDORA-2022-59a78d9e59)
RDMA core userspace libraries and daemons
--------------------------------------------------------------------------------
Update Information:
Rebase to upstream release rdma-core-37.2 ---- Rebase to upstream release
rdma-core-37.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Honggang Li <honli(a)redhat.com> - 37.2-2
- Update self obsolete tag
- Resolves: bz1956631
* Thu Jan 6 2022 Honggang Li <honli(a)redhat.com> - 37.2-1
- Rebase to upstream release v37.2
--------------------------------------------------------------------------------
================================================================================
rust-1.58.0-1.fc34 (FEDORA-2022-8ad99dbeb5)
The Rust Programming Language
--------------------------------------------------------------------------------
Update Information:
Update to 1.58.0: - Captured identifiers in format strings - More `#[must_use]`
in the standard library - Stabilized APIs See the [blog
post](https://blog.rust-lang.org/2022/01/13/Rust-1.58.0.html) and [release
notes](https://github.com/rust-
lang/rust/blob/master/RELEASES.md#version-1580-2022-01-13) for more details.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 13 2022 Josh Stone <jistone(a)redhat.com> - 1.58.0-1
- Update to 1.58.0.
* Wed Jan 5 2022 Josh Stone <jistone(a)redhat.com> - 1.57.0-2
- Add rust-std-static-i686-pc-windows-gnu
- Add rust-std-static-x86_64-pc-windows-gnu
--------------------------------------------------------------------------------
================================================================================
rust-ctrlc-3.2.1-1.fc34 (FEDORA-2022-ea5d0aa2c1)
Easy Ctrl-C handler for Rust projects
--------------------------------------------------------------------------------
Update Information:
- Update the nix crate to version 0.23.1. - Introduce a compat package for nix
versions 0.22.x. - Update the ctrlc crate to version 3.2.1.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Fabio Valentini <decathorpe(a)gmail.com> 3.2.1-1
- Update to version 3.2.1; Fixes RHBZ#2011594
--------------------------------------------------------------------------------
================================================================================
rust-libdeflate-sys-0.7.5-1.fc34 (FEDORA-2022-40a10b029b)
DEFLATE (de)compression exposed as non-streaming buffer operations
--------------------------------------------------------------------------------
Update Information:
Update to version 0.7.5
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 13 2022 R��mi Lauzier <remilauzier(a)protonmail.com> 0.7.5-1
- Update to version 0.7.5; Fixes RHBZ#2035001
* Thu Jan 13 2022 R��mi Lauzier <remilauzier(a)protonmail.com> 0.7.4-1
- Update to version 0.7.4; Fixes RHBZ#2035001
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> 0.7.3-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jun 23 2021 R��mi Lauzier <remilauzier(a)protonmail.com> - 0.7.3-1
- Update to 0.7.3.
- Fixes RHBZ#1975135
* Wed Jun 23 2021 R��mi Lauzier <remilauzier(a)protonmail.com> - 0.7.2-1
- Update to 0.7.2.
- Fixes RHBZ#1975135
--------------------------------------------------------------------------------
================================================================================
rust-libdeflater-0.7.5-1.fc34 (FEDORA-2022-40a10b029b)
DEFLATE (de)compression exposed as non-streaming buffer operations
--------------------------------------------------------------------------------
Update Information:
Update to version 0.7.5
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 13 2022 R��mi Lauzier <remilauzier(a)protonmail.com> 0.7.5-1
- Update to version 0.7.5; Fixes RHBZ#2035000
* Thu Jan 13 2022 R��mi Lauzier <remilauzier(a)protonmail.com> 0.7.4-1
- Update to version 0.7.4; Fixes RHBZ#2035000
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> 0.7.3-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jun 23 2021 R��mi Lauzier <remilauzier(a)protonmail.com> - 0.7.3-1
- Update to 0.7.3.
