The following Fedora EPEL 9 Security updates need testing:
Age URL
27 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-9a55de96db
xpdf-4.06-1.el9
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-f43c018f46
python-django4.2-4.2.27-1.el9
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-b479f3bb28
checkpointctl-1.4.1-1.el9
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-c9895b0a25
python3.11-ldap-epel-3.4.5-1.el9
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-69e9a501c7
chromium-143.0.7499.109-2.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
dnscap-2.5.0-2.el9
golang-github-facebook-time-0^20251216git61f7510-2.el9
python-google-auth-2.45.0-1.el9
roundcubemail-1.5.12-1.el9
rust-crc-3.4.0-1.el9
rust-hyperfine-1.20.0-1.el9
rust-iri-string-0.7.9-1.el9
rust-libc-0.2.178-1.el9
rust-log-0.4.29-1.el9
rust-minijinja-2.14.0-1.el9
sslscan-2.2.1-2.el9
Details about builds:
================================================================================
dnscap-2.5.0-2.el9 (FEDORA-EPEL-2025-c931258404)
Network capture utility designed specifically for DNS traffic
--------------------------------------------------------------------------------
Update Information:
Unretirement of the package and update to 2.5.0.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 3 2025 Fedor Vorobev <[email protected]> - 2.5.0-2
- Modified upstream RPM .spec file.
- Made it follow Fedora Package Guidelines.
- Patched cryptopan to have expected output on big endian systems.
* Tue Oct 21 2025 Jerry Lundström <[email protected]> 2.5.0-1
- Release 2.5.0
* This release adds two new plugin extensions, rewrites the compressed PCAP
reader, removes a PCAP header check to not drop valid packets and fixes
problems with `-e` filtering.
* New plugin extensions:
- `DNSCAP_EXT_BREAKLOOP_PCAPS`: for stopping the PCAP process/capture loop
- `DNSCAP_EXT_GET_LAST_TOTAL_COMPRESS_READ`: to get the uncompressed bytes
counter from the compression backend in use
* Compressed PCAP reader:
- Complete rewrite of the reader to fix several bugs, like buffer overrun
and infinite loops
- Add support to read bzip2 PCAPs
- New option `-o override_compress_extension=<ext>` to force a specific
compression when reading
* Fixes:
- Remove PCAP `hdr.len != hdr.caplen` check to not drop valid packets
- `-e`: Fix #356
- Provide usage warning instead of assert'ing on empty option
- Remove confusing part of documentation (may still be a bit confusing...)
- Fix filtering where TC=1 and no rcode
* Other changes:
- Allow C++ to include `dnscap_common.h` without needing to specify `extern
"C"`
- Update email address, remove old obsolete list address
- Various fixes for CI and code coverage
* Commits:
6fb07d6 -e filter
66a26b9 fix scan-build
43f1137 CI updates
8e22e9f CI
90402ac bsd builds
ba531eb slim deps
d401d81 builds
219d05d ci
6795ad3 Migrate to Codeberg
09747ce RPM
81f142c Compress read
e583788 Fix dropped packets
a042145 proper fix gcov
b1741d4 fix gcov
6914dc9 breakloop
07917b4 C++
0ebdffc C++
5b768e5 Email
* Thu Jun 26 2025 Jerry Lundström <[email protected]> 2.4.1-1
- Release 2.4.1
* This patch release fixes a bug introduced in v2.4.0 where writing gziped
PCAPs broke, and readds sending timestamp to plugins close function which
was incorrectly removed in v2.2.1.
* Changes:
- Remove obsolete code with zlib being required
- Add gz write test
- Fix #334:
- Readd timestamp when calling plugin close
- Update plugin close interface to pass timestamp that was missed in
2f65abd0ea059046a3ab54260806891d557d1180
* Commits:
9abd07d plugin close
b10f923 gz write
* Mon Jun 23 2025 Jerry Lundström <[email protected]> 2.4.0-1
- Release 2.4.0
* This release brings support for reading compressed PCAPs, a few new
plugin extensions and updates to autotools.
