The following Fedora EPEL 9 Security updates need testing:
Age URL
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-7c7a65fa6c
wordpress-6.5.2-1.el9
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-6ebc36e81d
perl-Clipboard-0.29-1.el9
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-76d6941f10
python-django3-3.2.25-1.el9
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-ce142428af
llhttp-9.2.1-1.el9 python-aiohttp-3.9.3-2.el9
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-5fc8709aa5
python-pycryptodomex-3.20.0-1.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
ampache_browser-1.0.7-3.el9
chromium-123.0.6312.122-1.el9
fluidsynth-2.3.5-1.el9
nordugrid-arc-6.19.0-1.el9
objfw-1.1.1-1.el9
plantuml-1.2024.4-2.el9
python-google-auth-2.29.0-1.el9
raft-0.22.1-1.el9
rust-ctrlc-3.4.4-1.el9
rust-jobserver-0.1.30-1.el9
rust-uluru-3.1.0-2.el9
Details about builds:
================================================================================
ampache_browser-1.0.7-3.el9 (FEDORA-EPEL-2024-6277d9958e)
C++ and Qt based client library for Ampache access
--------------------------------------------------------------------------------
Update Information:
ampache_browser 1.0.7 (2023-12-30)
Fix infite 'Loading...' state.
If Ampache declares higher number of Albums than really available (for example,
when it groups multi-disk albums to a single albums) then 'Loading...' state
never finished in Ampache Browser. This is now fixed.
Fix sorting of tracks on albums with multiple disks.
Since version 6 Ampache started to serve multiple disk albums as one album
instead of each disk separately. Ampache Browser ordered tracks by track number
regardless of the disk number. This lead to wrong ordering if tracks were
numbered on each disk from "1". The track order in such case was:
track 1 (from disk 1)
track 1 (from disk 2)
...
After the fix the order is correct:
track 1 (from disk 1)
track 2 (from disk 1)
...
Required API version was increased to 440001.
Ampache Browser now uses Ampache API 440001 instead of 350001. This is because
of previous fix of tracks sorting as the older APIs does not contain information
about disk number.
Fix building with Qt < 5.15.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 22 2024 Fedora Release Engineering <[email protected]> -
1.0.7-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jan 19 2024 Fedora Release Engineering <[email protected]> -
1.0.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sat Dec 30 2023 Michael Schwendt <[email protected]> - 1.0.7-1
- Update to 1.0.7.
--------------------------------------------------------------------------------
================================================================================
chromium-123.0.6312.122-1.el9 (FEDORA-EPEL-2024-2445965799)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
update to 123.0.6312.122
High CVE-2024-3157: Out of bounds write in Compositing
High CVE-2024-3516: Heap buffer overflow in ANGLE
High CVE-2024-3515: Use after free in Dawn
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 11 2024 Than Ngo <[email protected]> - 123.0.6312.122-1
- update to 123.0.6312.122
* High CVE-2024-3157: Out of bounds write in Compositing
* High CVE-2024-3516: Heap buffer overflow in ANGLE
* High CVE-2024-3515: Use after free in Dawn
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2274473 - CVE-2024-3157 CVE-2024-3515 CVE-2024-3516 chromium:
various flaws [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2274473
--------------------------------------------------------------------------------
================================================================================
fluidsynth-2.3.5-1.el9 (FEDORA-EPEL-2024-81a4e11125)
Real-time software synthesizer
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.5
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 12 2024 Christoph Karl <pampelmuse [AT] gmx [DOT] at> - 2.3.5-1
- Update to 2.3.5
* Wed Jan 24 2024 Fedora Release Engineering <[email protected]> -
2.3.4-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jan 19 2024 Fedora Release Engineering <[email protected]> -
2.3.4-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-6.19.0-1.el9 (FEDORA-EPEL-2024-0914ba8794)
Advanced Resource Connector Middleware
--------------------------------------------------------------------------------
Update Information:
ARC 6.19.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 12 2024 Mattias Ellert <[email protected]> - 6.19.0-1
- Update to version 6.19.0
- Drop patches accepted upstream
* Mon Feb 19 2024 Jitka Plesnikova <[email protected]> - 6.18.0-6
- Fix compilation with SWIG 4.2
* Wed Feb 7 2024 Mattias Ellert <[email protected]> - 6.18.0-5
- Disable test incompatible with SWIG 4.2
* Thu Jan 25 2024 Fedora Release Engineering <[email protected]> -
6.18.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <[email protected]> -
6.18.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Nov 23 2023 Mattias Ellert <[email protected]> - 6.18.0-2
- Fix compilation with libxml2 2.12
--------------------------------------------------------------------------------
================================================================================
objfw-1.1.1-1.el9 (FEDORA-EPEL-2024-4415c50aea)
Portable, lightweight framework for the Objective-C language
--------------------------------------------------------------------------------
Update Information:
Update to 1.1.1
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 14 2024 Jonathan Schleifer <[email protected]> - 1.1.1-1
- Update to 1.1.1
* Sun Apr 14 2024 Jonathan Schleifer <[email protected]> - 1.1-3
- Fix missing ${DESTDIR}, missing files
* Sun Apr 14 2024 Jonathan Schleifer <[email protected]> - 1.1-2
- Fix utils-pie.patch
* Sun Apr 14 2024 Jonathan Schleifer <[email protected]> - 1.1-1
- Update to 1.1
--------------------------------------------------------------------------------
================================================================================
plantuml-1.2024.4-2.el9 (FEDORA-EPEL-2024-c7d0eb6bbf)
Program to generate UML diagram from a text description
--------------------------------------------------------------------------------
Update Information:
Update to version 1.2024.4
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 14 2024 blinxen <[email protected]> - 1:1.2024.4-2
- Update to version 1.2024.4 (rhbz#2273825)
* Tue Feb 27 2024 Jiri Vanek <[email protected]> - 1:1.2024.3-3
- Rebuilt for java-21-openjdk as system jdk
--------------------------------------------------------------------------------
================================================================================
python-google-auth-2.29.0-1.el9 (FEDORA-EPEL-2024-86127a3e30)
Google Auth Python Library
--------------------------------------------------------------------------------
Update Information:
Update python-google-auth to 2.29.0.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 13 2024 Jason Montloon <[email protected]> - 1:2.29.0-1
- Update to 2.29.0 (#2270854)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2270854 - python-google-auth-2.29.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2270854
--------------------------------------------------------------------------------
================================================================================
raft-0.22.1-1.el9 (FEDORA-EPEL-2024-490907392d)
C implementation of the Raft consensus protocol
--------------------------------------------------------------------------------
Update Information:
Update to 0.22.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 13 2024 Reto Gantenbein <[email protected]> - 0.22.1-1
- Update to 0.22.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2272285 - raft-0.22.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2272285
--------------------------------------------------------------------------------
================================================================================
rust-ctrlc-3.4.4-1.el9 (FEDORA-EPEL-2024-7d2af7bc49)
Easy Ctrl-C handler for Rust projects
--------------------------------------------------------------------------------
Update Information:
Update to version 3.4.4.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 14 2024 Fabio Valentini <[email protected]> - 3.4.4-1
- Update to version 3.4.4; Fixes RHBZ#2268727
* Fri Jan 26 2024 Fedora Release Engineering <[email protected]> -
3.4.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-jobserver-0.1.30-1.el9 (FEDORA-EPEL-2024-7b2addb41c)
Implementation of the GNU Make jobserver for Rust
--------------------------------------------------------------------------------
Update Information:
Update to version 0.1.30.
Update to version 0.1.29.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 14 2024 Fabio Valentini <[email protected]> - 0.1.30-1
- Update to version 0.1.30; Fixes RHBZ#2274753
* Fri Apr 12 2024 Fabio Valentini <[email protected]> - 0.1.29-1
- Update to version 0.1.29; Fixes RHBZ#2274541
--------------------------------------------------------------------------------
================================================================================
rust-uluru-3.1.0-2.el9 (FEDORA-EPEL-2024-3fa9907d74)
Simple, fast, LRU cache implementation
--------------------------------------------------------------------------------
Update Information:
Update to version 3.1.0
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 14 2024 blinxen <[email protected]> - 3.1.0-2
- Update to version 3.1.0 (rhbz#2273910)
* Sat Jan 27 2024 Fedora Release Engineering <[email protected]> -
3.0.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
--
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
