The following Fedora EPEL 8 Security updates need testing:
Age URL
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-d431be322b
zabbix40-4.0.39-1.el8
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-0dca326d43
abcm2ps-8.14.13-1.el8
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-ad126686cf
python-paramiko-2.4.3-2.el8
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-42af0c4375
libcaca-0.99-0.59.beta20.el8
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-1edabe7090
openssl3-3.0.1-18.el8.1
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-883139a5ce
openvpn-2.4.12-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
R-4.1.3-1.el8
kdeplasma-addons-5.23.3-2.el8
kf5-knewstuff-5.88.0-2.el8
libbinio-1.5-1.el8
partclone-0.3.19-1.el8
plasma-discover-5.22.5-2.el8
plasma-workspace-5.23.3-2.el8
Details about builds:
================================================================================
R-4.1.3-1.el8 (FEDORA-EPEL-2022-0b159c8635)
A language for data analysis and graphics
--------------------------------------------------------------------------------
Update Information:
Update R to 4.1.3 (and rebuild rpy where applicable)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Mar 19 2022 Tom Callaway <s...@fedoraproject.org> - 4.1.3-1
- update to 4.1.3
* Sat Feb 5 2022 Jiri Vanek <jva...@redhat.com> - 4.1.2-4
- Rebuilt for java-17-openjdk as system jdk
* Wed Jan 26 2022 Tom Callaway <s...@fedoraproject.org> - 4.1.2-3
- disable _package_note_flags because it breaks R modules
* Wed Jan 19 2022 Fedora Release Engineering <rel...@fedoraproject.org> -
4.1.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2062854 - R-4.1.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2062854
--------------------------------------------------------------------------------
================================================================================
kdeplasma-addons-5.23.3-2.el8 (FEDORA-EPEL-2022-c0681c5aa8)
Additional Plasmoids for Plasma 5
--------------------------------------------------------------------------------
Update Information:
plasma-discover and knewstuff are causing a distributed denial of service attack
on KDE.org These packages have been patched to use caches more, check less
often, and check servers that are setup better for high loads.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 18 2022 Troy Dawson <tdaw...@redhat.com> - 5.23.3-2
- Correct download enpoints (#2065761)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2065761 - [EPEL8] plasma-discover / knewstuff fix needed
https://bugzilla.redhat.com/show_bug.cgi?id=2065761
--------------------------------------------------------------------------------
================================================================================
kf5-knewstuff-5.88.0-2.el8 (FEDORA-EPEL-2022-c0681c5aa8)
KDE Frameworks 5 Tier 3 module for downloading application assets
--------------------------------------------------------------------------------
Update Information:
plasma-discover and knewstuff are causing a distributed denial of service attack
on KDE.org These packages have been patched to use caches more, check less
often, and check servers that are setup better for high loads.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 18 2022 Troy Dawson <tdaw...@redhat.com> - 5.88.0-2
- Add patch for providerFileUrl and caching (#2065761)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2065761 - [EPEL8] plasma-discover / knewstuff fix needed
https://bugzilla.redhat.com/show_bug.cgi?id=2065761
--------------------------------------------------------------------------------
================================================================================
libbinio-1.5-1.el8 (FEDORA-EPEL-2022-e80b9ca2e5)
A software library for binary I/O classes in C++
--------------------------------------------------------------------------------
Update Information:
Update to 1.5 to fix off-by-one error in binisstream, libbinio fails to use
memoryobjects
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 16 2022 Charles R. Anderson <c...@alum.wpi.edu> - 1.5-1
- Source moved to github. Update to 1.5.
* Thu Jan 20 2022 Fedora Release Engineering <rel...@fedoraproject.org> - 1.4-36
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Thu Jul 22 2021 Fedora Release Engineering <rel...@fedoraproject.org> - 1.4-35
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Tue Jan 26 2021 Fedora Release Engineering <rel...@fedoraproject.org> - 1.4-34
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Tue Jul 28 2020 Fedora Release Engineering <rel...@fedoraproject.org> - 1.4-33
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Wed Jan 29 2020 Fedora Release Engineering <rel...@fedoraproject.org> - 1.4-32
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1800905 - update to fix off-by-one error in binisstream, libbinio
fails to use memoryobjects
https://bugzilla.redhat.com/show_bug.cgi?id=1800905
--------------------------------------------------------------------------------
================================================================================
partclone-0.3.19-1.el8 (FEDORA-EPEL-2022-7038242b02)
Utility to clone and restore a partition
--------------------------------------------------------------------------------
Update Information:
# partclone v0.3.19 - Ignore free space check if compression is enabled - Fix
crash when backing up swap partition - Update to btrfs-progs 5.4.1 - Change
C99 for loop init to C89 for compatibility - doc: document the image formats -
doc: fix typo for logfile argument - Add block_size and blocks_total in
`torrent.info` to provide partition info - Use EVP OpenSSL API - Fix using EVP
OpenSSL API - Fix typo - Support HFS+ wrapper volumes - Domain file doc -
Docs typo "normanly" - How to contribute docs: readme
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 18 2022 Robert Scheck <rob...@fedoraproject.org> 0.3.19-1
- Upgrade to 0.3.19 (#2065858)
* Thu Jan 20 2022 Fedora Release Engineering <rel...@fedoraproject.org> -
0.3.18-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2065858 - partclone-0.3.19 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2065858
--------------------------------------------------------------------------------
================================================================================
plasma-discover-5.22.5-2.el8 (FEDORA-EPEL-2022-c0681c5aa8)
KDE and Plasma resources management GUI
--------------------------------------------------------------------------------
Update Information:
plasma-discover and knewstuff are causing a distributed denial of service attack
on KDE.org These packages have been patched to use caches more, check less
often, and check servers that are setup better for high loads.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 18 2022 Troy Dawson <tdaw...@redhat.com> - 5.22.50-2
- trigger offline updates less often (#2065761)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2065761 - [EPEL8] plasma-discover / knewstuff fix needed
https://bugzilla.redhat.com/show_bug.cgi?id=2065761
--------------------------------------------------------------------------------
================================================================================
plasma-workspace-5.23.3-2.el8 (FEDORA-EPEL-2022-c0681c5aa8)
Plasma workspace, applications and applets
--------------------------------------------------------------------------------
Update Information:
plasma-discover and knewstuff are causing a distributed denial of service attack
on KDE.org These packages have been patched to use caches more, check less
often, and check servers that are setup better for high loads.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 18 2022 Troy Dawson <tdaw...@redhat.com> - 5.23.3-2
- Correct download enpoints (#2065761)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2065761 - [EPEL8] plasma-discover / knewstuff fix needed
https://bugzilla.redhat.com/show_bug.cgi?id=2065761
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure
