The following Fedora 28 Security updates need testing: Age URL 378 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d510cfd7eb jgraphx-3.6.0.0-6.fc28 328 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d7aeaa74da nodejs-brace-expansion-1.1.11-1.fc28 327 https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc073fdc1a nodejs-atob-2.1.1-1.fc28 203 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc4b7af297 xerces-c27-2.7.0-28.fc28 155 https://bodhi.fedoraproject.org/updates/FEDORA-2018-aa3752ac3c nginx-1.14.1-1.fc28 134 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc86ef9e22 squid-4.4-1.fc28 61 https://bodhi.fedoraproject.org/updates/FEDORA-2019-86412405d5 bind-9.11.5-4.P4.fc28 49 https://bodhi.fedoraproject.org/updates/FEDORA-2019-63029a7692 libu2f-host-1.1.8-1.fc28 29 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ba19e79e9a thunderbird-60.6.1-1.fc28 27 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8b8c774b84 aria2-1.34.0-4.fc28 27 https://bodhi.fedoraproject.org/updates/FEDORA-2019-0927602e59 chromium-73.0.3683.86-2.fc28 21 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a4ed7400f4 httpd-2.4.39-1.fc28 15 https://bodhi.fedoraproject.org/updates/FEDORA-2019-019c5314a0 samba-4.8.11-0.fc28 13 https://bodhi.fedoraproject.org/updates/FEDORA-2019-902786bc1e gradle-4.3.1-9.fc28 12 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d9f867cb65 jetty-9.4.11-3.v20180605.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-4f978cacb4 python-jinja2-2.10.1-1.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6a756fe3a5 libX11-1.6.7-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3193a75b06 poppler-0.62.0-22.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8560719e80 python-urllib3-1.24.2-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3ee6a7adf2 php-symfony-2.8.51-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-2a7f472198 php-symfony3-3.4.26-1.fc28 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-79cb2bb18e libmediainfo-18.12-3.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a975e52e95 php-horde-horde-5.2.21-1.fc28 2 https://bodhi.fedoraproject.org/updates/FEDORA-2019-146df522df php-horde-turba-4.2.24-1.fc28 0 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c701e6605a java-1.8.0-openjdk-1.8.0.212.b04-0.fc28
The following Fedora 28 Critical Path updates have yet to be approved: Age URL 134 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9f541b469b nfs-utils-2.3.3-1.rc2.fc28 98 https://bodhi.fedoraproject.org/updates/FEDORA-2019-78153d357c totem-pl-parser-3.26.2-1.fc28 90 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bb30467485 ostree-2019.1-2.fc28 rpm-ostree-2019.1-1.fc28 82 https://bodhi.fedoraproject.org/updates/FEDORA-2019-cb4a3023ef iproute-4.20.0-1.fc28 65 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6c4e362bd0 dhcp-4.3.6-22.fc28 dnsperf-2.2.1-1.fc28 bind-dyndb-ldap-11.1-13.fc28 bind-9.11.5-2.P1.fc28 43 https://bodhi.fedoraproject.org/updates/FEDORA-2019-cb98bf5ace fedfind-4.2.2-1.fc28 python-productmd-1.20-1.fc28 36 https://bodhi.fedoraproject.org/updates/FEDORA-2019-e60ecc03b4 python-productmd-1.21-1.fc28 36 https://bodhi.fedoraproject.org/updates/FEDORA-2019-457ab67a6c psmisc-23.1-3.1.fc28 29 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a0ae4e93b9 sssd-1.16.4-2.fc28 29 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ba19e79e9a thunderbird-60.6.1-1.fc28 20 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ba19af6a58 libldb-1.4.0-5.fc28.1.3.8 samba-4.8.10-0.fc28 15 https://bodhi.fedoraproject.org/updates/FEDORA-2019-019c5314a0 samba-4.8.11-0.fc28 13 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a9b42f633a perl-5.26.3-418.fc28 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-787f9bf22f opus-1.3.1-1.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6a756fe3a5 libX11-1.6.7-1.fc28 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8b830d65da firefox-66.0.3-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-4abd64aaaf libseccomp-2.4.1-0.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8560719e80 python-urllib3-1.24.2-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-7e1c3c9d19 python-mako-1.0.9-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3193a75b06 poppler-0.62.0-22.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8d90cbcfd9 libbluray-1.1.1-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-49e971b7fb linux-firmware-20190416-95.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9308674cab pcre2-10.33-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-b042a87a74 libiptcdata-1.0.5-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bc14eac80e libblockdev-2.18-2.fc28 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-4b9de6ad55 http-parser-2.9.2-1.fc28 3 https://bodhi.fedoraproject.org/updates/FEDORA-2019-dddd3b8418 ceph-12.2.12-1.fc28 0 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9244c8b209 pungi-4.1.36-1.fc28