* Changes:
- Add `CHANGES` to docs
- Update autotools requirement to 2.69 and fix deprecation warnings
- Support reading gz/xz/lz4/zst compressed PCAPs based on file extension
- New plugin extensions:
- `DNSCAP_EXT_GET_PCAP_THREAD_FTELL`: function for getting the current
uncompressed position in the PCAP file being read upon being called
- `DNSCAP_EXT_GET_PKTHDR_CAPLEN`: function that returns the actual packet
length as reported by libpcap
* Commits:
f7e4cad SLE/openSUSE lz4
b30d82f Autotools, compressed PCAPs, plugin extensions
ac7f37b CHANGES
* Thu Apr 24 2025 Jerry Lundström <[email protected]> 2.3.1-1
- Release 2.3.1
* This patch release fixes issues on 32bit systems when they are using
64bit time structures (`_TIME_BITS` set to 64) and updates pcap-thread
to require libpcap with `DLT_LINUX_SLL2` support.
* Commits:
a5e9a4a pcap-thread v4.1.1
731d9e0 Add support for 64bit time structures on 32bit systems
* Thu Apr 17 2025 Jerry Lundström <[email protected]> 2.3.0-1
- Release 2.3.0
* This release adds support for Linux cooked v2 link-type, a new output
format, a new plugin and fixes a couple of issues.
* The new output format `tcpdns` can be used to generate a file with the
DNS as a TCP stream, first 16bit size (network order) then the DNS
message, which is compatible with `dnsperf -B`.
* The new plugin `asudp` can be used to rewrite outgoing packet by taking
the DNS that's found and construct UDP packets from it.
* Other changes:
- Fix #314:
- man-page: Clarify that `pktsize` is shown before parsing the IP packet
- `-g`: Quote `,` characters
- Fix #316: Fix handling of L2/ethernet frames that are larger than the
IPv4/v6 packet
- Fix multiple print statements w.r.t. `size_t`/`struct timeval`,
`%zu`/`%ld` and type casting
- Handle extension function pointers better
- Clarify that `-C` counts uncompressed output
- Block PCAP output if TCP reassemble is used
- Increase maximum DNS messages in a reassembled TCP message
- Add new extension interface for setting output packet
- Update pcap-thread to v4.1.0
* Commits:
e689bc8 pcap-thread v4.1.0
29d184b DLT_LINUX_SLL2
ba793a9 Fixes, asudp plugin, tcpdns output format
6c133d4 Ethernet padding
420548a Diag output
8b92a52 SPEC
a3fb1dd Mailing-list
* Tue Sep 10 2024 Jerry Lundström <[email protected]> 2.2.1-1
- Release 2.2.1
* This patch release fixes the BPF to correct capture ICMPv6, a typo in
the filter had it matching "ip" and not "ip6".
* Other changes are updates to GitHub workflows and man-pages.
