The following Fedora 31 Security updates need testing: Age URL 40 https://bodhi.fedoraproject.org/updates/FEDORA-2020-66d1268bd0 knot-resolver-5.1.1-1.fc31 36 https://bodhi.fedoraproject.org/updates/FEDORA-2020-fcd5fd47bd qutebrowser-1.11.1-1.fc31 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-059e1591d6 lynis-3.0.0-1.fc31 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-12237dbae2 znc-1.8.1-1.fc31 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-0bbe6304e3 php-PHPMailer-5.2.28-2.fc31 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-4407a1983d libEMF-1.0.13-1.fc31 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-e59bcaf702 adns-1.6.0-1.fc31 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-e538e3e526 gssdp-1.0.4-1.fc31 gupnp-1.0.5-1.fc31 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-55f1f7cb13 curl-7.66.0-2.fc31 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-f822ea9330 alpine-2.23-2.fc31 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-31af2ac7fd mutt-1.14.5-1.fc31 2 https://bodhi.fedoraproject.org/updates/FEDORA-2020-de27bb80af xpdf-4.02-4.fc31 0 https://bodhi.fedoraproject.org/updates/FEDORA-2020-3d23d3ea02 gst-0.7.4-1.fc31
The following Fedora 31 Critical Path updates have yet to be approved: Age URL 75 https://bodhi.fedoraproject.org/updates/FEDORA-2020-5603c3bae4 nfs-utils-2.4.3-1.rc2.fc31 30 https://bodhi.fedoraproject.org/updates/FEDORA-2020-03e14f6120 dracut-050-61.git20200529.fc31 15 https://bodhi.fedoraproject.org/updates/FEDORA-2020-e11173a87a cups-2.2.12-10.fc31 15 https://bodhi.fedoraproject.org/updates/FEDORA-2020-5ccd452c8e gnutls-3.6.14-2.fc31 12 https://bodhi.fedoraproject.org/updates/FEDORA-2020-a9da2a2189 pulseaudio-13.99.1-4.fc31 11 https://bodhi.fedoraproject.org/updates/FEDORA-2020-3cd069e7e1 pungi-4.2.3-2.fc31 11 https://bodhi.fedoraproject.org/updates/FEDORA-2020-dfa2b94854 ca-certificates-2020.2.41-1.1.fc31 11 https://bodhi.fedoraproject.org/updates/FEDORA-2020-0603317481 mutter-3.34.6-2.fc31 11 https://bodhi.fedoraproject.org/updates/FEDORA-2020-4411a39579 python-rpm-macros-3-57.fc31 10 https://bodhi.fedoraproject.org/updates/FEDORA-2020-e4b955671e pcre2-10.35-3.fc31 8 https://bodhi.fedoraproject.org/updates/FEDORA-2020-e3091b60f0 linux-firmware-20200619-109.fc31 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-e538e3e526 gssdp-1.0.4-1.fc31 gupnp-1.0.5-1.fc31 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-b5e0041373 glib2-2.62.6-2.fc31 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-55f1f7cb13 curl-7.66.0-2.fc31 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-5bd1682608 pam-1.3.1-24.fc31 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-cecb600a30 libssh-0.9.4-3.fc31 1 https://bodhi.fedoraproject.org/updates/FEDORA-2020-f621fcd6a2 ceph-14.2.10-1.fc31
The following builds have been pushed to Fedora 31 updates-testing
ImageMagick-6.9.11.22-1.fc31 bgpq4-0.0.6-1.fc31 certmonger-0.79.10-1.fc31 chromium-83.0.4103.116-3.fc31 container-selinux-2.137.0-3.fc31 ddnet-14.0.3-1.fc31 gjots2-3.1.8-1.fc31 gnucash-3.11-1.fc31 gnucash-docs-3.11-1.fc31 golang-github-osbuild-composer-16-1.fc31 libmicrohttpd-0.9.71-1.fc31 libre-0.6.1-2.fc31 librem-0.6.0-2.fc31 ngircd-26-3.fc31 onednn-1.5-1.fc31 openbgpd-6.7p0-2.fc31 openelp-0.8.0-2.fc31 oval-graph-1.1.1-3.fc31 php-composer-semver3-3.0.0-1.fc31 php-horde-imp-6.2.26-1.fc31 php-myclabs-deep-copy-1.10.0-2.fc31 php-phpunit-php-timer5-5.0.1-1.fc31 phpunit9-9.2.5-1.fc31 plasma-applet-translator-0.2-1.fc31 podman-2.0.1-1.fc31 postfix-3.4.14-1.fc31 python-colcon-cmake-0.2.23-1.fc31 python-colcon-coveragepy-result-0.0.8-1.fc31 python-colcon-mixin-0.1.10-1.fc31 python-colcon-output-0.2.11-1.fc31 python-flask-admin-1.5.6-1.fc31 python-kyotocabinet-1.22-2.fc31 python-tqdm-4.47.0-1.fc31 shhgit-0.2-1.fc31 springlobby-0.270-2.fc31 swaylock-1.5-3.fc31 theme-switcher-2.0.4-4.fc31 vagrant-sshfs-1.3.5-1.fc31
Details about builds:
================================================================================ ImageMagick-6.9.11.22-1.fc31 (FEDORA-2020-dd40c160dd) An X application for displaying and manipulating images -------------------------------------------------------------------------------- Update Information:
Numerous bug fixes. https://legacy.imagemagick.org/script/changelog.php -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Michael Cronenworth mike@cchtml.com - 1:6.9.11.22-1 - Update to 6.9.11.22 * Sat Jun 27 2020 Jitka Plesnikova jplesnik@redhat.com - 1:6.9.11.21-2 - Perl 5.32 re-rebuild updated packages * Thu Jun 25 2020 Michael Cronenworth mike@cchtml.com - 1:6.9.11.21-1 - Update to 6.9.11.21 * Mon Jun 22 2020 Jitka Plesnikova jplesnik@redhat.com - 1:6.9.11.16-2 - Perl 5.32 rebuild * Wed Jun 3 2020 Michael Cronenworth mike@cchtml.com - 1:6.9.11.16-1 - Update to 6.9.11.16 - Drop extra BRs on -devel package (RHBZ#1835344) * Mon May 11 2020 Gwyn Ciesla gwync@protonmail.com - 1:6.9.10.86-3 - Rebuild for new LibRaw * Tue Jan 28 2020 Fedora Release Engineering releng@fedoraproject.org - 1:6.9.10.86-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1792867 - ImageMagick-6.9.11-16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1792867 [ 2 ] Bug #1812035 - ImageMagick 6.9.11-0 available fixing a heap overflow https://bugzilla.redhat.com/show_bug.cgi?id=1812035 [ 3 ] Bug #1842599 - Text rendering is broken https://bugzilla.redhat.com/show_bug.cgi?id=1842599 --------------------------------------------------------------------------------