The following builds have been pushed to Fedora 28 updates-testing
R-rgeos-0.4.3-1.fc28 airnef-1.1-6.fc28 ari-backup-1.0.12-8.fc28 copr-backend-1.123-1.fc28 copr-cli-1.79-1.fc28 copr-dist-git-0.45-1.fc28 copr-frontend-1.149-1.fc28 copr-rpmbuild-0.25-1.fc28 dnf-plugin-diff-1.0-2.fc28 gajim-1.1.3-1.fc28 java-11-openjdk-11.0.3.7-1.fc28 mame-0.209-1.fc28 pacemaker-1.1.18-3.fc28 perl-Sereal-4.007-1.fc28 php-sebastian-environment4-4.2.1-1.fc28 php-theseer-autoload-1.25.5-1.fc28 primesieve-7.4-2.fc28 python-copr-1.94-1.fc28 python-nbxmpp-0.6.10-1.fc28 wingpanel-2.2.4-1.fc28 youtube-dl-2019.04.24-1.fc28
Details about builds:
================================================================================ R-rgeos-0.4.3-1.fc28 (FEDORA-2019-628b52448d) Interface to Geometry Engine - Open Source ('GEOS') -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 25 2019 Elliott Sales de Andrade quantum.analyst@gmail.com - 0.4.3-1 - Update to latest version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1702681 - R-rgeos-0.4-3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1702681 --------------------------------------------------------------------------------
================================================================================ airnef-1.1-6.fc28 (FEDORA-2019-c73abac88b) Wireless download from your Nikon/Canon Camera -------------------------------------------------------------------------------- Update Information:
require python3-tkinter (rhbz#1702714) -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 25 2019 Pavel Raiskup praiskup@redhat.com - 1.1-6 - require python3-tkinter (rhbz#1702714) * Thu Jan 31 2019 Fedora Release Engineering releng@fedoraproject.org - 1.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Thu Jul 12 2018 Fedora Release Engineering releng@fedoraproject.org - 1.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Tue Jun 19 2018 Miro Hron��ok mhroncok@redhat.com - 1.1-3 - Rebuilt for Python 3.7 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1702714 - [abrt] airnef: _import_module(): six.py:82:_import_module:ModuleNotFoundError: No module named 'tkinter' https://bugzilla.redhat.com/show_bug.cgi?id=1702714 --------------------------------------------------------------------------------
================================================================================ ari-backup-1.0.12-8.fc28 (FEDORA-2019-127bfdc6eb) A helpful wrapper around rdiff-backup -------------------------------------------------------------------------------- Update Information:
Use yaml.safe_load(). See [#32](https://github.com/jpwoodbu/ari-backup/pull/32). -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Randy Barlow bowlofeggs@fedoraproject.org - 1.0.12-8 - Use yaml.safe_load(). - https://github.com/jpwoodbu/ari-backup/pull/32 --------------------------------------------------------------------------------
================================================================================ copr-backend-1.123-1.fc28 (FEDORA-2019-8821fc6dcc) Backend for Copr -------------------------------------------------------------------------------- Update Information:
- clean data for failed builds; fix #619 - replace runnecessary regex with str.endswith - move clean_copr from prunerepo to our codebase - cleanup_vm_nova.py: use yaml.safe_load - don't rely on createrepo from prunerepo - simplify logging through redis - run sign command without sudo to fix #636 - encode 'msg' in LogRecord sooner - fix charset warnings on redis-py v3 - fix default arguments in redis scripts - don't prunerepo too old directories - LogHandler: don't drop exc_info from LogRecord - use the correct data for rawhide_to_release createrepo - make copr_prune_results skip already pruned outdated chroots - require libmodulemd in at least 1.7.0 - remove dependency on python3-configparser -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Jakub Kadl����k frostyx@email.cz 1.123-1 - clean data for failed builds; fix #619 - replace runnecessary regex with str.endswith - move clean_copr from prunerepo to our codebase - cleanup_vm_nova.py: use yaml.safe_load - don't rely on createrepo from prunerepo - simplify logging through redis - run sign command without sudo to fix #636 - encode 'msg' in LogRecord sooner - fix charset warnings on redis-py v3 - fix default arguments in redis scripts - don't prunerepo too old directories - LogHandler: don't drop exc_info from LogRecord - use the correct data for rawhide_to_release createrepo - make copr_prune_results skip already pruned outdated chroots - require libmodulemd in at least 1.7.0 - remove dependency on python3-configparser --------------------------------------------------------------------------------