* Commits:
ea82cd1 Copyright
aa14a9f ICMP BPF filter
6ef17e2 Badges
6722677 Workflow
1cb22f0 Man-page opt, Dumper
--------------------------------------------------------------------------------
================================================================================
golang-github-facebook-time-0^20251216git61f7510-2.el9
(FEDORA-EPEL-2025-a3d878c59b)
Meta's Time libraries
--------------------------------------------------------------------------------
Update Information:
Update logrus for https://access.redhat.com/security/cve/cve-2025-65637
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Michel Lind <[email protected]> -
0^20251216git61f7510-2
- Generate and upload new vendor tarball
* Tue Dec 16 2025 Oleg Obleukhov <[email protected]> -
0^20251216git61f7510-1
- Build latest
--------------------------------------------------------------------------------
================================================================================
python-google-auth-2.45.0-1.el9 (FEDORA-EPEL-2025-660ba8269e)
Google Authentication Library
--------------------------------------------------------------------------------
Update Information:
Update python-google-auth to 2.45.0
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Fedora Release Monitoring
<[email protected]> - 1:2.45.0-1
- Update to 2.45.0 (#2422343)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2422343 - python-google-auth-2.45.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2422343
--------------------------------------------------------------------------------
================================================================================
roundcubemail-1.5.12-1.el9 (FEDORA-EPEL-2025-0d5788d77e)
Round Cube Webmail is a browser-based multilingual IMAP client
--------------------------------------------------------------------------------
Update Information:
Release 1.5.12
Fix Cross-Site-Scripting vulnerability via SVG's animate tag
Fix Information Disclosure vulnerability in the HTML style sanitizer
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2025 Remi Collet <[email protected]> - 1.5.12-1
- update to 1.5.12
--------------------------------------------------------------------------------
================================================================================
rust-crc-3.4.0-1.el9 (FEDORA-EPEL-2025-296521017d)
Rust implementation of CRC with support of various standards
--------------------------------------------------------------------------------
Update Information:
Update to version 3.4.0.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Fabio Valentini <[email protected]> - 3.4.0-1
- Update to version 3.4.0; Fixes RHBZ#2417331
* Fri Jul 25 2025 Fedora Release Engineering <[email protected]> -
3.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-hyperfine-1.20.0-1.el9 (FEDORA-EPEL-2025-25c8f48403)
Command-line benchmarking tool
--------------------------------------------------------------------------------
Update Information:
Update to version 1.20.0.
Release notes: https://github.com/sharkdp/hyperfine/releases/tag/v1.20.0
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Fabio Valentini <[email protected]> - 1.20.0-1
- Update to version 1.20.0
--------------------------------------------------------------------------------
================================================================================
rust-iri-string-0.7.9-1.el9 (FEDORA-EPEL-2025-e983f8743a)
IRI as string types
--------------------------------------------------------------------------------
Update Information:
Update to version 0.7.9.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Fabio Valentini <[email protected]> - 0.7.9-1
- Update to version 0.7.9; Fixes RHBZ#2412309
* Fri Jul 25 2025 Fedora Release Engineering <[email protected]> -
0.7.8-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rust-libc-0.2.178-1.el9 (FEDORA-EPEL-2025-b97e241ce5)
Raw FFI bindings to platform libraries like libc
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.178.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Fabio Valentini <[email protected]> - 0.2.178-1
- Update to version 0.2.178; Fixes RHBZ#2419264
--------------------------------------------------------------------------------
================================================================================
rust-log-0.4.29-1.el9 (FEDORA-EPEL-2025-c0641b0eec)
Lightweight logging facade for Rust
--------------------------------------------------------------------------------
Update Information:
Update to version 0.4.29.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Fabio Valentini <[email protected]> - 0.4.29-1
- Update to version 0.4.29; Fixes RHBZ#2419269
--------------------------------------------------------------------------------
================================================================================
rust-minijinja-2.14.0-1.el9 (FEDORA-EPEL-2025-6cc07a73d7)
Powerful template engine for Rust with minimal dependencies
--------------------------------------------------------------------------------
Update Information:
Update to version 2.14.0.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Fabio Valentini <[email protected]> - 2.14.0-1
- Update to version 2.14.0; Fixes RHBZ#2419278
--------------------------------------------------------------------------------
================================================================================
sslscan-2.2.1-2.el9 (FEDORA-EPEL-2025-462798c9ae)
Security assessment tool for SSL/TLS
--------------------------------------------------------------------------------
Update Information:
Update to sslscan 2.2.1, bump bundled OpenSSL to 3.5.4
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 16 2025 Sandipan Roy <[email protected]> - 2.2.1-1
- Update to sslscan 2.2.1
- Bump bundled OpenSSL to 3.5.4
- Fixes rhbz#2419393
* Wed Aug 13 2025 Sandipan Roy <[email protected]> - 2.2.0-1
- Update to sslscan 2.2.0
- Bump bundled OpenSSL to 3.5.0 (minimum supported upstream)
- Fixes rhbz#2330567
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2419393 - sslscan-2.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2419393
--------------------------------------------------------------------------------
--
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