================================================================================ bgpq4-0.0.6-1.fc31 (FEDORA-2020-ea4784c987) Automate BGP filter generation based on routing database information -------------------------------------------------------------------------------- Update Information:
The bgpq4 utility can be used to generate BGP filter configurations such as prefix lists, (extended) access lists, policy statement terms and AS path lists based on routing database information and supports output formats for BIRD, Cisco, Huawei, Juniper, MikroTik, Nokia and OpenBGPD routers as well as generic JSON. -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1847220 - Review Request: bgpq4 - Automate BGP filter generation based on routing database information https://bugzilla.redhat.com/show_bug.cgi?id=1847220 --------------------------------------------------------------------------------
================================================================================ certmonger-0.79.10-1.fc31 (FEDORA-2020-ab04503560) Certificate status monitor and PKI enrollment client -------------------------------------------------------------------------------- Update Information:
Update to upstream 0.79.10 - dogtag: use POST for profileProcess requests - Improve logging in SCEP helper - Add verbose option to SCEP CA if requested in add-scep-ca - Re-order the way the SCEP signing and CA certs are collected - Add new option to allow overriding the detected SCEP CA chain - template_profile, issuer and MS certificate template are single-value - Ensure that files read in have a trailing new-line - Adapt to the new behavior of disconnect in dbus- broker - Add long command-line options to CLI and man pages - Include &message=CA-IDENT with GetCACaps and GetCACert requests -------------------------------------------------------------------------------- ChangeLog:
* Thu Jun 25 2020 Rob Crittenden rcritten@redhat.com - 0.79.10-1 - Update to upstream 0.79.10 --------------------------------------------------------------------------------
================================================================================ chromium-83.0.4103.116-3.fc31 (FEDORA-2020-77f89ab772) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information:
Update to 83.0.4103.116. Fixes CVE-2020-6509. ---- Black Lives Matter. Saying this does not mean that other lives do not matter. It should not be controversial to say this. If I say Chromium updates matter, it does not mean that other Fedora packages do not matter, it means that a Chromium update is needed to fix this giant pile of severe security vulnerabilities, here, today, now: CVE-2020-6463 CVE-2020-6465 CVE-2020-6466 CVE-2020-6467 CVE-2020-6468 CVE-2020-6469 CVE-2020-6470 CVE-2020-6471 CVE-2020-6472 CVE-2020-6473 CVE-2020-6474 CVE-2020-6475 CVE-2020-6476 CVE-2020-6478 CVE-2020-6479 CVE-2020-6480 CVE-2020-6481 CVE-2020-6482 CVE-2020-6483 CVE-2020-6484 CVE-2020-6485 CVE-2020-6486 CVE-2020-6487 CVE-2020-6488 CVE-2020-6489 CVE-2020-6490 CVE-2020-6491 CVE-2020-6505 CVE-2020-6506 CVE-6507 In making that analogy, I do not intend to trivialize BLM. In no way do I mean to compare the lives of people to a silly web browser update. People are infinitely important than software. But since I'm here to push this software update out, I am also choosing to say clearly and unambiguously that Black Lives Matter. Open Source proves that many voices, many contributions, together can change the world. It depends on it. This is my voice. -------------------------------------------------------------------------------- ChangeLog:
* Sat Jun 27 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.116-3 - only set ozone on headless - enable use_kerberos * Tue Jun 23 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.116-2 - do not force ozone into x11 * Tue Jun 23 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.116-1 - update to 83.0.4103.116 * Thu Jun 18 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.106-1 - update to 83.0.4103.106 - remove duplicate ServiceWorker fix - add fix to work around gcc bug on aarch64 - disable python byte compiling (we do not need it) * Tue Jun 16 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.97-5 - add ServiceWorker fix * Mon Jun 15 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.97-4 - use old cups handling on epel7 - fix skia attribute overrides with gcc * Wed Jun 10 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.97-3 - fix issue on epel7 where linux/kcmp.h does not exist * Mon Jun 8 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.97-2 - more fixes from gentoo * Sun Jun 7 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.97-1 - update to 83.0.4103.97 * Tue Jun 2 2020 Tom Callaway spot@fedoraproject.org - 83.0.4103.61-1 - update to 83.0.4103.61 - conditionalize and disable