================================================================================ copr-cli-1.79-1.fc28 (FEDORA-2019-2ad46279b5) Command line interface for COPR -------------------------------------------------------------------------------- Update Information:
- add CLI for permissions - new --max-builds option - rename repos 'url' attribute to 'baseurl' - generate mock rootdir on client side - pass a repo priority to dnf config - Revert "[cli] fix copr mock-config" - support temporary projects - print helpful hints for config parsing errors - fix tests broken by PR#547 - fix copr-cli downloading parent directory for cancelled builds -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Jakub Kadl����k frostyx@email.cz 1.79-1 - add CLI for permissions - new --max-builds option - rename repos 'url' attribute to 'baseurl' - generate mock rootdir on client side - pass a repo priority to dnf config - Revert "[cli] fix copr mock-config" - support temporary projects - print helpful hints for config parsing errors - fix tests broken by PR#547 - fix copr-cli downloading parent directory for cancelled builds --------------------------------------------------------------------------------
================================================================================ copr-dist-git-0.45-1.fc28 (FEDORA-2019-5b369bf636) Copr services for Dist Git server -------------------------------------------------------------------------------- Update Information:
- remove old logs from cron -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Jakub Kadl����k frostyx@email.cz 0.45-1 - remove old logs from cron --------------------------------------------------------------------------------
================================================================================ copr-frontend-1.149-1.fc28 (FEDORA-2019-f8acdb2db2) Frontend for Copr -------------------------------------------------------------------------------- Update Information:
- fix finished status for SRPM builds, hopefully last time - log handled 500 errors - fix a failing test - expect the correct status code for project deletion failure - webhook triggers expect int:copr_id - fix shebang in daily cron job - remove a redundant condition for outdated chroots - allow user to remove outdated chroot; fix #624 - sort outdated chroots by name; fix #593 - pagure-events: send keep-alive tcp packets - replace cron configuration automatically - respect module buildorder by setting dependencies among batches - add mechanism to block build batch until other one finishes - build is not finished when not even SRPM is finished - fix WTForms deprecation warning - fix Flask invalid cookie warning - fix YAMLLoadWarning deprecation warning - fix FlaskWTForms deprecation warning - pagure-events: each commit in push/PR should trigger build - webhooks: each commit in push should trigger build - make clean_old_builds query join() explicit - link to correct API documentation - fixup test fixtures for Rawhide - add CLI for permissions - new --max-builds option - move "Other options" to separate panel - support temporary projects - print friendly error on http when https is enforced - Merge #647 `[frontend] make 'alembic revision --autogenerate' pylint-clean` - *_private migration is irreversible - don't ignore constraints when moving data to *_private - simplify *_private tables - de-duplicate *_private ids - add CoprPrivate to join - fix migration sequence by putting private table migrations on top - remove private columns from user and copr - private tables for user and copr - make 'alembic revision --autogenerate' pylint-clean - pagure-events: accept [copr-build] key in PR message - pagure-events: allow duplicate builds - better parse Pagure's PR messages - fix Pagure-triggered Package builds - linter for alembic revisions - repaired import in builds_logic Closes #644 - increase the build timeout limit because of chromium - reset config changes after each test method - UI: say "SRPM log" instead of "Import log" - disallow root to execute ./manage.py - don't display url to dist-git