The following Fedora 29 Security updates need testing: Age URL 53 https://bodhi.fedoraproject.org/updates/FEDORA-2018-51ce232320 xerces-c27-2.7.0-28.fc29 26 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4381dd7d0b drupal8-8.6.2-1.fc29 26 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d3f4eb1f9f drupal7-7.60-2.fc29 26 https://bodhi.fedoraproject.org/updates/FEDORA-2018-7adf863a47 php-Smarty2-2.6.31-2.fc29 14 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6aada550ca bird-1.6.4-2.fc29 14 https://bodhi.fedoraproject.org/updates/FEDORA-2018-e8ff8b7f8e rubygem-rack-2.0.4-4.fc29 12 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9edb27ef05 pdns-recursor-4.1.7-1.fc29 12 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d5fcbb9ca6 rubygem-loofah-2.2.3-1.fc29 10 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4544e8dbc8 python34-3.4.9-4.fc29 8 https://bodhi.fedoraproject.org/updates/FEDORA-2018-87f2ace20d qemu-3.0.0-2.fc29 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4003413459 mingw-uriparser-0.9.0-1.fc29 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c5c72a45ea uriparser-0.9.0-1.fc29 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6a4a3b78fd moodle-3.5.3-1.fc29 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b792d607fd python-notebook-5.7.2-1.fc29 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9f375c6c01 dnsdist-1.3.3-1.fc29
The following Fedora 29 Critical Path updates have yet to be approved: Age URL 17 https://bodhi.fedoraproject.org/updates/FEDORA-2018-053fa23050 shadow-utils-4.6-4.fc29 15 https://bodhi.fedoraproject.org/updates/FEDORA-2018-fff9c76313 xfce-polkit-0.3-1.fc29 10 https://bodhi.fedoraproject.org/updates/FEDORA-2018-3c0aaeaf9b pam-1.3.1-8.fc29 8 https://bodhi.fedoraproject.org/updates/FEDORA-2018-004d2f4e6f xfconf-4.13.6-2.fc29 8 https://bodhi.fedoraproject.org/updates/FEDORA-2018-87f2ace20d qemu-3.0.0-2.fc29 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-17cbc3c616 dnf-4.0.9-1.fc29 dnf-plugins-core-4.0.2-1.fc29 dnf-plugins-extras-4.0.0-1.fc29 libdnf-0.22.3-1.fc29
The following builds have been pushed to Fedora 29 updates-testing
BackupPC-4.3.0-1.fc29 GoldenCheetah-3.5-0.4.20181125git0c668c0.fc29 cjose-0.6.1-2.fc29 cobbler-2.8.4-5.fc29 did-0.11-1.fc29 egl-wayland-1.1.0-0.2.20181015git0eb29d4.fc29 feedreader-2.5.0-1.fc29 firejail-0.9.56-6.fc29 fmt-5.2.1-1.fc29 gala-0.3.1-0.16.20181122.gitcf8d455.fc29 gdb-8.2-4.fc29 git-2.19.2-1.fc29 golang-github-cpu-goacmedns-0.0.1-1.fc29 golang-github-rainycape-memcache-0-0.1.20181126git1031fa0.fc29 golang-gopkg-asn1-ber-1-1.3-1.fc29 golang-x-arch-0-0.1.20181126gitb19384d.fc29 keepalived-2.0.10-1.fc29 knights-18.11.80-1.fc29 libarchive-3.3.3-2.fc29 libxcrypt-4.4.0-2.fc29 lpairs-1.0.5-1.fc29 lxqt-policykit-0.13.0-2.fc29 mariadb-java-client-2.3.0-1.fc29 mongo-tools-4.0.4-2.20181124git0f0d866.fc29 netpbm-10.84.03-1.fc29 nordugrid-arc-5.4.3-2.fc29 php-bartlett-PHP-Reflect-4.3.0-1.fc29 php-fig-http-message-util-1.1.3-1.fc29 php-league-flysystem-1.0.49-1.fc29 php-pecl-event-2.4.2-1.fc29 php-pecl-yaml-2.0.4-1.fc29 php-zendframework-zend-cache-2.8.2-4.fc29 pungi-4.1.31-1.fc29 python-aiosmtpd-1.2.1-1.fc29 python-catkin_lint-1.5.4-1.fc29 python-fsleyes-0.26.4-2.fc29 python-magic-wormhole-mailbox-server-0.3.1-1.fc29 python-magic-wormhole-transit-relay-0.1.2-1.fc29 python-productmd-1.18-1.fc29 python-txtorcon-18.3.0-1.fc29 radare2-3.1.0-1.fc29 resultsdb_conventions-2.0.3-7.fc29 texlive-base-20180414-28.fc29 texstudio-2.12.12-1.fc29 wxMaxima-18.11.4-1.fc29 xdg-dbus-proxy-0.1.0-1.fc29 xpra-2.4.2-2.fc29
Details about builds:
================================================================================ BackupPC-4.3.0-1.fc29 (FEDORA-2018-938e9de51a) High-performance backup system -------------------------------------------------------------------------------- Update Information:
This release includes a couple of new features (eg, checking inode usage on the BackupPC filesystem) and a few improvements (eg, html table sorting), and several bug fixes: * Merged pull requests #200, #208, #216, #217, #229, #230, #231, #232, #233, #235. * Added checking of file system inode usage, with new configuration settings $Conf{DfInodeUsageCmd} and $Conf{DfMaxInodeUsagePct}. * bin/BackupPC_tarExtract: fixes to hardlink handling on incrementals, plus cleanup * bin/BackupPC_backupDuplicate: fixed directory creation for copying v3 backups. * bin/BackupPC_backupDelete: couple of inode-related bug fixes; also do fsck if $Conf{RefCntFsck} != 0. * bin/BackupPC: fixed handling of dhcp hosts, reported by Jean-Marc. * bin/BackupPC: improved version check of rsync_bpc to allow period before "beta", reported by @ktenney in issue #214. * Added $Conf{EMailAdminSubject} to allow the admin email subject to be set. * Changed default $Conf{CgiDateFormatMMDD} to 2 (YYYY-MM-DD), submitted by @moisseev (#231). * Allow multiple groups in $Conf{CgiAdminUserGroup}, submitted by @moisseev (#235). * Improvements to html table sorting, and made more tables sortable, submitted by @brenard and @moisseev (issue #199, PRs #200, #229, #230, #232). * Add action type column to queue status page (#208), submitted by @brenard. * lib/BackupPC/CGI/Summary.pm: host summary only reports age of completed backups (not partial or active), suggested by Michael Selway. * lib/BackupPC/CGI/HostInfo.pm: show active backup as partial if there is no job running (to handle case of abnormal exit of BackupPC), reported by @8666 in issue #220. * systemd/src/backuppc.service: added ExecReload, submitted by @opoplawski (#233). * lib/BackupPC/Xfer/Rsync.pm: empty $Conf{RsyncdPasswd} is no longer fatal; removed remaining mentions of