[EPEL-devel] Fedora EPEL 9 updates-testing report

updates Sat, 18 Oct 2025 04:55:49 -0700

The following Fedora EPEL 9 Security updates need testing:
 Age  URL
   4  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-432b5609c3   
civetweb-1.16-10.el9
   4  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-353441fbbe   
apptainer-1.4.3-1.el9
   3  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-fa10429956   
turbo-attack-0.1.0-2.el9
   3  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-da8bc4aeb5   
wordpress-6.8.3-1.el9
   3  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-c1a3189d11   
libssh2-1.11.1-1.el9
   0  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-f007c8e719   
log4cxx-1.5.0-1.el9



The following builds have been pushed to Fedora EPEL 9 updates-testing

    chromium-141.0.7390.54-1.el9
    pythoncapi-compat-0^20251003git97f1582-2.el9
    rust-lru-slab-0.1.2-1.el9

Details about builds:


================================================================================
 chromium-141.0.7390.54-1.el9 (FEDORA-EPEL-2025-bff0433d38)
 A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:

Update to 141.0.7390.54
  * High CVE-2025-11205: Heap buffer overflow in WebGPU
  * High CVE-2025-11206: Heap buffer overflow in Video
  * Medium CVE-2025-11207: Side-channel information leakage in Storage
  * Medium CVE-2025-11208: Inappropriate implementation in Media
  * Medium CVE-2025-11209: Inappropriate implementation in Omnibox
  * Medium CVE-2025-11210: Side-channel information leakage in Tab
  * Medium CVE-2025-11211: Out of bounds read in Media
  * Medium CVE-2025-11212: Inappropriate implementation in Media
  * Medium CVE-2025-11213: Inappropriate implementation in Omnibox
  * Medium CVE-2025-11215: Off by one error in V8
  * Low CVE-2025-11216: Inappropriate implementation in Storage
  * Low CVE-2025-11219: Use after free in V8
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct  2 2025 Than Ngo <[email protected]> - 141.0.7390.54-1
- Update to 141.0.7390.54
  * High CVE-2025-11205: Heap buffer overflow in WebGPU
  * High CVE-2025-11206: Heap buffer overflow in Video
  * Medium CVE-2025-11207: Side-channel information leakage in Storage
  * Medium CVE-2025-11208: Inappropriate implementation in Media
  * Medium CVE-2025-11209: Inappropriate implementation in Omnibox
  * Medium CVE-2025-11210: Side-channel information leakage in Tab
  * Medium CVE-2025-11211: Out of bounds read in Media
  * Medium CVE-2025-11212: Inappropriate implementation in Media
  * Medium CVE-2025-11213: Inappropriate implementation in Omnibox
  * Medium CVE-2025-11215: Off by one error in V8
  * Low CVE-2025-11216: Inappropriate implementation in Storage
  * Low CVE-2025-11219: Use after free in V8
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2381730 - DebugInfo packages aren't being produced.
        https://bugzilla.redhat.com/show_bug.cgi?id=2381730
  [ 2 ] Bug #2400095 - Update chromium-141.0.7390.54 major release [fedora-all, 
epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2400095
--------------------------------------------------------------------------------


================================================================================
 pythoncapi-compat-0^20251003git97f1582-2.el9 (FEDORA-EPEL-2025-9c15b1c4c5)
 Python C API compatibility
--------------------------------------------------------------------------------
Update Information:

Fix varargs indicator for PyBytesWriter_Format
Update to 0^20251003git97f1582
Fix compiler warnings for PyBytesWriter_Format
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct  3 2025 Benjamin A. Beasley <[email protected]> - 
0^20251003git97f1582-2
- Fix varargs indicator for `PyBytesWriter_Format`
* Fri Oct  3 2025 Benjamin A. Beasley <[email protected]> - 
0^20251003git97f1582-1
- Update to 0^20251003git97f1582
- Fix compiler warnings for `PyBytesWriter_Format`
--------------------------------------------------------------------------------


================================================================================
 rust-lru-slab-0.1.2-1.el9 (FEDORA-EPEL-2025-c20e6464ff)
 Pre-allocated storage with constant-time LRU tracking
--------------------------------------------------------------------------------
Update Information:

Initial packaging of the lru-slab crate.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  4 2025 Fabio Valentini <[email protected]> - 0.1.2-1
- Initial import (#2382066)
--------------------------------------------------------------------------------


-- 
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue

[EPEL-devel] Fedora EPEL 9 updates-testing report

Reply via email to