remoting -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1837877 - CVE-2020-6465 chromium-browser: Use after free in reader mode https://bugzilla.redhat.com/show_bug.cgi?id=1837877 [ 2 ] Bug #1837878 - CVE-2020-6466 chromium-browser: Use after free in media https://bugzilla.redhat.com/show_bug.cgi?id=1837878 [ 3 ] Bug #1837879 - CVE-2020-6467 chromium-browser: Use after free in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1837879 [ 4 ] Bug #1837880 - CVE-2020-6468 chromium-browser: Type Confusion in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1837880 [ 5 ] Bug #1837882 - CVE-2020-6470 chromium-browser: Insufficient validation of untrusted input in clipboard https://bugzilla.redhat.com/show_bug.cgi?id=1837882 [ 6 ] Bug #1837883 - CVE-2020-6471 chromium-browser: Insufficient policy enforcement in developer tools https://bugzilla.redhat.com/show_bug.cgi?id=1837883 [ 7 ] Bug #1837884 - CVE-2020-6472 chromium-browser: Insufficient policy enforcement in developer tools https://bugzilla.redhat.com/show_bug.cgi?id=1837884 [ 8 ] Bug #1837885 - CVE-2020-6473 chromium-browser: Insufficient policy enforcement in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1837885 [ 9 ] Bug #1837886 - CVE-2020-6474 chromium-browser: Use after free in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1837886 [ 10 ] Bug #1837887 - CVE-2020-6475 chromium-browser: Incorrect security UI in full screen https://bugzilla.redhat.com/show_bug.cgi?id=1837887 [ 11 ] Bug #1837888 - CVE-2020-6477 chromium-browser: Inappropriate implementation in installer https://bugzilla.redhat.com/show_bug.cgi?id=1837888 [ 12 ] Bug #1837889 - CVE-2020-6478 chromium-browser: Inappropriate implementation in full screen https://bugzilla.redhat.com/show_bug.cgi?id=1837889 [ 13 ] Bug #1837890 - CVE-2020-6480 chromium-browser: Insufficient policy enforcement in enterprise https://bugzilla.redhat.com/show_bug.cgi?id=1837890 [ 14 ] Bug #1837891 - CVE-2020-6481 chromium-browser: Insufficient policy enforcement in URL formatting https://bugzilla.redhat.com/show_bug.cgi?id=1837891 [ 15 ] Bug #1837892 - CVE-2020-6482 chromium-browser: Insufficient policy enforcement in developer tools https://bugzilla.redhat.com/show_bug.cgi?id=1837892 [ 16 ] Bug #1837893 - CVE-2020-6483 chromium-browser: Insufficient policy enforcement in payments https://bugzilla.redhat.com/show_bug.cgi?id=1837893 [ 17 ] Bug #1837894 - CVE-2020-6484 chromium-browser: Insufficient data validation in ChromeDriver https://bugzilla.redhat.com/show_bug.cgi?id=1837894 [ 18 ] Bug #1837896 - CVE-2020-6485 chromium-browser: Insufficient data validation in media router https://bugzilla.redhat.com/show_bug.cgi?id=1837896 [ 19 ] Bug #1837897 - CVE-2020-6486 chromium-browser: Insufficient policy enforcement in navigations https://bugzilla.redhat.com/show_bug.cgi?id=1837897 [ 20 ] Bug #1837898 - CVE-2020-6487 chromium-browser: Insufficient policy enforcement in downloads https://bugzilla.redhat.com/show_bug.cgi?id=1837898 [ 21 ] Bug #1837899 - CVE-2020-6488 chromium-browser: Insufficient policy enforcement in downloads https://bugzilla.redhat.com/show_bug.cgi?id=1837899 [ 22 ] Bug #1837900 - CVE-2020-6489 chromium-browser: Inappropriate implementation in developer tools https://bugzilla.redhat.com/show_bug.cgi?id=1837900 [ 23 ] Bug #1837901 - CVE-2020-6490 chromium-browser: Insufficient data validation in loader https://bugzilla.redhat.com/show_bug.cgi?id=1837901 [ 24 ] Bug #1837902 - CVE-2020-6491 chromium-browser: Incorrect security UI in site information https://bugzilla.redhat.com/show_bug.cgi?id=1837902 [ 25 ] Bug #1837907 - CVE-2020-6469 chromium-browser: Insufficient policy enforcement in developer tools https://bugzilla.redhat.com/show_bug.cgi?id=1837907 [ 26 ] Bug #1837912 - CVE-2020-6476 chromium-browser: Insufficient policy enforcement in tab strip https://bugzilla.redhat.com/show_bug.cgi?id=1837912 [ 27 ] Bug #1837927 - CVE-2020-6479 chromium-browser: Inappropriate implementation in sharing https://bugzilla.redhat.com/show_bug.cgi?id=1837927 [ 28 ] Bug #1847268 - CVE-2020-6505 chromium-browser: Use after free in speech https://bugzilla.redhat.com/show_bug.cgi?id=1847268 [ 29 ] Bug #1847269 - CVE-2020-6506 chromium-browser: Insufficient policy enforcement in WebView https://bugzilla.redhat.com/show_bug.cgi?id=1847269 [ 30 ] Bug #1847270 - CVE-2020-6507 chromium-browser: Out of bounds write in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1847270 [ 31 ] Bug #1849947 - CVE-2020-6509 chromium-browser: Use after free in extensions https://bugzilla.redhat.com/show_bug.cgi?id=1849947 --------------------------------------------------------------------------------
================================================================================ container-selinux-2.137.0-3.fc31 (FEDORA-2020-fc394c2fb7) SELinux policies for container runtimes -------------------------------------------------------------------------------- Update Information:
Fix the package version. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Dan Walsh dwalsh@fedoraproject.org - 2:2.137.0-3 - Fix commmit version --------------------------------------------------------------------------------