RsyncdAuthRequired from conf/config.pl and lib/BackupPC/Config/Meta.pm; reported by @jooola in issue #224. * bin/BackupPC_dump: moved alarm($Conf{ClientTimeout}) to after all the pre-backup code (including expiry, duplication etc of backups, which could be slow) reprted by Michael Selway. * bin/BackupPC_refCntUpdate: added a couple of bpc_progress_state prints to improve status reporting during nightly (-m), reprted by Michael Selway. * lib/BackupPC/CGI/RSS.pm: added Disabled value to host info (copied from $Conf{BackupsDisable}); suggested by @danielmotaleite (issue #222). * lib/BackupPC/Xfer/Rsync.pm: added checks for a couple of common rsync file error and error exit messages that now increment the xferErrs count. * bin/BackupPC_tarExtract: errors related to a particular file are counted as Xfer errors, rather than considered fatal. * bin/BackupPC_dump: added check that $LogFd is defined before using it. * lib/BackupPC/Lib.pm: replaced exit() with POSIX::_exit() so that object destruction is skipped in the child process. This fixes corruption of the compressed XferLOG file if the exec of $Conf{DumpPostUserCmd} fails. * conf/config.pl: updated project home page to https://backuppc.github.io/backuppc in email message footers. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Richard Shaw hobbes1069@gmail.com - 4.3.04.3.0-11 - Update to 4.3.0. * Mon Nov 5 2018 Orion Poplawski orion@nwra.com - 4.2.1-4 - Add reload support to systemd service file --------------------------------------------------------------------------------
================================================================================ GoldenCheetah-3.5-0.4.20181125git0c668c0.fc29 (FEDORA-2018-b99c7d514d) Cycling Performance Software -------------------------------------------------------------------------------- Update Information:
- Add %{name}-lmfit-levmar.patch - Update to git0c668c0 --------------------------------------------------------------------------------
================================================================================ cjose-0.6.1-2.fc29 (FEDORA-2018-8669394e21) C library implementing the Javascript Object Signing and Encryption (JOSE) -------------------------------------------------------------------------------- Update Information:
fix concatkdf failures on big endian architectures -------------------------------------------------------------------------------- ChangeLog:
* Thu Aug 2 2018 jdennis@redhat.com - 0.6.1-2 - fix concatkdf big endian architecture problem. Upstream issue #77. * Wed Aug 1 2018 jdennis@redhat.com - 0.6.1-1 - upgrade to latest upstream 0.6.1 --------------------------------------------------------------------------------
================================================================================ cobbler-2.8.4-5.fc29 (FEDORA-2018-22c609e92a) Boot server configurator -------------------------------------------------------------------------------- Update Information:
Fix empty man pages ---- - Revert bind_manage_ipmi feature that is broken on 2.8 - Use pathfix.py to fix python shebangs ---- - Update to 2.8.4 (Fixes BZ 1613292, 1643860, 1614433, CVE-2018-1000226, CVE-2018-10931) - Make koan require python2-ethtool (BZ 1638933) -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Orion Poplawski orion@nwra.com - 2.8.4-5 - Fix empty man pages (BZ 1653415) * Mon Nov 26 2018 Orion Poplawski orion@nwra.com - 2.8.4-4 - Revert bind_manage_ipmi feature that is broken on 2.8 * Sun Nov 25 2018 Orion Poplawski orion@nwra.com - 2.8.4-3 - Use pathfix.py to fix python shebangs * Sun Nov 25 2018 Orion Poplawski orion@nwra.com - 2.8.4-2 - Make koan require python2-ethtool (BZ 1638933) * Sat Nov 24 2018 Orion Poplawski orion@nwra.com - 2.8.4-1 - Update to 2.8.4 (Fixes BZ 1613292, 1643860, 1614433, CVE-2018-1000226, CVE-2018-10931) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1653415 - Man page of cobbler and koam is empty https://bugzilla.redhat.com/show_bug.cgi?id=1653415 [ 2 ] Bug #1643860 - Kickstart generation is broken https://bugzilla.redhat.com/show_bug.cgi?id=1643860 [ 3 ] Bug #1614433 - CVE-2018-10931 cobbler: CobblerXMLRPCInterface exports all its methods over XMLRPC [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1614433 [ 4 ] Bug #1613292 - cobbler: XMLRPC API endpoints are not correctly validating security tokens [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1613292 [ 5 ] Bug #1638933 - koan RPM should require python-ethtool https://bugzilla.redhat.com/show_bug.cgi?id=1638933 --------------------------------------------------------------------------------
================================================================================ did-0.11-1.fc29 (FEDORA-2018-a028b681ac) What did you do last week, month, year? -------------------------------------------------------------------------------- Update Information:
Pagure, Sentry, Redmine, gssapi, packaging... -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Petr ��pl��chal psplicha@redhat.com 0.11-1 - Validate plugin types in config [fix #148] - Use email for searching Jira issues [fix #122] - Handle authentication errors in the Jira plugin - Update shebang to explicitly use python2 - Add a new section Questions to docs [fix #155] - Raise error on unsuccessful request [fix #154] - New plugin for Pagure stats [fix #153] - Use requests-gssapi for Jira stats - Fix problems with the Sentry plugin - Merge configurable ssl verify for gitlab [#136] - Merge the improved gitlab search [#137] - Merge the new redmine plugin [#135] - Some minor adjustments for the redmine plugin - GitHub stats about reviewed PRs [#127] - Remove zero-fill from Jira issues [fix #149] - Add oauth2client to docs requirements [fix #152] - Adjust until limit of the sentry plugin [fix #151] - Update test data for the sentry & google plugins - Update Python macros to new packaging standards - Port to python-gssapi - Fixed issue with failing tests - Remove the idonethis plugin - Merge the new sentry plugin - Add basic Redmine support - Add basic GitLab support - Add search for subscribed bugs - Add did.spec to MANIFEST.in - Merge fix for bugs patched when created [#109] - Merge the new Bugzilla query syntax [#111] - Fetch only needed stats during GitHub testing - Merge support for pull request separation [#114] - Show month name / week number by default [#106] -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1264876 - did-0.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1264876 [ 2 ] Bug #1634529 - [abrt] did: main(): cli.py:209:main:AttributeError: 'GSSError' object has no attribute 'gen_msg' https://bugzilla.redhat.com/show_bug.cgi?id=1634529 [ 3 ] Bug #1635156 - None https://bugzilla.redhat.com/show_bug.cgi?id=1635156 --------------------------------------------------------------------------------
================================================================================ egl-wayland-1.1.0-0.2.20181015git0eb29d4.fc29 (FEDORA-2018-82fe88f036) Wayland EGL External Platform library -------------------------------------------------------------------------------- Update Information:
- Bug fix -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Leigh Scott leigh123linux@googlemail.com - 1.1.0-0.2.20181015git0eb29d4 - Update to latest git snapshot (rhbz#1653118) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1653118 - libnvidia-egl-wayland.so lacks wl_eglstream_interface symbol https://bugzilla.redhat.com/show_bug.cgi?id=1653118 --------------------------------------------------------------------------------
================================================================================ feedreader-2.5.0-1.fc29 (FEDORA-2018-b58b80e564) RSS desktop client -------------------------------------------------------------------------------- Update Information:
Update to 2.5.0 -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Pete Walter pwalter@fedoraproject.org - 2.5.0-1 - Update to 2.5.0 --------------------------------------------------------------------------------
================================================================================ firejail-0.9.56-6.fc29 (FEDORA-2018-28ec441aa8) Linux namespaces sandbox program -------------------------------------------------------------------------------- Update Information:
Firejail is a SUID sandbox program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces. It includes a sandbox profile for Mozilla Firefox. --------------------------------------------------------------------------------
================================================================================ fmt-5.2.1-1.fc29 (FEDORA-2018-92f1137797) Small, safe and fast formatting library for C++ -------------------------------------------------------------------------------- Update Information:
update to fmt-5.2.1. see https://github.com/fmtlib/fmt/blob/master/ChangeLog.rst for more details. the only package(s) that depend on fmt is kodi. but kodi is statically linked against libfmt. so updating fmt does not break it. -------------------------------------------------------------------------------- ChangeLog:
* Thu Oct 11 2018 Kefu Chai tchaikov@gmail.com - 5.2.1-1 - Update to 5.2.1 - Build using python3 packages on fedora - Remove links in document accessing network - Package ChangeLog.rst and README.rst - Drop fmt-static package -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1465701 - fmt-5.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1465701 --------------------------------------------------------------------------------
================================================================================ gala-0.3.1-0.16.20181122.gitcf8d455.fc29 (FEDORA-2018-ac4fb0a76a) Gala window manager -------------------------------------------------------------------------------- Update Information:
Bump to commit cf8d455, fixing some smaller issues. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Fabio Valentini decathorpe@gmail.com - 0.3.1-0.16.20181122.gitcf8d455 - Bump to commit cf8d455. --------------------------------------------------------------------------------
================================================================================ gdb-8.2-4.fc29 (FEDORA-2018-13e565ca15) A stub package for GNU source-level debugger -------------------------------------------------------------------------------- Update Information:
Fix 'GDB crashes when running from a deleted directory' (Tom Tromey, RHBZ 1653410). -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Sergio Durigan Junior sergiodj@redhat.com - 8.2-4.fc29 - Fix 'GDB crashes when running from a deleted directory' (Tom Tromey, RHBZ 1653410). -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1653410 - GDB crashes when running from a deleted directory https://bugzilla.redhat.com/show_bug.cgi?id=1653410 --------------------------------------------------------------------------------
================================================================================ git-2.19.2-1.fc29 (FEDORA-2018-f467c36c2b) Fast Version Control System -------------------------------------------------------------------------------- Update Information:
Upstream bugfix and security update. Refer to the [release notes](https://www.kernel.org/pub/software/scm/git/docs/RelNotes/2.19.2.txt) for general information and upstream commit [321fd82389](https://github.com/git/git/commit/321fd82389) for details on CVE-2018-19486. -------------------------------------------------------------------------------- ChangeLog:
* Wed Nov 21 2018 Todd Zullinger tmz@pobox.com - 2.19.2-1 - Update to 2.19.2 * Tue Oct 23 2018 Todd Zullinger tmz@pobox.com - Skip test BuildRequires when --without tests is used - Simplify gpg verification of Source0 - Use %{without ...} macro consistently - Add comments to %endif statements - Add glibc-langpack-en BuildRequires for en_US.UTF-8 locale * Mon Oct 22 2018 Pavel Cahyna pcahyna@redhat.com - 2.19.1-2 - Update condition for the t5540-http-push-webdav test for future RHEL -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1653143 - CVE-2018-19486 git: Improper handling of PATH allows for commands to executed from current directory https://bugzilla.redhat.com/show_bug.cgi?id=1653143 --------------------------------------------------------------------------------
================================================================================ golang-github-cpu-goacmedns-0.0.1-1.fc29 (FEDORA-2018-904bcbb471) A Go library to handle acme-dns client communication -------------------------------------------------------------------------------- Update Information:
- Initial package -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1650676 - Review Request: golang-github-cpu-goacmedns - A Go library to handle acme-dns client communication and persistent account storage https://bugzilla.redhat.com/show_bug.cgi?id=1650676 --------------------------------------------------------------------------------
================================================================================ golang-github-rainycape-memcache-0-0.1.20181126git1031fa0.fc29 (FEDORA-2018-cb2f797072) Memcache client library for the Go programming language -------------------------------------------------------------------------------- Update Information:
- Initial package -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1650370 - Review Request: golang-github-rainycape-memcache - Memcache client library for the Go programming language https://bugzilla.redhat.com/show_bug.cgi?id=1650370 --------------------------------------------------------------------------------
================================================================================ golang-gopkg-asn1-ber-1-1.3-1.fc29 (FEDORA-2018-4998e31e1d) ASN1 BER Encoding / Decoding Library for Go -------------------------------------------------------------------------------- Update Information:
Update to version 1.3. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Fabio Valentini decathorpe@gmail.com - 1.3-1 - Update to version 1.3. * Wed Oct 24 2018 Fabio Valentini decathorpe@gmail.com - 1.2-2 - Use autosetup instead of gosetup. --------------------------------------------------------------------------------
================================================================================ golang-x-arch-0-0.1.20181126gitb19384d.fc29 (FEDORA-2018-4dabe194d3) Machine architecture information used by the Go toolchain -------------------------------------------------------------------------------- Update Information:
First package for Fedora -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1645681 - Review Request: golang-x-arch - Machine architecture information used by the Go toolchain https://bugzilla.redhat.com/show_bug.cgi?id=1645681 --------------------------------------------------------------------------------
================================================================================ keepalived-2.0.10-1.fc29 (FEDORA-2018-3fbc181b3e) High Availability monitor built upon LVS, VRRP and service pollers -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2018-19044, CVE-2018-19045, CVE-2018-19046, CVE-2018-19047 -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Ryan O'Hara rohara@redhat.com - 2.0.10-1 - Update to 2.0.10 - Fix improper pathname validation (#1651864, CVE-2018-19044) - Fix insecure permissions when creating temporary files (#1651868, CVE-2018-19045) - Fix insecure use of temporary files (#1651870, CVE-2018-19046) - Fix buffer overflow when parsing HTTP status codes (#1651873, CVE-2018-19047) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1651863 - CVE-2018-19044 keepalived: Improper pathname validation allows for overwrite of arbitrary filenames via symlinks https://bugzilla.redhat.com/show_bug.cgi?id=1651863 [ 2 ] Bug #1651866 - CVE-2018-19045 keepalived: Insecure permissions when creating new temporary files allows for leaking of sensitive data https://bugzilla.redhat.com/show_bug.cgi?id=1651866 [ 3 ] Bug #1651869 - CVE-2018-19046 keepalived: Insecure use of temporary files allows attackers read sensitive information from pre-existing files https://bugzilla.redhat.com/show_bug.cgi?id=1651869 [ 4 ] Bug #1651871 - CVE-2018-19115 keepalived: Heap-based buffer overflow when parsing HTTP status codes allows for denial of service https://bugzilla.redhat.com/show_bug.cgi?id=1651871 --------------------------------------------------------------------------------
================================================================================ knights-18.11.80-1.fc29 (FEDORA-2018-e7cef81440) A chess board for KDE -------------------------------------------------------------------------------- Update Information:
18.11.80 -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Gwyn Ciesla limburgher@gmail.com - 18.11.80-1 - 18.11.80 --------------------------------------------------------------------------------
================================================================================ libarchive-3.3.3-2.fc29 (FEDORA-2018-cfc017f072) A library for handling streaming archive formats -------------------------------------------------------------------------------- Update Information:
build-requires libzstd-devel, fix some covscan issues -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Pavel Raiskup praiskup@redhat.com - 3.3.3-2 - fix some covscan issues (rhbz#1602575) - build-requires libzstd-devel (rhbz#1653046) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1653046 - Build with libzstd https://bugzilla.redhat.com/show_bug.cgi?id=1653046 --------------------------------------------------------------------------------
================================================================================ libxcrypt-4.4.0-2.fc29 (FEDORA-2018-7b03117028) Extended crypt library for DES, MD5, Blowfish and others -------------------------------------------------------------------------------- Update Information:
- Backport upstream commit to use a safer strcpy for the NT method. - Backport upstream generating base64 encoded output for NT gensalt. - Backport upstream commit to require less rbytes for NT gensalt. - Backport upstream commit to test incremental hmac-sha256 computation. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Bj��rn Esser besser82@fedoraproject.org - 4.4.0-2 - Backport upstream commit to use a safer strcpy for the NT method - Backport upstream generating base64 encoded output for NT gensalt - Backport upstream commit to require less rbytes for NT gensalt - Backport upstream commit to test incremental hmac-sha256 computation - Add Recommends: mkpasswd for Fedora >= 30 --------------------------------------------------------------------------------
================================================================================ lpairs-1.0.5-1.fc29 (FEDORA-2018-15d853032b) Classical memory game with cards -------------------------------------------------------------------------------- Update Information:
From the changelog for 1.0.5: - reduced delay to prevent event loop from dying - fixed compiler warnings and errors - improved ingame font - always choose set from all icons - added animation for removing cards -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Marcin Zajaczkowski <mszpak ATT wp DOTT pl> - 1.0.5-1 - Upgrade to 1.0.5 (Bug 1653264) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1653264 - lpairs-1.0.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1653264 --------------------------------------------------------------------------------
================================================================================ lxqt-policykit-0.13.0-2.fc29 (FEDORA-2018-74613f5668) PolicyKit agent for LXQt desktop suite -------------------------------------------------------------------------------- Update Information:
Fix policykit agent path. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Zamir SUN zsun@fedoraproject.org - 0.13.0-2 - Fix policykit agent path. - Resolves: RHBZ 1648579 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1648579 - firewall-config in menu fails to prompt for elevated privileges https://bugzilla.redhat.com/show_bug.cgi?id=1648579 --------------------------------------------------------------------------------
================================================================================ mariadb-java-client-2.3.0-1.fc29 (FEDORA-2018-91b9671a3d) Connects applications developed in Java to MariaDB and MySQL databases -------------------------------------------------------------------------------- Update Information:
Update to 2.3 series. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Jakub Janco jjanco@redhat.com - 2.3.0-1 - new version --------------------------------------------------------------------------------
================================================================================ mongo-tools-4.0.4-2.20181124git0f0d866.fc29 (FEDORA-2018-8735feef3b) MongoDB Tools -------------------------------------------------------------------------------- Update Information:
Rebase to latest upstream release 4.0.4 -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 mskalick@redhat.com - 4.0.4-2.git0f0d866 - Cleanup spec file * Sat Nov 24 2018 mskalick@redhat.com - 4.0.4-1.git0f0d866 - Rebase to mongo-tools 4.0.4 * Tue Oct 23 2018 Nicolas Mailhot nim@fedoraproject.org - 3.6.3-0.6 - redhat-rpm-config-123 triggers bugs in gosetup, remove it from Go spec files as it���s just an alias - https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/... -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1564710 - mongo-tools-4.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1564710 --------------------------------------------------------------------------------
================================================================================ netpbm-10.84.03-1.fc29 (FEDORA-2018-8069447986) A library for handling different graphics file formats -------------------------------------------------------------------------------- Update Information:
Update netpbm to the last upstream version. netpbm now uses system version of libraries jsasper and jbigkit. -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 23 2018 Josef Ridky jridky@redhat.com - 10.84.03-1 - New upstream release (#1634256) * Wed Nov 21 2018 Josef Ridky jridky@redhat.com - 10.83.01-2 - Use system version of jasper and jbigkit library (#1651965) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1651965 - netpbm should use system jasper and jbigkit https://bugzilla.redhat.com/show_bug.cgi?id=1651965 [ 2 ] Bug #1634256 - New versions (10.84, 10.73.21 [stable], 10.47.70 [super stable]) https://bugzilla.redhat.com/show_bug.cgi?id=1634256 --------------------------------------------------------------------------------