logs for non-admin users - fix batch build delete in group projects; see #575 - fix exception when multiple sources are generating graph data - support ?priority=x for non copr:// repo - Redis.setex swapped arguments in v3+ - go to builds page after submitting a custom method build - fix module builds table - test real-world module buildorder, see #599 - enforce https for outdated chroots emails - pass queue_sizes also to the graph page - display badges in task queue tabs, see #552 - avoid 'collections.abc' warnings -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Jakub Kadl����k frostyx@email.cz 1.149-1 - fix finished status for SRPM builds, hopefully last time - log handled 500 errors - fix a failing test - expect the correct status code for project deletion failure - webhook triggers expect int:copr_id - fix shebang in daily cron job - remove a redundant condition for outdated chroots - allow user to remove outdated chroot; fix #624 - sort outdated chroots by name; fix #593 - pagure-events: send keep-alive tcp packets - replace cron configuration automatically - respect module buildorder by setting dependencies among batches - add mechanism to block build batch until other one finishes - build is not finished when not even SRPM is finished - fix WTForms deprecation warning - fix Flask invalid cookie warning - fix YAMLLoadWarning deprecation warning - fix FlaskWTForms deprecation warning - pagure-events: each commit in push/PR should trigger build - webhooks: each commit in push should trigger build - make clean_old_builds query join() explicit - link to correct API documentation - fixup test fixtures for Rawhide - add CLI for permissions - new --max-builds option - move "Other options" to separate panel - support temporary projects - print friendly error on http when https is enforced - Merge #647 `[frontend] make 'alembic revision --autogenerate' pylint-clean` - *_private migration is irreversible - don't ignore constraints when moving data to *_private - simplify *_private tables - de-duplicate *_private ids - add CoprPrivate to join - fix migration sequence by putting private table migrations on top - remove private columns from user and copr - private tables for user and copr - make 'alembic revision --autogenerate' pylint-clean - pagure-events: accept [copr-build] key in PR message - pagure-events: allow duplicate builds - better parse Pagure's PR messages - fix Pagure-triggered Package builds - linter for alembic revisions - repaired import in builds_logic Closes #644 - increase the build timeout limit because of chromium - reset config changes after each test method - UI: say "SRPM log" instead of "Import log" - disallow root to execute ./manage.py - don't display url to dist-git logs for non-admin users - fix batch build delete in group projects; see #575 - fix exception when multiple sources are generating graph data - support ?priority=x for non copr:// repo - Redis.setex swapped arguments in v3+ - go to builds page after submitting a custom method build - fix module builds table - test real-world module buildorder, see #599 - enforce https for outdated chroots emails - pass queue_sizes also to the graph page - display badges in task queue tabs, see #552 -[python] avoid 'collections.abc' warnings * Fri Mar 15 2019 Jakub Kadl����k frostyx@email.cz 1.148-1 - [frontend] add missing spaces - [frontend] set reply-to header to our emails - [frontend] sort chroots in email by project name - [frontend] don't get chroots from deleted projects - [frontend][python] handle timeout errors - [frontend] return the correct status for SRPM fail (fix #513) - Added rss feed from all copr's projects to /rss/ - [frontend] show packages with no builds as 'not built yet' - [cli][frontend] fix copr-cli downloading parent directory for cancelled builds - [frontend][backend] make copr_prune_results skip already pruned outdated chroots * Mon Mar 11 2019 Jakub Kadl����k frostyx@email.cz 1.147-1 - [frontend] don't forget to commit in 'manage.py alter_chroot' - [frontend] new 'db_session_scope' idiom - [frontend] remove leftover old_status after PR#562 - [frontend] rework error handlers to fix #531 - [frontend] remove migration-report page - [frontend] remove old_status column from package table - [frontend] mention Copr in mail subject - [frontend][backend] require libmodulemd in at least 1.7.0 - [frontend] build batch deletion by xhr --------------------------------------------------------------------------------
