In one week, 2025-08-23, I plan to update the tinyxml2 package from
10.0.0 to 11.0.0[1] in F43/Branched and F44/Rawhide. This is an
ABI-incompatible update that bumps the SONAME version from 10 to 11. An
impact check in COPR[2] revealed no regressions. This update will fix
CVE-2024-50614, and *may* fix CVE-2024-50615[3].
I plan to rebuild the following dependent packages in the same side
tags, using provenpackager privilege where it is required:
- Macaulay2
- ags
- bullet
- cppcheck
- docparser
- dvblinkremote
- fuse-encfs
- gazebo
- lgogdownloader
- libmediainfo
- linbox
- linux-sgx
- musescore
- openmw
- rarian
- urdfdom
- vdr-epg2vdr
- vdr-osd2web
- xrootd-s3-http
Maintainers of these packages should have received this email directly
by BCC.
[1] https://src.fedoraproject.org/rpms/tinyxml2/pull-request/2
[2] https://copr.fedorainfracloud.org/coprs/music/tinyxml2/packages/
[3]
https://github.com/leethomason/tinyxml2/issues/996#issuecomment-3192009888
--
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
