The following builds have been pushed to Fedora EPEL 9 updates-testing
apptainer-1.4.2-1.el9
baresip-4.0.0-1.el9
btop-1.4.4-1.el9
chromium-139.0.7258.66-1.el9
kiwi-boxed-plugin-0.2.55-1.el9
libre-4.0.0-1.el9
rpminspect-2.0-2.el9
rust-zoxide-0.9.4-7.el9
Details about builds:
================================================================================
apptainer-1.4.2-1.el9 (FEDORA-EPEL-2025-a9cfd9ab21)
Application and environment virtualization formerly known as Singularity
--------------------------------------------------------------------------------
Update Information:
Update to upstream 1.4.2, fix CVE-2025-22870 and CVE-2025-4673
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 8 2025 Dave Dykstra <d...@cern.ch> - 1.4.2
- Update to upstream 1.4.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2351883 - CVE-2025-22870 apptainer: HTTP Proxy bypass using IPv6
Zone IDs in golang.org/x/net [epel-9]
https://bugzilla.redhat.com/show_bug.cgi?id=2351883
[ 2 ] Bug #2374278 - CVE-2025-4673 apptainer: Sensitive headers not cleared
on cross-origin redirect in net/http [epel-9]
https://bugzilla.redhat.com/show_bug.cgi?id=2374278
[ 3 ] Bug #2387209 - apptainer-1.4.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2387209
--------------------------------------------------------------------------------
================================================================================
baresip-4.0.0-1.el9 (FEDORA-EPEL-2025-b7906bec1b)
Modular SIP user-agent with audio and video support
--------------------------------------------------------------------------------
Update Information:
Baresip v4.0.0 (2025-08-06)
bevent: ensure that pointer to call is valid
ebuacip: move to baresip-apps
net: remove IPv6 check which is no longer needed
av1: remove backwards definition of AOM_USAGE_REALTIME
srtp: fix size err printf
avcodec: remove ifdef AV_CODEC_ID_H265, should be always enabled
misc: add baresip_version() to get Baresip version string
docs: update README
bevent: remove deprecated ua_event API
ctrl_dbus: check return value of mtx_init()
pulse: use str_ncpy() instead of insecure strcpy()
av1: use av1_packetize() function instead of wrapper
enum ua event rename
call: prepare to receive video immediately with 200 Ok
in_band_dtmf: fix cross compiler alignment warning
uri: remove password field
audio: remove deprecated audio_start
bevent: remove unused CNT_DEPRECATED_WARNINGS enum
Baresip v3.24.0 (2025-07-09)
test/ccheck: add LIST_FOREACH_SAFE check
config: removed "rtp_rxmode thread is currently experimental" warning
gzrtp: increase mbuf size if about to run out
ci: update mingw.yml
ci/clang: use clang-20
call: Get cancel reason from close message
uuid: check that uuid file contains valid uuid
test/jbuf_gnack: add Generic NACK jitterbuffer test
menu: Add hangup sound on closed calls
rtp: use rtp_seq_less
cmake: sort SRCS in alphabetical order
aac: fix debug printf (confSize)
webrtc: init re_trace.json if enabled
prepare for release -- bump version to 3.24.0
libre v4.0.0 (2025-08-06)
rem: remove backwards wrapper for au_calc_nsamp()
rem: remove local macros, include stdint.h instead
mod: remove unused MOD_PRE macro
tcp: remove special case for mingw32/wine
dd: update AV1 and DD docs
test: fix formatted string arguments in URI testcode
tls: drop OpenSSL 1.1.1 support
Update supported OS versions
readme: update supported compilers
tls: disable tls_conn_change_cert for LibreSSL
ci/ssl: bump ssl tools assets
aubuf: remove unused struct auframe in ajb.c
aubuf: remove unused private function plot_underrun()
readme: bump supported GNU C library (glibc) 2.31
misc: remove deprecated functions/params
uri: remove password field
websock: increase test coverage
udp: remove obsolete todo in udp_local_get()
av1: remove av1_packetize_new() -- backwards compat wrapper
tls: remove tls_set_selfsigned_rsa() -- use Elliptic Curve instead
test: enable dtls_set_single() for DTLS client test
libre v3.24.0 (2025-07-09)
list: add LIST_FOREACH_SAFE helper macro
test: SDP interop testing
ci/abi: bump old ref version
list: improve already linked warning
ci/mingw: use windows-latest
ci/clang: use clang-20
av1: rename av1_packetize_new() and add wrapper
trice: update header to match filename
rtp/rr: fix fraction left shift promotion
test/sipsess: cast rel100_mode
test: print trice_debug to buffer to test debug functions
trice: update doxygen documentation
rtp: add rtp_seq_less inline function helper
trice: remove trice_set_software()
trice: always enable PRFLX candidates
rtp: add TWCC packet definition helpers
test: add support check for SRTP GCM test cases
trice: add more doxygen comments
prepare for release -- bump version to 3.24.0
--------------------------------------------------------------------------------
ChangeLog:
* Sat Aug 9 2025 Robert Scheck <rob...@fedoraproject.org> 4.0.0-1
- Upgrade to 4.0.0 (#2379005)
* Wed Jul 23 2025 Fedora Release Engineering <rel...@fedoraproject.org> -
3.23.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2378962 - libre-4.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2378962
[ 2 ] Bug #2379005 - baresip-4.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2379005