- Fixes RHBZ#1975134
--------------------------------------------------------------------------------
================================================================================
rust-nix-0.23.1-1.fc34 (FEDORA-2022-ea5d0aa2c1)
Rust friendly bindings to *nix APIs
--------------------------------------------------------------------------------
Update Information:
- Update the nix crate to version 0.23.1. - Introduce a compat package for nix
versions 0.22.x. - Update the ctrlc crate to version 3.2.1.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Fabio Valentini <decathorpe(a)gmail.com> 0.23.1-1
- Update to version 0.23.1; Fixes RHBZ#2033511
--------------------------------------------------------------------------------
================================================================================
rust-nix0.22-0.22.2-1.fc34 (FEDORA-2022-ea5d0aa2c1)
Rust friendly bindings to *nix APIs
--------------------------------------------------------------------------------
Update Information:
- Update the nix crate to version 0.23.1. - Introduce a compat package for nix
versions 0.22.x. - Update the ctrlc crate to version 3.2.1.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Fabio Valentini <decathorpe(a)gmail.com> 0.22.2-1
- Initial import (nix 0.22 compat package)
--------------------------------------------------------------------------------
================================================================================
stunnel-5.61-1.fc34 (FEDORA-2022-f580398bdf)
A TLS-encrypting socket wrapper
--------------------------------------------------------------------------------
Update Information:
# Version 5.61, 2021.12.22, urgency: LOW ## New features sponsored by the
University of Maryland * Added new "protocol = capwin" and "protocol =
capwinctrl" configuration file options. ## New features for the Windows platform
* Added client mode allowing authenticated users to view logs, reconfigure and
terminate running stunnel services. * Added support for multiple GUI and
service instances distinguised by the location of stunnel.conf. * Improved log
window scrolling. * Added a new 'Pause auto-scroll' GUI checkbox. * Double
click on the icon tray replaced with single click. * OpenSSL DLLs updated to
version 3.0.1. ## Other new features * Rewritten the testing framework in
python (thx to Peter Pentchev for inspiration and initial framework). * Added
support for missing `SSL_set_options()` values. * Updated stunnel.spec to
support RHEL8. ## Bugfixes * Fixed OpenSSL 3.0 build. * Fixed reloading
configuration with "systemctl reload stunnel.service". * Fixed incorrect
messages logged for OpenSSL errors. * Fixed printing IPv6 socket option
defaults on FreeBSD. # Version 5.60, 2021.08.16, urgency: LOW ## New features
* New 'sessionResume' service-level option to allow or disallow session
resumption * Added support for the new `SSL_set_options()` values. * Download
fresh ca-certs.pem for each new release. ## Bugfixes * Fixed 'redirect' with
'protocol'. This combination is not supported by 'smtp', 'pop3'
and 'imap'
protocols. * Enforced minimum WIN32 log window size. * Fixed support for
password-protected private keys with OpenSSL 3.0 (thx to Dmitry Belyavskiy). #
Version 5.59, 2021.04.05, urgency: HIGH ## Security bugfixes * OpenSSL DLLs
updated to version 1.1.1k. ## New features * Client-side "protocol = ldap"
support (thx to Bart Dopheide and Seth Grover). ## Bugfixes * The test suite
fixed not to require external connectivity. * Fixed paths in generated manuals
(thx to Tatsuki Makino). * Fixed configuration reload when compression is used.
* Fixed compilation with early releases of OpenSSL 1.1.1.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 10 2022 Clemens Lang <cllang(a)redhat.com> - 5.61-1
- New upstream release 5.61
--------------------------------------------------------------------------------
================================================================================
texstudio-4.2.0-1.fc34 (FEDORA-2022-98e5120933)
A feature-rich editor for LaTeX documents
--------------------------------------------------------------------------------
Update Information:
- update to 4.2.0 -
https://raw.githubusercontent.com/texstudio-
org/texstudio/master/utilities/manual/CHANGELOG.txt
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Johannes Lips <hannes(a)fedoraproject.org> 4.2.0-1
- Update to latest upstream release 4.2.0
* Mon Jan 3 2022 Ian McInerney <ian.s.mcinerney(a)ieee.org> 4.0.4-2
- Rebuild due to qtermwidget soname bump (fixes rhbz: 2036642)
--------------------------------------------------------------------------------
================================================================================
tigervnc-1.12.0-3.fc34 (FEDORA-2022-9d93c1b550)
A TigerVNC remote display system
--------------------------------------------------------------------------------
Update Information:
Tigervnc 1.12.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Jan Grulich <jgrulich(a)redhat.com> - 1.12.0-3
- Remove unavailable option from vncserver script
* Fri Jan 14 2022 Jan Grulich <jgrulich(a)redhat.com> - 1.12.0-2
- SELinux: restore SELinux context in case of different policies
* Thu Nov 11 2021 Jan Grulich <jgrulich(a)redhat.com> - 1.12.0-1
- 1.12.0
* Wed Sep 15 2021 Jan Grulich <jgrulich(a)redhat.com> - 1.11.90-1
- 1.11.90
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.11.0-14
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jul 21 2021 Jan Grulich <jgrulich(a)redhat.com> - 1.11.0-13
- Sync upstream patches + drop unused patches
- Fix logout issue with vncserver script
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2021772 - tigervnc-1.12.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2021772
--------------------------------------------------------------------------------
================================================================================
ulauncher-5.14.3-1.fc34 (FEDORA-2022-a72d82a8fb)
Linux Application Launcher