================================================================================ copr-rpmbuild-0.25-1.fc28 (FEDORA-2019-70c17e8eff) Run COPR build tasks -------------------------------------------------------------------------------- Update Information:
- remove dependency on python3-configparser -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Jakub Kadl����k frostyx@email.cz 0.25-1 - remove dependency on python3-configparser * Thu Jan 10 2019 Miroslav Such�� msuchy@redhat.com 0.24-1 - create copr-rpmbuild-all subpackage - Fix `copr-cli mock-config` after switching to APIv3 by preprocessing repos on frontend - add python-srpm-macros - print nice error when suggested package is not installed - tito and rpkg should be required only by copr-builder - create copr-builder - let mock rootdir generation on clients - rename repos 'url' attribute to 'baseurl' - provide repo_id in project chroot build config - Allow per-package chroot-blacklisting by wildcard patterns - preprocess repo URLs on frontend - revert back Suggests - drop "downloading" state - allow blacklisting packages from chroots * Fri Oct 19 2018 Miroslav Such�� msuchy@redhat.com 0.23-1 - /usr/bin/env python3 -> /usr/bin/python3 - nicer live logs --------------------------------------------------------------------------------
================================================================================ dnf-plugin-diff-1.0-2.fc28 (FEDORA-2019-31ba585bbd) Show local changes in RPM packages -------------------------------------------------------------------------------- Update Information:
Show local changes in RPM packages -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1659697 - Review Request: dnf-plugin-diff - show local changes in RPM packages https://bugzilla.redhat.com/show_bug.cgi?id=1659697 --------------------------------------------------------------------------------
================================================================================ gajim-1.1.3-1.fc28 (FEDORA-2019-eb18790cfe) Jabber client written in PyGTK -------------------------------------------------------------------------------- Update Information:
Gajim 1.1.3 (24 April 2019) New * Add a mobile phone indicator to the chat window * Rework HTTPUpload dialog * Add a "paste as quote" option to the message input Bug fixes * 8822 Fix memory leak when using spell checker * 9514 Fix jingle filetransfers not working in some circumstances * 9573 Dont leak DNS query when connecting over proxy * 9578 Determine Windows version more reliably * 9622 Fix an error while quitting Gajim * 9633 Fix an error while sending a file * 9637 Restore window size correctly on wayland * 9660 GPG Agent setting is ignored * 9645 Make zeroconf IPV6 compatible * Improve dark theme colors * Fix access to GnuPG keys * Use UUID4 item ids for pubsub posts * Dont send invalid show values * Windows: Dont override format region settings * Various smaller improvements -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 25 2019 Michal Schmidt mschmidt@redhat.com - 1.1.3-1 - Upstream release 1.1.3. --------------------------------------------------------------------------------
================================================================================ java-11-openjdk-11.0.3.7-1.fc28 (FEDORA-2019-ca4ee3510d) OpenJDK Runtime Environment 11 -------------------------------------------------------------------------------- Update Information:
Update to April 2019 CPU. See: http://mail.openjdk.java.net/pipermail/jdk- updates-dev/2019-April/000951.html -------------------------------------------------------------------------------- ChangeLog:
* Tue Apr 23 2019 Severin Gehwolf sgehwolf@redhat.com - 1:11.0.3.7-1 - Fix requires/provides for the non-system JDK case. JDK 11 isn't a system JDK at this point. - Resolves: RHBZ#1702324 * Sun Apr 7 2019 Andrew Hughes gnu.andrew@redhat.com - 1:11.0.3.7-0 - Update to shenandoah-jdk-11.0.3+7 (April 2019 GA) * Sat Apr 6 2019 Andrew Hughes gnu.andrew@redhat.com - 1:11.0.3.6-0 - Update to shenandoah-jdk-11.0.3+6 (April 2019 EA) - Drop JDK-8210416/RH1632174 applied upstream. - Drop JDK-8210425/RH1632174 applied upstream. - Drop JDK-8210647/RH1632174 applied upstream. - Drop JDK-8210761/RH1632174 applied upstream. - Drop JDK-8210703/RH1632174 applied upstream. - Add cast to resolve s390 ambiguity in call to log2_intptr * Thu Mar 21 2019 Severin Gehwolf sgehwolf@redhat.com - 1:11.0.2.7-9 - Add patch for RH1566890 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1702324 - java-11-openjdk packages have wrong lib-style requirements https://bugzilla.redhat.com/show_bug.cgi?id=1702324 --------------------------------------------------------------------------------