================================================================================ ddnet-14.0.3-1.fc31 (FEDORA-2020-2735151b10) DDraceNetwork, a cooperative racing mod of Teeworlds -------------------------------------------------------------------------------- Update Information:
```Updated to version 14.0.3.``` -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 ElXreno elxreno@gmail.com - 14.0.3-1 - Updated to version 14.0.3 --------------------------------------------------------------------------------
================================================================================ gjots2-3.1.8-1.fc31 (FEDORA-2020-b7e590b04b) A hierarchical note jotter - organize your ideas, notes, facts in a tree -------------------------------------------------------------------------------- Update Information:
fix popup context menus (right click on tree) ---- new version -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Bob Hepple bob.hepple@gmail.com - 3.1.8-1 - fix popup context menus (right click on tree) - fix locale_dir when running from source tree - add LC_ALL=zh_TW translation - accomodate installation to any $prefix with setup.py - fix tree_select_all - fine tune python version requirement to >= 3.6.8 for epel8 - try for gtksourceview4 and failover to gtksourceview3 * Wed Jun 24 2020 Bob Hepple bob.hepple@gmail.com - 3.1.7-1 - new version * Tue May 26 2020 Miro Hron��ok mhroncok@redhat.com - 3.1.6-3 - Rebuilt for Python 3.9 --------------------------------------------------------------------------------
================================================================================ gnucash-3.11-1.fc31 (FEDORA-2020-5ee638a046) Finance management application -------------------------------------------------------------------------------- Update Information:
This updates GnuCash to the latest upstream 3.x release, 3.11. For a list of bugs fixed in this update, see https://www.gnucash.org/news.phtml#n-200628-3.11.news. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Bill Nottingham notting@splat.cc - 3.11-1 - update to 3.11 --------------------------------------------------------------------------------
================================================================================ gnucash-docs-3.11-1.fc31 (FEDORA-2020-5ee638a046) Help files and documentation for the GnuCash personal finance manager -------------------------------------------------------------------------------- Update Information:
This updates GnuCash to the latest upstream 3.x release, 3.11. For a list of bugs fixed in this update, see https://www.gnucash.org/news.phtml#n-200628-3.11.news. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Bill Nottingham notting@splat.cc - 3.11-1 - update to 3.11 --------------------------------------------------------------------------------
================================================================================ golang-github-osbuild-composer-16-1.fc31 (FEDORA-2020-85defeea12) An image building service based on osbuild -------------------------------------------------------------------------------- Update Information:
New upstream release -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Ondrej Budai obudai@redhat.com - 16-1 - New upstream release * Fri Jun 12 2020 Ondrej Budai obudai@redhat.com - 15-1 - New upstream release --------------------------------------------------------------------------------
================================================================================ libmicrohttpd-0.9.71-1.fc31 (FEDORA-2020-bafd4abd4a) Lightweight library for embedding a webserver in applications -------------------------------------------------------------------------------- Update Information:
Update to 0.9.71-1 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Martin Gansser martinkg@fedoraproject.org - 1:0.9.71-1 - Update to 1:0.9.71 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1851771 - libmicrohttpd-0.9.71 is available https://bugzilla.redhat.com/show_bug.cgi?id=1851771 --------------------------------------------------------------------------------
================================================================================ libre-0.6.1-2.fc31 (FEDORA-2020-e629bf7724) Library for real-time communications and SIP stack -------------------------------------------------------------------------------- Update Information:
Libre is a portable and generic library for real-time communications with async IO support and a complete SIP stack with support for SDP, RTP/RTCP, STUN/TURN/ICE, BFCP and DNS client. -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1843264 - Review Request: libre - Library for real-time communications and SIP stack https://bugzilla.redhat.com/show_bug.cgi?id=1843264 --------------------------------------------------------------------------------
================================================================================ librem-0.6.0-2.fc31 (FEDORA-2020-5d39e9f054) Library for real-time audio and video processing -------------------------------------------------------------------------------- Update Information:
Librem is a portable and generic library for real-time audio and video processing. -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1843268 - Review Request: librem - Library for real-time audio and video processing https://bugzilla.redhat.com/show_bug.cgi?id=1843268 --------------------------------------------------------------------------------
================================================================================ ngircd-26-3.fc31 (FEDORA-2020-8c33e3a771) Next Generation IRC Daemon -------------------------------------------------------------------------------- Update Information:
Update to version 26, a bugfix and security release. FIxes CVE-2020-14148. -------------------------------------------------------------------------------- ChangeLog:
* Sun Jun 28 2020 Kevin Fenzi kevin@scrye.com - 26-3 - Fix arch conditional for tests. :( * Sun Jun 28 2020 Kevin Fenzi kevin@scrye.com - 26-2 - Drop gcc10 workaround (fixed upstream) - Disable tests on i686 for now as they seem sporadically broken. ( https://github.com/ngircd/ngircd/issues/280 ) * Wed Jun 24 2020 Kevin Fenzi kevin@scrye.com - 26-1 - Update to 26. Fixes bug 1849314 * Sat May 16 2020 Kevin Fenzi kevin@scrye.com - 25-7 - rhel8 also has system cypher support, so add that before initial epel8 package. * Sun Mar 29 2020 Kevin Fenzi kevin@scrye.com - 25-6 - Build with -fcommon for now until upstream gcc10 fixes land. Fixes FTBFS bug #1799688 * Wed Jan 29 2020 Fedora Release Engineering releng@fedoraproject.org - 25-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1848415 - CVE-2020-14148 ngircd: nigircd: Server-Server protocol implementation leads to out-of-bounds access [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1848415 [ 2 ] Bug #1849314 - ngircd-26 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849314 --------------------------------------------------------------------------------
================================================================================ onednn-1.5-1.fc31 (FEDORA-2020-ea937aedd3) Deep Neural Network Library -------------------------------------------------------------------------------- Update Information:
Introduce onednn 1.5 -------------------------------------------------------------------------------- ChangeLog:
--------------------------------------------------------------------------------
================================================================================ openbgpd-6.7p0-2.fc31 (FEDORA-2020-59ec839f59) OpenBGPD Routing Daemon -------------------------------------------------------------------------------- Update Information:
OpenBGPD is a free implementation of the Border Gateway Protocol (BGP), Version 4. It allows ordinary machines to be used as routers exchanging routes with other systems speaking the BGP protocol. This is the portable version and it does not have the means to influence kernel routing tables. It is only suitable for route servers/collectors. -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1835023 - Review Request: openbgpd - OpenBGPD Routing Daemon https://bugzilla.redhat.com/show_bug.cgi?id=1835023 --------------------------------------------------------------------------------
================================================================================ openelp-0.8.0-2.fc31 (FEDORA-2020-12aeb91375) Open Source EchoLink Proxy -------------------------------------------------------------------------------- Update Information:
Initial introduction of OpenELP -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1844794 - Review Request: openelp - Open Source EchoLink Proxy https://bugzilla.redhat.com/show_bug.cgi?id=1844794 --------------------------------------------------------------------------------
================================================================================ oval-graph-1.1.1-3.fc31 (FEDORA-2020-7c8c1c6104) Tool for visualization of SCAP rule evaluation results -------------------------------------------------------------------------------- Update Information:
Update BuildRequires -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Jan Rodak jrodak@redhat.com - 1.1.1-3 - Update BuildRequires * Tue May 26 2020 Miro Hron��ok mhroncok@redhat.com - 1.1.1-2 - Rebuilt for Python 3.9 --------------------------------------------------------------------------------
================================================================================ php-composer-semver3-3.0.0-1.fc31 (FEDORA-2020-81d0b25664) Semver library version 3 -------------------------------------------------------------------------------- Update Information:
Semver library version 3 that offers utilities, version constraint parsing and validation. Originally written as part of composer/composer, now extracted and made available as a stand-alone library. Autoloader: /usr/share/php/Composer/Semver3/autoload.php -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1843516 - Review Request: php-composer-semver3 - Semver library version 3 https://bugzilla.redhat.com/show_bug.cgi?id=1843516 --------------------------------------------------------------------------------