--------------------------------------------------------------------------------
================================================================================
btop-1.4.4-1.el9 (FEDORA-EPEL-2025-a8e7a3a170)
Modern and colorful command line resource monitor that shows usage and stats
--------------------------------------------------------------------------------
Update Information:
update to 1.44
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 8 2025 Jonathan Wright <jonat...@almalinux.org> - 1.4.4-1
- update to 1.4.4 rhbz#2362554
* Wed Jul 23 2025 Fedora Release Engineering <rel...@fedoraproject.org> -
1.4.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Thu Jan 16 2025 Fedora Release Engineering <rel...@fedoraproject.org> -
1.4.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
chromium-139.0.7258.66-1.el9 (FEDORA-EPEL-2025-f2abcbbf06)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
Updated to 139.0.7258.66
* CVE-2025-8576: Use after free in Extensions
* CVE-2025-8578: Use after free in Cast
* CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome
* CVE-2025-8580: Inappropriate implementation in Filesystems
* CVE-2025-8581: Inappropriate implementation in Extensions
* CVE-2025-8582: Insufficient validation of untrusted input in DOM
* CVE-2025-8583: Inappropriate implementation in Permissions
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 5 2025 Than Ngo <t...@redhat.com> - 139.0.7258.66-1
- Updated to 139.0.7258.66
* CVE-2025-8576: Use after free in Extensions
* CVE-2025-8578: Use after free in Cast
* CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome
* CVE-2025-8580: Inappropriate implementation in Filesystems
* CVE-2025-8581: Inappropriate implementation in Extensions
* CVE-2025-8582: Insufficient validation of untrusted input in DOM
* CVE-2025-8583: Inappropriate implementation in Permissions
* Mon Aug 4 2025 Tom Stellard <tstel...@redhat.com> - 138.0.7204.183-2
- Backport fix for build failure with clang-21
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2386895 - Update chromium to 139.0.7258.66
https://bugzilla.redhat.com/show_bug.cgi?id=2386895
[ 2 ] Bug #2387025 - CVE-2025-8583 chromium: Inappropriate implementation in
Permissions in Google Chrome [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387025
[ 3 ] Bug #2387026 - CVE-2025-8583 chromium: Inappropriate implementation in
Permissions in Google Chrome [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387026
[ 4 ] Bug #2387027 - CVE-2025-8580 chromium: Inappropriate implementation in
Filesystems in Google Chrome [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387027
[ 5 ] Bug #2387028 - CVE-2025-8580 chromium: Inappropriate implementation in
Filesystems in Google Chrome [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387028
[ 6 ] Bug #2387029 - CVE-2025-8582 chromium: Insufficient validation of
untrusted input in Core in Google Chrome [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387029
[ 7 ] Bug #2387031 - CVE-2025-8582 chromium: Insufficient validation of
untrusted input in Core in Google Chrome [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387031
[ 8 ] Bug #2387032 - CVE-2025-8577 chromium: Inappropriate implementation in
Picture In Picture in Google Chrome [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387032
[ 9 ] Bug #2387033 - CVE-2025-8577 chromium: Inappropriate implementation in
Picture In Picture in Google Chrome [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387033
[ 10 ] Bug #2387034 - CVE-2025-8576 chromium: Use after free in Extensions in
Google Chrome [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387034
[ 11 ] Bug #2387035 - CVE-2025-8576 chromium: Use after free in Extensions in
Google Chrome [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2387035
--------------------------------------------------------------------------------
================================================================================
kiwi-boxed-plugin-0.2.55-1.el9 (FEDORA-EPEL-2025-24caf9b796)
KIWI - Boxed Build Plugin
--------------------------------------------------------------------------------
Update Information:
Fix support for selecting specific kiwi file to build images
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 8 2025 Neal Gompa <ngo...@fedoraproject.org> - 0.2.55-1
- Update to 0.2.55
* Thu Jul 24 2025 Fedora Release Engineering <rel...@fedoraproject.org> -
0.2.52-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Thu Jul 10 2025 Python Maint <python-ma...@redhat.com> - 0.2.52-2
- Rebuilt for Python 3.14
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2374959 - kiwi-boxed-plugin-0.2.55 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2374959
--------------------------------------------------------------------------------
================================================================================
libre-4.0.0-1.el9 (FEDORA-EPEL-2025-b7906bec1b)
Generic library for real-time communications
--------------------------------------------------------------------------------
Update Information:
Baresip v4.0.0 (2025-08-06)
bevent: ensure that pointer to call is valid
ebuacip: move to baresip-apps