================================================================================ mame-0.209-1.fc28 (FEDORA-2019-470032916a) Multiple Arcade Machine Emulator -------------------------------------------------------------------------------- Update Information:
An update to latest mame release: * https://www.mamedev.org/?p=468 -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Julian Sikorski belegdol@fedoraproject.org - 0.209-1 - Update to 0.209 --------------------------------------------------------------------------------
================================================================================ pacemaker-1.1.18-3.fc28 (FEDORA-2019-e71f6f36ac) Scalable High-Availability cluster resource manager -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2019-3885, CVE-2018-16877, CVE-2018-16878 -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 25 2019 Fedora Release Engineering releng@fedoraproject.org - 1.1.18-3 - Apply fixes for security issues: . CVE-2019-3885 (use-after-free with potential information disclosure) . CVE-2018-16877 (insufficient local IPC client-server authentication) . CVE-2018-16878 (insufficient verification inflicted preference of uncontrolled processes) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1652646 - CVE-2018-16877 pacemaker: Insufficient local IPC client-server authentication on the client's side can lead to local privesc https://bugzilla.redhat.com/show_bug.cgi?id=1652646 [ 2 ] Bug #1657962 - CVE-2018-16878 pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS https://bugzilla.redhat.com/show_bug.cgi?id=1657962 [ 3 ] Bug #1694554 - CVE-2019-3885 pacemaker: Information disclosure through use-after-free https://bugzilla.redhat.com/show_bug.cgi?id=1694554 --------------------------------------------------------------------------------
================================================================================ perl-Sereal-4.007-1.fc28 (FEDORA-2019-d0fd49424f) Fast, compact, powerful binary (de-)serialization -------------------------------------------------------------------------------- Update Information:
This release fixes read_sereal_file() function. It also exports Sereal compression flags. -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 10 2019 Petr Pisar ppisar@redhat.com - 4.007-1 - 4.007 bump * Tue Apr 9 2019 Petr Pisar ppisar@redhat.com - 4.006-1 - 4.006 bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1698172 - perl-Sereal-4.007 is available https://bugzilla.redhat.com/show_bug.cgi?id=1698172 --------------------------------------------------------------------------------
================================================================================ php-sebastian-environment4-4.2.1-1.fc28 (FEDORA-2019-4d45d01558) Handle HHVM/PHP environments -------------------------------------------------------------------------------- Update Information:
**Version 4.2.1** - 2019-04-25 * Fixed an issue in `Runtime::getCurrentSettings()` ---- **Version 4.2.0** - 2019-04-25 **Added** * Implemented [#36](https://github.com/sebastianbergmann/environment/pull/36): `Runtime::getCurrentSettings()` -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 25 2019 Remi Collet remi@remirepo.net - 4.2.1-1 - update to 4.2.1 --------------------------------------------------------------------------------
================================================================================ php-theseer-autoload-1.25.5-1.fc28 (FEDORA-2019-8219f7f683) A tool and library to generate autoload code -------------------------------------------------------------------------------- Update Information:
**Release 1.25.5** * Merge PR [#86](https://github.com/theseer/Autoload/pull/86): Restore PHP 5.3 compatibility [Remi] ---- ** Release 1.25.4** * Ensure include/exclude filter gets applied also in composer.json mode when files are explicitly set * Ensure files do not get processed multiple times in case composer.json has duplicate definitions in autoload section -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 25 2019 Remi Collet remi@remirepo.net - 1.25.5-1 - update to 1.25.5 * Fri Apr 19 2019 Remi Collet remi@remirepo.net - 1.25.4-1 - update to 1.25.4 --------------------------------------------------------------------------------
================================================================================ primesieve-7.4-2.fc28 (FEDORA-2019-7ced30d8d6) Fast prime number generator -------------------------------------------------------------------------------- Update Information:
primesieve is a new package, it is a command-line program and C/C++ library that generates prime numbers using a highly optimized sieve of Eratosthenes implementation. It's rock solid, the latest version (7.4) was released more than 2 months ago and no bugs have been reported so far. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1540335 - Review Request: primesieve - Fast C/C++ prime number generator https://bugzilla.redhat.com/show_bug.cgi?id=1540335 --------------------------------------------------------------------------------
================================================================================ python-copr-1.94-1.fc28 (FEDORA-2019-dea40e10a4) Python interface for Copr -------------------------------------------------------------------------------- Update Information:
- add CLI for permissions - support temporary projects - print friendly error on http when https is enforced - print helpful hints for config parsing errors - remove unnecessary PY3 condition - re-order spec {Build,}Requires - BuildRequires python3-mock - avoid 'collections.abc' warnings - handle timeout errors - remove old_status column from package table - fix wait function for custom List - remove dependency on python3-configparser -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Jakub Kadl����k frostyx@email.cz 1.94-1 - add CLI for permissions - support temporary projects - print friendly error on http when https is enforced - print helpful hints for config parsing errors - remove unnecessary PY3 condition - re-order spec {Build,}Requires - BuildRequires python3-mock - avoid 'collections.abc' warnings - handle timeout errors - remove old_status column from package table - fix wait function for custom List - remove dependency on python3-configparser --------------------------------------------------------------------------------
================================================================================ python-nbxmpp-0.6.10-1.fc28 (FEDORA-2019-eb18790cfe) Python library for non-blocking use of Jabber/XMPP -------------------------------------------------------------------------------- Update Information:
Gajim 1.1.3 (24 April 2019) New * Add a mobile phone indicator to the chat window * Rework HTTPUpload dialog * Add a "paste as quote" option to the message input Bug fixes * 8822 Fix memory leak when using spell checker * 9514 Fix jingle filetransfers not working in some circumstances * 9573 Dont leak DNS query when connecting over proxy * 9578 Determine Windows version more reliably * 9622 Fix an error while quitting Gajim * 9633 Fix an error while sending a file * 9637 Restore window size correctly on wayland * 9660 GPG Agent setting is ignored * 9645 Make zeroconf IPV6 compatible * Improve dark theme colors * Fix access to GnuPG keys * Use UUID4 item ids for pubsub posts * Dont send invalid show values * Windows: Dont override format region settings * Various smaller improvements -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 25 2019 Michal Schmidt mschmidt@redhat.com - 0.6.10-1 - Upstream release 0.6.10. --------------------------------------------------------------------------------
================================================================================ wingpanel-2.2.4-1.fc28 (FEDORA-2019-589b6c6b51) Stylish top panel -------------------------------------------------------------------------------- Update Information:
Update to version 2.2.4. Release notes: https://github.com/elementary/wingpanel/releases/tag/2.2.4 -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Fabio Valentini decathorpe@gmail.com - 2.2.4-1 - Update to version 2.2.4. --------------------------------------------------------------------------------
================================================================================ youtube-dl-2019.04.24-1.fc28 (FEDORA-2019-0c7897ede6) A small command-line program to download online videos -------------------------------------------------------------------------------- Update Information:
Update to latest release -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 24 2019 Till Maas opensource@till.name - 2019.04.24-1 - Update to new upstream release with important bugfixes * Sun Feb 3 2019 Fedora Release Engineering releng@fedoraproject.org - 2019.01.30-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1702595 - youtube-dl needs to be updated otherwise it cannot be used with Youtube anymore https://bugzilla.redhat.com/show_bug.cgi?id=1702595 [ 2 ] Bug #1670645 - youtube-dl-2019.04.24 is available https://bugzilla.redhat.com/show_bug.cgi?id=1670645 --------------------------------------------------------------------------------