================================================================================ php-horde-imp-6.2.26-1.fc31 (FEDORA-2020-f9d5d71e64) A web based webmail system -------------------------------------------------------------------------------- Update Information:
**imp 6.2.26** * [mjr] Fix syntax error. --- **imp 6.2.25** * [mjr] Fix some null reference errors due to edge case broken messages. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Remi Collet remi@remirepo.net - 6.2.26-1 - update to 6.2.26 --------------------------------------------------------------------------------
================================================================================ php-myclabs-deep-copy-1.10.0-2.fc31 (FEDORA-2020-8b5a5557f0) Create deep copies (clones) of your objects -------------------------------------------------------------------------------- Update Information:
**Version 1.10.0** * Allow PHP 8 (#157) -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Remi Collet remi@remirepo.net - 1.10.0-2 - update to 1.10.0 (no change) --------------------------------------------------------------------------------
================================================================================ php-phpunit-php-timer5-5.0.1-1.fc31 (FEDORA-2020-089b0521ac) PHP Utility class for timing -------------------------------------------------------------------------------- Update Information:
Utility class for timing things, factored out of PHPUnit into a stand-alone component. -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1844336 - Review Request: php-phpunit-php-timer5 - PHP Utility class for timing https://bugzilla.redhat.com/show_bug.cgi?id=1844336 --------------------------------------------------------------------------------
================================================================================ phpunit9-9.2.5-1.fc31 (FEDORA-2020-d7e2d3b195) The PHP Unit Testing framework version 9 -------------------------------------------------------------------------------- Update Information:
**Version 9.2.5** - 2020-06-22 **Fixed** * [#4312](https://github.com/sebastianbergmann/phpunit/issues/4312): Fix for [#4299](https://github.com/sebastianbergmann/phpunit/issues/4299) breaks backward compatibility ---- **Version 9.2.4** - 2020-06-21 **Fixed** * [#4291](https://github.com/sebastianbergmann/phpunit/issues/4291): [#4258](https://github.com/sebastianbergmann/phpunit/pull/4258) breaks backward compatibility * [#4299](https://github.com/sebastianbergmann/phpunit/issues/4299): "No tests executed" does not always result in exit code `1` * [#4306](https://github.com/sebastianbergmann/phpunit/issues/4306): Exceptions during code coverage driver initialization are not handled correctly **Version 9.2.3** - 2020-06-15 **Fixed** * [#4211](https://github.com/sebastianbergmann/phpunit/issues/4211): `phpdbg_*()` functions are scoped to `PHPUnit\phpdbg_*()` ---- **Version 9.2.2** - 2020-06-07 **Changed** * Improved message of exception that is raised when multiple matchers can be applied to a test double invocation **Fixed** * Fixed default values for `lowUpperBound` and `highLowerBound` in `phpunit.xsd` ---- **Version 9.2.1** - 2020-06-05 **Fixed** * [#4269](https://github.com/sebastianbergmann/phpunit/issues/4269): Test with `@coversNothing` annotation is wrongly marked as risky with `forceCoversAnnotation="true"` ---- **Version 9.2.0** - 2020-06-05 **Added** * [#4224](https://github.com/sebastianbergmann/phpunit/issues/4224): Support for Union Types for test double code generation **Changed** * [#4246](https://github.com/sebastianbergmann/phpunit/issues/4246): Tests that are supposed to have a `@covers` annotation are now marked as risky even if code coverage is not collected * [#4258](https://github.com/sebastianbergmann/phpunit/pull/4258): Prevent unpredictable result by raising an exception when multiple matchers can be applied to a test double invocation * The test runner no longer relies on `$_SERVER['REQUEST_TIME_FLOAT']` for printing the elapsed time -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 22 2020 Remi Collet remi@remirepo.net - 9.2.5-1 - update to 9.2.5 - raise dependency on phpunit/php-timer 5.0 - raise dependency on sebastian/type 2.1 --------------------------------------------------------------------------------
================================================================================ plasma-applet-translator-0.2-1.fc31 (FEDORA-2020-a9cbd37bcb) Plasma 5 applet for translate-shell -------------------------------------------------------------------------------- Update Information:
Initial push. -------------------------------------------------------------------------------- ChangeLog:
--------------------------------------------------------------------------------
================================================================================ podman-2.0.1-1.fc31 (FEDORA-2020-a58e843657) Manage Pods, Containers and Container Images -------------------------------------------------------------------------------- Update Information:
bump to v2.0.1 ---- bump to v2.0.0 -------------------------------------------------------------------------------- ChangeLog:
* Fri Jun 26 2020 Lokesh Mandvekar lsm5@fedoraproject.org - 2:2.0.1-1 - bump to v2.0.1 * Sat Jun 20 2020 Lokesh Mandvekar lsm5@fedoraproject.org - 2:2.0.0-2 - depend on conmon-2:2.0.18-1 --------------------------------------------------------------------------------
================================================================================ postfix-3.4.14-1.fc31 (FEDORA-2020-c63d2d1856) Postfix Mail Transport Agent -------------------------------------------------------------------------------- Update Information:
This is new version of postfix. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Jaroslav ��karvada jskarvad@redhat.com - 2:3.4.14-1 - New version Related: rhbz#1851650 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1851650 - postfix-3.5.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1851650 --------------------------------------------------------------------------------
================================================================================ python-colcon-cmake-0.2.23-1.fc31 (FEDORA-2020-979db74289) Extension for colcon to support CMake packages -------------------------------------------------------------------------------- Update Information:
Update to the latest colcon releases. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Scott K Logan logans@cottsay.net - 0.2.23-1 - Update to 0.2.23 (rhbz#1849942) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1849121 - python-colcon-output-0.2.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849121 [ 2 ] Bug #1849204 - python-colcon-coveragepy-result-0.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849204 [ 3 ] Bug #1849942 - python-colcon-cmake-0.2.23 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849942 [ 4 ] Bug #1850897 - python-colcon-mixin-0.1.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1850897 --------------------------------------------------------------------------------
================================================================================ python-colcon-coveragepy-result-0.0.8-1.fc31 (FEDORA-2020-979db74289) Extension for colcon to collect coverage.py results -------------------------------------------------------------------------------- Update Information:
Update to the latest colcon releases. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Scott K Logan logans@cottsay.net - 0.0.8-1 - Update to 0.0.8 (rhbz#1849204) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1849121 - python-colcon-output-0.2.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849121 [ 2 ] Bug #1849204 - python-colcon-coveragepy-result-0.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849204 [ 3 ] Bug #1849942 - python-colcon-cmake-0.2.23 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849942 [ 4 ] Bug #1850897 - python-colcon-mixin-0.1.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1850897 --------------------------------------------------------------------------------
================================================================================ python-colcon-mixin-0.1.10-1.fc31 (FEDORA-2020-979db74289) Extension for colcon to read CLI mixins from files -------------------------------------------------------------------------------- Update Information:
Update to the latest colcon releases. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Scott K Logan logans@cottsay.net - 0.1.10-1 - Update to 0.1.10 (rhbz#1850897) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1849121 - python-colcon-output-0.2.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849121 [ 2 ] Bug #1849204 - python-colcon-coveragepy-result-0.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849204 [ 3 ] Bug #1849942 - python-colcon-cmake-0.2.23 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849942 [ 4 ] Bug #1850897 - python-colcon-mixin-0.1.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1850897 --------------------------------------------------------------------------------
================================================================================ python-colcon-output-0.2.11-1.fc31 (FEDORA-2020-979db74289) Extension for colcon to customize the output in various ways -------------------------------------------------------------------------------- Update Information:
Update to the latest colcon releases. -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Scott K Logan logans@cottsay.net - 0.2.11-1 - Update to 0.2.11 (rhbz#1849121) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1849121 - python-colcon-output-0.2.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849121 [ 2 ] Bug #1849204 - python-colcon-coveragepy-result-0.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849204 [ 3 ] Bug #1849942 - python-colcon-cmake-0.2.23 is available https://bugzilla.redhat.com/show_bug.cgi?id=1849942 [ 4 ] Bug #1850897 - python-colcon-mixin-0.1.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1850897 --------------------------------------------------------------------------------
================================================================================ python-flask-admin-1.5.6-1.fc31 (FEDORA-2020-4aaf6e6d7c) Simple and extensible admin interface framework for Flask -------------------------------------------------------------------------------- Update Information:
Update to 1.5.6 upstream bugfix and security update. Fixes CVE-2018-16516 -------------------------------------------------------------------------------- ChangeLog:
* Sun Jun 28 2020 Kevin Fenzi kevin@scrye.com - 1.5.6-1 - Update to 1.5.6. Fixes CVE-2018-16516. * Tue May 26 2020 Miro Hron��ok mhroncok@redhat.com - 1.5.2-8 - Rebuilt for Python 3.9 * Thu Jan 30 2020 Fedora Release Engineering releng@fedoraproject.org - 1.5.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Thu Oct 3 2019 Miro Hron��ok mhroncok@redhat.com - 1.5.2-6 - Rebuilt for Python 3.8.0rc1 (#1748018) * Mon Aug 19 2019 Miro Hron��ok mhroncok@redhat.com - 1.5.2-5 - Rebuilt for Python 3.8 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1625908 - CVE-2018-16516 python-flask-admin: Reflected cross site scripting [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1625908 [ 2 ] Bug #1762573 - python-flask-admin-1.5.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1762573 --------------------------------------------------------------------------------
================================================================================ python-kyotocabinet-1.22-2.fc31 (FEDORA-2020-01a2e5a0cf) Kyoto Cabinet Python bindings -------------------------------------------------------------------------------- Update Information:
Initial packaging -------------------------------------------------------------------------------- ChangeLog:
--------------------------------------------------------------------------------
================================================================================ python-tqdm-4.47.0-1.fc31 (FEDORA-2020-838cea022e) Fast, Extensible Progress Meter -------------------------------------------------------------------------------- Update Information:
Update to 4.47.0 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Stephen Gallagher sgallagh@redhat.com - 4.47.0-1 - Update to 4.47.0 * Tue May 26 2020 Miro Hron��ok mhroncok@redhat.com - 4.45.0-2 - Rebuilt for Python 3.9 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1830725 - python-tqdm-4.47.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1830725 --------------------------------------------------------------------------------
================================================================================ shhgit-0.2-1.fc31 (FEDORA-2020-b7ccd84eef) GitHub secrets search tool -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1840797 - Review Request: shhgit - GitHub secrets search tool https://bugzilla.redhat.com/show_bug.cgi?id=1840797 --------------------------------------------------------------------------------
================================================================================ springlobby-0.270-2.fc31 (FEDORA-2020-840162a257) Free cross-platform lobby client for the Spring RTS project -------------------------------------------------------------------------------- Update Information:
Update to latest version -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Artem Polishchuk ego.cordatus@gmail.com - 0.270-1 - Update to 0.270 - Drop GCC 10 patch (upstreamed) - Switch CMake to do out-of-source builds --------------------------------------------------------------------------------
================================================================================ swaylock-1.5-3.fc31 (FEDORA-2020-754c4dd9a0) Screen locker for Wayland -------------------------------------------------------------------------------- Update Information:
Fix bug #1806110 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Fabio Alessandro Locati me@fale.io - 1.5-3 - Fix #1806110 * Fri Jan 31 2020 Fedora Release Engineering releng@fedoraproject.org - 1.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1806110 - swaylock does not display its version correctly https://bugzilla.redhat.com/show_bug.cgi?id=1806110 --------------------------------------------------------------------------------
================================================================================ theme-switcher-2.0.4-4.fc31 (FEDORA-2020-6cb66aac02) Switch dark/light GTK theme automatically during day/night -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1837019 - Review Request: theme-switcher - Switch dark/light GTK theme automatically during day/night https://bugzilla.redhat.com/show_bug.cgi?id=1837019 --------------------------------------------------------------------------------
================================================================================ vagrant-sshfs-1.3.5-1.fc31 (FEDORA-2020-11f1015437) A Vagrant synced folder plugin that mounts folders via SSHFS -------------------------------------------------------------------------------- Update Information:
Fix for BZ 1842371 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jun 29 2020 Dusty Mabe dusty@dustymabe.com - 1.3.5-1 - new upstream release: 1.3.5 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1842371 - Can't mount sshfs using vagrant https://bugzilla.redhat.com/show_bug.cgi?id=1842371 --------------------------------------------------------------------------------