The following Fedora EPEL 7 Security updates need testing:
Age URL
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-64b282dfaf
sympa-6.2.72-2.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-becb7041de
perl-HTML-StripScripts-1.06-22.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
chromium-114.0.5735.106-1.el7
radare2-5.8.6-1.el7
Details about builds:
================================================================================
chromium-114.0.5735.106-1.el7 (FEDORA-EPEL-2023-787571a7ba)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
update to 114.0.5735.106. Fixes the following security issue: CVE-2023-3709
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 7 2023 Than Ngo <[email protected]> - 114.0.5735.106-1
- update to 114.0.5735.106
* Sun May 28 2023 Than Ngo <[email protected]> - 114.0.5735.45-1
- update to 114.0.5735.45
- add qt6 linuxui backend
- backport: handle scale factor changes
- backport: fix font double_scaling
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2212975 - CVE-2023-3079 chromium: chromium-browser: Type Confusion
in V8 [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2212975
[ 2 ] Bug #2212976 - CVE-2023-3079 chromium: chromium-browser: Type Confusion
in V8 [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2212976
--------------------------------------------------------------------------------
================================================================================
radare2-5.8.6-1.el7 (FEDORA-EPEL-2023-423bcaf739)
The reverse engineering framework
--------------------------------------------------------------------------------
Update Information:
Bump to 5.8.6
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 23 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.6-1
- bump to 5.8.6
* Sat Mar 25 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.5-0.3
- 5.8.5 rebuild from git, patched for segfault
* Wed Mar 22 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.4-2
- patch for segfault in sdb_hash
* Thu Mar 16 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.4-1
- bump to 5.8.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2157016 - CVE-2022-4843 radare2: Fix null deref in io.bank
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2157016
[ 2 ] Bug #2170036 - syscall detection is broken
https://bugzilla.redhat.com/show_bug.cgi?id=2170036
[ 3 ] Bug #2178851 - radare2-5.8.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2178851
[ 4 ] Bug #2179047 - iaito-5.8.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2179047
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