net: remove IPv6 check which is no longer needed
av1: remove backwards definition of AOM_USAGE_REALTIME
srtp: fix size err printf
avcodec: remove ifdef AV_CODEC_ID_H265, should be always enabled
misc: add baresip_version() to get Baresip version string
docs: update README
bevent: remove deprecated ua_event API
ctrl_dbus: check return value of mtx_init()
pulse: use str_ncpy() instead of insecure strcpy()
av1: use av1_packetize() function instead of wrapper
enum ua event rename
call: prepare to receive video immediately with 200 Ok
in_band_dtmf: fix cross compiler alignment warning
uri: remove password field
audio: remove deprecated audio_start
bevent: remove unused CNT_DEPRECATED_WARNINGS enum
Baresip v3.24.0 (2025-07-09)
test/ccheck: add LIST_FOREACH_SAFE check
config: removed "rtp_rxmode thread is currently experimental" warning
gzrtp: increase mbuf size if about to run out
ci: update mingw.yml
ci/clang: use clang-20
call: Get cancel reason from close message
uuid: check that uuid file contains valid uuid
test/jbuf_gnack: add Generic NACK jitterbuffer test
menu: Add hangup sound on closed calls
rtp: use rtp_seq_less
cmake: sort SRCS in alphabetical order
aac: fix debug printf (confSize)
webrtc: init re_trace.json if enabled
prepare for release -- bump version to 3.24.0
libre v4.0.0 (2025-08-06)
rem: remove backwards wrapper for au_calc_nsamp()
rem: remove local macros, include stdint.h instead
mod: remove unused MOD_PRE macro
tcp: remove special case for mingw32/wine
dd: update AV1 and DD docs
test: fix formatted string arguments in URI testcode
tls: drop OpenSSL 1.1.1 support
Update supported OS versions
readme: update supported compilers
tls: disable tls_conn_change_cert for LibreSSL
ci/ssl: bump ssl tools assets
aubuf: remove unused struct auframe in ajb.c
aubuf: remove unused private function plot_underrun()
readme: bump supported GNU C library (glibc) 2.31
misc: remove deprecated functions/params
uri: remove password field
websock: increase test coverage
udp: remove obsolete todo in udp_local_get()
av1: remove av1_packetize_new() -- backwards compat wrapper
tls: remove tls_set_selfsigned_rsa() -- use Elliptic Curve instead
test: enable dtls_set_single() for DTLS client test
libre v3.24.0 (2025-07-09)
list: add LIST_FOREACH_SAFE helper macro
test: SDP interop testing
ci/abi: bump old ref version
list: improve already linked warning
ci/mingw: use windows-latest
ci/clang: use clang-20
av1: rename av1_packetize_new() and add wrapper
trice: update header to match filename
rtp/rr: fix fraction left shift promotion
test/sipsess: cast rel100_mode
test: print trice_debug to buffer to test debug functions
trice: update doxygen documentation
rtp: add rtp_seq_less inline function helper
trice: remove trice_set_software()
trice: always enable PRFLX candidates
rtp: add TWCC packet definition helpers
test: add support check for SRTP GCM test cases
trice: add more doxygen comments
prepare for release -- bump version to 3.24.0
--------------------------------------------------------------------------------
ChangeLog:
* Sat Aug 9 2025 Robert Scheck <rob...@fedoraproject.org> 4.0.0-1
- Upgrade to 4.0.0 (#2378962)
* Thu Jul 24 2025 Fedora Release Engineering <rel...@fedoraproject.org> -
3.23.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2378962 - libre-4.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2378962
[ 2 ] Bug #2379005 - baresip-4.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2379005
--------------------------------------------------------------------------------
================================================================================
rpminspect-2.0-2.el9 (FEDORA-EPEL-2025-55fd7ed2ec)
Build deviation analysis and compliance tool
--------------------------------------------------------------------------------
Update Information:
clamav rebuild
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 8 2025 Gwyn Ciesla <gw...@protonmail.com> - 2.0-2
- Clamav rebuild
--------------------------------------------------------------------------------
================================================================================
rust-zoxide-0.9.4-7.el9 (FEDORA-EPEL-2025-e4418c306d)
Smarter cd command for your terminal
--------------------------------------------------------------------------------
Update Information:
Update rstest to 0.26; deal with fish not built on 32-bit in Fedora 42+ (fix
RHBZ#2385607)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 7 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 0.9.4-7
- Deal with fish not built on 32-bit in Fedora 42+ (fix RHBZ#2385607)
* Thu Aug 7 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 0.9.4-6
- Update rstest to 0.26
* Fri Jul 25 2025 Fedora Release Engineering <rel...@fedoraproject.org> -
0.9.4-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Sun Jan 19 2025 Fedora Release Engineering <rel...@fedoraproject.org> -
0.9.4-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2385607 - rust-zoxide: FTBFS in Fedora rawhide/f43
https://bugzilla.redhat.com/show_bug.cgi?id=2385607
--------------------------------------------------------------------------------
--
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