================================================================================ nordugrid-arc-5.4.3-2.fc29 (FEDORA-2018-1f02754436) Advanced Resource Connector Grid Middleware -------------------------------------------------------------------------------- Update Information:
Openssl 1.1.1 compatibility fix. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Mattias Ellert mattias.ellert@physics.uu.se - 5.4.3-2 - Fix for changed default initialization options in OpenSSL 1.1.1 --------------------------------------------------------------------------------
================================================================================ php-bartlett-PHP-Reflect-4.3.0-1.fc29 (FEDORA-2018-4532fa1a14) Adds the ability to reverse-engineer PHP -------------------------------------------------------------------------------- Update Information:
**Version 4.3.0** Upstream doesn't care to maintain a changelog, see https://github.com/llaville/php-reflect/issues/29 -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Remi Collet remi@remirepo.net - 4.3.0-1 - update to 4.3.0 - use range dependencies - raise dependency on nikic/php-parser 3.1 - raise dependency on doctrine/collections 1.4 - add dependency on psr/log - allow Symfony 4 - switch to phpunit7 --------------------------------------------------------------------------------
================================================================================ php-fig-http-message-util-1.1.3-1.fc29 (FEDORA-2018-a1ddb9b3e8) PSR Http Message Util -------------------------------------------------------------------------------- Update Information:
**Version 1.1.3** - 2018-11-19 * **Added** - [#10](https://github.com/php- fig/http-message-util/pull/10) adds the constants `StatusCodeInterface::STATUS_EARLY_HINTS` (103) and `StatusCodeInterface::STATUS_TOO_EARLY` (425). -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Remi Collet remi@remirepo.net - 1.1.3-1 - update to 1.1.3 --------------------------------------------------------------------------------
================================================================================ php-league-flysystem-1.0.49-1.fc29 (FEDORA-2018-09c71f2743) Filesystem abstraction: Many filesystems, one API -------------------------------------------------------------------------------- Update Information:
**Version 1.0.49** - 2018-11-24 * It's my birthday today. * Error message for directory creation in the Local adapter has a better description with more context. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Remi Collet remi@remirepo.net - 1.0.49-1 - update to 1.0.49 --------------------------------------------------------------------------------
================================================================================ php-pecl-event-2.4.2-1.fc29 (FEDORA-2018-24ef3815a8) Provides interface to libevent library -------------------------------------------------------------------------------- Update Information:
**Version 2.4.2** * Fixed: SSL verification callback failed when EventSslContext was used with either EventBufferEvent::createSslFilter or EventBufferEvent::sslFilter. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Remi Collet remi@remirepo.net - 2.4.2-1 - update to 2.4.2 --------------------------------------------------------------------------------
================================================================================ php-pecl-yaml-2.0.4-1.fc29 (FEDORA-2018-3f34a4bc3a) Support for YAML 1.1 serialization using the LibYAML library -------------------------------------------------------------------------------- Update Information:
**Version 2.0.4** Bugs Fixed: - fix #72540 yaml_parse_url: check php_stream_copy_to_mem return value -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Remi Collet remi@remirepo.net - 2.0.4-1 - update to 2.0.4 --------------------------------------------------------------------------------
================================================================================ php-zendframework-zend-cache-2.8.2-4.fc29 (FEDORA-2018-2bf084a271) Zend Framework Cache component -------------------------------------------------------------------------------- Update Information:
Fix autoloader for psr/cache and psr/simple-cache. -------------------------------------------------------------------------------- ChangeLog:
* Sun Nov 25 2018 Remi Collet remi@remirepo.net - 2.8.2-4 - fix autoloader for psr/cache and psr/simple-cache --------------------------------------------------------------------------------
================================================================================ pungi-4.1.31-1.fc29 (FEDORA-2018-6682778e13) Distribution compose tool -------------------------------------------------------------------------------- Update Information:
The main change for Fedora in this release is that phase ordering is tweaked to run ostree sooner in the process. This should make composes a little faster. This was actually tested before, but did not work due to bugs in the entire stack. Those should now be fixed. The files created in Koji runroot environment are now changed to be owned by the user running process. This should simplify cleanup of old composes in Bodhi. Handling configuration files is refactored. * Pungi can now read a JSON config file. * There is a script that can dump configuration from a compose or merged multiple files. * Copies of config in the logs/ directory are no longer renamed. * Dump of config in JSON format now has a predictable name without a timestamp. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Lubom��r Sedl���� lsedlar@redhat.com - 4.1.31-1 - Remove patches keeping old ostree phase ordering - Add script to merge and dump multiple configuration files (lsedlar) - Move resolving git reference to config validation (lsedlar) - util: Add a cache for resolved git urls (lsedlar) - Copy config files into logs/global/config-copy/ directory (mboddu) - Remove timestamp from config dump (lsedlar) - extra_iso: Support extra files in directory (lsedlar) - extra_iso: Include extra_files.json metadata (lsedlar) - Allow reading configuration from JSON (lsedlar) - Cleanup parsing treefile (lsedlar) - Fix convert rpm_ostree config to YAML (mboddu) - koji_wrapper: Change owner of runroot output (lsedlar) - util: Preserve symlinks when copying (lsedlar) - Move from yaml.load to yaml.safe_load (patrick) - extra_iso: Stop including variant extra files (lsedlar) - gather: Expand wildcards in package names for nodeps (lsedlar) - Configure image name per variant (lsedlar) - init: Keep parent groups in addon comps environments (lsedlar) - Support more specific config for devel modules (lsedlar) - Load supported milestones from productmd (lsedlar) - hybrid: Remove dead code (lsedlar) - Remove dead code (lsedlar) --------------------------------------------------------------------------------
================================================================================ python-aiosmtpd-1.2.1-1.fc29 (FEDORA-2018-4bd3481bd4) Asyncio-based SMTP server -------------------------------------------------------------------------------- Update Information:
Update to 1.2.1. -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 20 2018 Aurelien Bompard abompard@fedoraproject.org - 1.2.1-1 - Update to 1.2.1. --------------------------------------------------------------------------------
================================================================================ python-catkin_lint-1.5.4-1.fc29 (FEDORA-2018-55760051a4) Check catkin packages for common errors -------------------------------------------------------------------------------- Update Information:
Update to latest upstream release -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Scott K Logan logans@cottsay.net - 1.5.4-1 - Update to 1.5.4 - Align spec with current python examples --------------------------------------------------------------------------------
================================================================================ python-fsleyes-0.26.4-2.fc29 (FEDORA-2018-01c6765154) FSLeyes, the FSL image viewer -------------------------------------------------------------------------------- Update Information:
* Corrects wrong requires -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Ankur Sinha <ankursinha AT fedoraproject DOT org> - 0.26.4-2 - Fix requires - Enable available requires --------------------------------------------------------------------------------
================================================================================ python-magic-wormhole-mailbox-server-0.3.1-1.fc29 (FEDORA-2018-e210a8adca) Securely transfer data between computers -------------------------------------------------------------------------------- Update Information:
Initial packaging for fedora. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1652212 - Review Request: python-magic-wormhole-mailbox-server - Securely transfer data between computers https://bugzilla.redhat.com/show_bug.cgi?id=1652212 --------------------------------------------------------------------------------
================================================================================ python-magic-wormhole-transit-relay-0.1.2-1.fc29 (FEDORA-2018-c52cbb819e) Transit Relay server for Magic-Wormhole -------------------------------------------------------------------------------- Update Information:
Initial packaging for fedora. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1652216 - Review Request: python-magic-wormhole-transit-relay - Transit Relay server for Magic-Wormhole https://bugzilla.redhat.com/show_bug.cgi?id=1652216 --------------------------------------------------------------------------------
================================================================================ python-productmd-1.18-1.fc29 (FEDORA-2018-3bf567db90) Library providing parsers for metadata related to OS installation -------------------------------------------------------------------------------- Update Information:
- Add SecurityFix label - Fix `get_major_version` on inputs with more than two components -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 23 2018 Lubom��r Sedl���� lsedlar@redhat.com - 1.18-1 - Add SecurityFix label - Fix get_major_version on inputs with more than two components --------------------------------------------------------------------------------
================================================================================ python-txtorcon-18.3.0-1.fc29 (FEDORA-2018-c48e687b13) Twisted-based Tor controller client -------------------------------------------------------------------------------- Update Information:
Initial packaging for fedora. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1652760 - Review Request: python-txtorcon - Twisted-based Tor controller client https://bugzilla.redhat.com/show_bug.cgi?id=1652760 --------------------------------------------------------------------------------
================================================================================ radare2-3.1.0-1.fc29 (FEDORA-2018-565f43610f) The reverse engineering framework -------------------------------------------------------------------------------- Update Information:
rebase to upstream version 3.1.0 -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 23 2018 Riccardo Schirone rschirone91@gmail.com 3.1.0-1 - rebase to upstream version 3.1.0 - remove duplicated /usr/share/radare2 dir in %files --------------------------------------------------------------------------------
================================================================================ resultsdb_conventions-2.0.3-7.fc29 (FEDORA-2018-e91bd1941c) Library defining conventions for ResultsDB results -------------------------------------------------------------------------------- Update Information:
This update adds a Python 3 build. -------------------------------------------------------------------------------- ChangeLog:
* Thu Nov 22 2018 Adam Williamson awilliam@redhat.com - 2.0.3-7 - Also obsolete Python 2 -fedora subpackage on F30+ * Thu Nov 22 2018 Adam Williamson awilliam@redhat.com - 2.0.3-6 - Disable Python 2 build on F30+, EL8+ * Fri Nov 9 2018 Frantisek Zatloukal fzatlouk@redhat.com - 2.0.3-5 - Let's build also python3 packages --------------------------------------------------------------------------------
================================================================================ texlive-base-20180414-28.fc29 (FEDORA-2018-a496e9536c) TeX formatting system -------------------------------------------------------------------------------- Update Information:
- do not try to ls /usr/share/texlive/fmtutil.cnf.d, it can be empty, and that makes for noisy errors in scripts (bz1650935) Thanks to Villy Kruse. - fix pkgconfig cleanup sed to use %%{source_date} instead of %%{version} which is overridden with subpackage specific data at that point.(bz1426622) -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Tom Callaway spot@fedoraproject.org - 7:20180414-28 - do not try to ls /usr/share/texlive/fmtutil.cnf.d, it can be empty, and that makes for noisy errors in scripts (bz1650935) Thanks to Villy Kruse. - fix pkgconfig cleanup sed to use %{source_date} instead of %{version} which is overridden with subpackage specific data at that point. (bz1426622) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1426622 - synctex.pc contains buildroot path instead of /usr https://bugzilla.redhat.com/show_bug.cgi?id=1426622 [ 2 ] Bug #1650935 - Error from trigger-script during upgrade of texlive packages. https://bugzilla.redhat.com/show_bug.cgi?id=1650935 --------------------------------------------------------------------------------
================================================================================ texstudio-2.12.12-1.fc29 (FEDORA-2018-dd0e005f94) A feature-rich editor for LaTeX documents -------------------------------------------------------------------------------- Update Information:
- update to 2.12.12 - changelog https://raw.githubusercontent.com/texstudio-org/ texstudio/fff9ed38a542ce2a5da8a58a46f0e5832ead0dcc/utilities/manual/CHANGELOG.tx t -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Johannes Lips hannes@fedoraproject.org 2.12.12-1 - Update to latest upstream bugfix release 2.12.12 --------------------------------------------------------------------------------
================================================================================ wxMaxima-18.11.4-1.fc29 (FEDORA-2018-a19c1577f1) Graphical user interface for Maxima -------------------------------------------------------------------------------- Update Information:
Latest stable upstream release. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Rex Dieter rdieter@fedoraproject.org - 18.11.4-1 - 18.11.4 * Fri Nov 9 2018 Rex Dieter rdieter@fedoraproject.org - 18.10.2-1 - 18.10.2 * Fri Nov 9 2018 Rex Dieter rdieter@fedoraproject.org - 18.10.1-1 - 18.10.1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1643722 - wxmaxima (18.02.10) does not properly render text after scrooling the page https://bugzilla.redhat.com/show_bug.cgi?id=1643722 --------------------------------------------------------------------------------
================================================================================ xdg-dbus-proxy-0.1.0-1.fc29 (FEDORA-2018-493a8e6d1f) Filtering proxy for D-Bus connections -------------------------------------------------------------------------------- Update Information:
xdg-dbus-proxy is a filtering proxy for D-Bus connections. It was originally part of the flatpak project, but it has been broken out as a standalone module to facilitate using it in other contexts. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1652862 - Review Request: xdg-dbus-proxy - Filtering proxy for D-Bus connections https://bugzilla.redhat.com/show_bug.cgi?id=1652862 --------------------------------------------------------------------------------
================================================================================ xpra-2.4.2-2.fc29 (FEDORA-2018-de89518dc1) Remote display server for applications and desktops -------------------------------------------------------------------------------- Update Information:
- Release 2.4.2 -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 26 2018 Antonio Trande sagitter@fedoraproject.org - 2.4.2-2 - Add inotify dependency (rhbz#1653096) * Fri Nov 23 2018 Antonio Trande sagitter@fedoraproject.org - 2.4.2-1 - Update to 2.4.2 * Wed Oct 31 2018 Antonio Trande sagitter@fedoraproject.org - 2.4.1-1 - Update to 2.4.1 - Add Python Cairo library BR * Mon Oct 15 2018 Antonio Trande sagitter@fedoraproject.org - 2.4-1 - Update to 2.4 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1653096 - dnf install xpra-2.3.4-1.fc29.src.rpm suceeds but attempt to connect fails without python2-inotify-0.9.6-13.fc29.noarch https://bugzilla.redhat.com/show_bug.cgi?id=1653096 --------------------------------------------------------------------------------