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Artem Polishchuk <ego.cordatus(a)gmail.com> 5.14.3-1
- chore(update): 5.14.3
--------------------------------------------------------------------------------
================================================================================
xrdp-0.9.18-3.fc34 (FEDORA-2022-b8d591685d)
Open source remote desktop protocol (RDP) server
--------------------------------------------------------------------------------
Update Information:
Release notes for xrdp v0.9.18 (2022/01/10) General announcements - Running
xrdp and xrdp-sesman on separate hosts is still supported by this release, but
is now deprecated. This is not secure. A future release will replace the TCP
socket used between these processes with a Unix Domain Socket, and then cross-
host running will not be possible. - Special thanks for @trishume for
contributing code to the RFX codec New features - Backgrounds and logos on
the login screen can now be zoomed and scaled (#1962) - Small change for Alpine
Linux support (#2005) - loongarch support (#2057) - Improved Fail2ban support
(#1976) Bug fixes - Logging is improved for security protocol level decisions
(#1974, #1975) - An unnecessary log error message which is always generated
when running neutrinordp has been removed (#2016) - An incorrect development
log message has been fixed (#2074) - Some informational and error messages
written to the console on stdout have been removed or replaced with log messages
(#2078 #2080) - Failure to attach to the memory area shared with xorgxrdp is
now logged (#2065) - A regression in the VNC module logging which might cause a
connection to drop out has been identified and fixed (#1989) - Remote drive
redirection now works if printer redirection is also requested by the client
(#327) - Some file names could not be copied from the client to the server over
the clipboard. This is now fixed (#1992, #1995) - A config value has been added
which allows copy-pasting of files to work with Nautilus for GNOME 3 versions >=
3.29.92 (#1994, #1996) - Clipboard now works properly when files can't be read
(#1997 #2001) - (xorgxrdp v0.2.18) The screen is fully refreshed after
initialising shared memory which should fix black screen problems like #1964 -
An incorrect initialisation reported by @qarmin has been fixed (#1909) - Some
minor memory leaks have been fixed (#2014 #2028) - A hard hang in chansrv when
copying files from the remote system has been addressed (#2032) - Users can now
capitalise username and password on the login screen if required (#2061) - Some
failed size checks in the fastpath code with --enable-devel-streamcheck have
been addressed (#2066,#2070) - Log level for clipboard restriction has been
promoted from DEVEL DEBUG to INFO (#2088) - A buffer overflow in the RFX codec
associated with large screens has been fixed (#2087) Internal changes - Some
64-bit packages are removed during the 32-bit CI build process in an attempt to
make this more robust (#1985) - Minor improvements to error checking and
logging for file copy-paste (#1996) - Now uses cppcheck 2.6 for CI builds
(#2008) - Generated systemd unit files now ignored by git (#2006) - More
internal tests (#2015) - Some unnecessary files have been removed from the
distribution (#2030) - The which command in shell scripts has been replaced
with command -v (#2067) - Additional unit tests added for g_file_get_size()
(#1988) - A compiler warning with -O3 on gcc 11.1 has been addressed (#2105) -
An unused declaration for xrdp_wm_drdynvc_up has been removed (#2098) - The SCP
V0 code has been unified, which will make it easier to update and replace
(#2011) - Monitor processing unit tests for existing xrdp_sec function have
been added (#1932) - The librfxcodec has been updated as part of #2087, and
also to add stack frames to assemble code to assist debugging Changes for
packagers or developers - The --with-imlib2 option has been added. If xrdp is
built with imlib2, the login screen supports more image formats for the
background and logo, and better quality zooming and scaling (#1962) Known
issues - On-the-fly resolution change requires the Microsoft Store version of
Remote Desktop client but sometimes crashes on connect (#1869) - xrdp's login
dialog is not relocated at the center of the new resolution after on-the-fly
resolution change happens (#1867)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Bojan Smojver <bojan(a)rexurive.com> - 1:0.9.18-3
- Add patch for imlib2 on RHEL7/8
* Wed Jan 12 2022 Bojan Smojver <bojan(a)rexurive.com> - 1:0.9.18-2
- Bump release up for rebuild
* Tue Jan 11 2022 Bojan Smojver <bojan(a)rexurive.com> - 1:0.9.18-1
- Bump up to 0.9.18
* Sat Jan 8 2022 Bojan Smojver <bojan(a)rexurive.com> - 1:0.9.17-6
- Adjust hardlink condition for EPEL 9
--------------------------------------------------------------------------------
================================================================================
zabbix-5.0.19-1.fc34 (FEDORA-2022-dfe346f53f)
Open-source monitoring solution for your IT infrastructure
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2022-23132, CVE-2022-23133, CVE-2022-23134
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 14 2022 Gwyn Ciesla <gwync(a)protonmail.com> - 1:5.0.19-1
- 5.0.19
- Fixed CVE-2022-23132, CVE-2022-23133, CVE-2022-23134.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2040746 - CVE-2022-23134 zabbix: Possible view of the setup pages by
unauthenticated users if config file already exists [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2040746
[ 2 ] Bug #2040755 - CVE-2022-23132 zabbix: Incorrect permissions of [/var/run/zabbix]
forces dac_override [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2040755
[ 3 ] Bug #2040759 - CVE-2022-23133 zabbix: Stored XSS in host groups configuration
window in Zabbix Frontend [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2040759
--------------------------------------------------------------------------------