The following Fedora EPEL 8 Security updates need testing:
Age URL
45 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-5b2095e2c2
xpdf-4.06-1.el8
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-28671c1b38
proxychains-ng-4.17-8.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
exim-4.99.1-1.el8
firejail-0.9.78-1.el8
netcat-1.237-1.el8
python-pycryptodomex-3.21.0-1.el8
rc-1.7.4-26.el8
Details about builds:
================================================================================
exim-4.99.1-1.el8 (FEDORA-EPEL-2026-a0fad994eb)
The exim mail transfer agent
--------------------------------------------------------------------------------
Update Information:
This is new exim version fixing CVE-2025-67896.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 3 2026 Jaroslav Å karvada <[email protected]> - 4.99.1-1
- New version
Resolves: CVE-2025-67896
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2423180 - exim-4.99.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2423180
[ 2 ] Bug #2423183 - CVE-2025-26794 & CWE-122, CWE-787, CWE-843 in Exim 4.99
https://bugzilla.redhat.com/show_bug.cgi?id=2423183
--------------------------------------------------------------------------------
================================================================================
firejail-0.9.78-1.el8 (FEDORA-EPEL-2026-8dbcbb4a28)
Linux namespaces sandbox program
--------------------------------------------------------------------------------
Update Information:
Update to v0.9.78
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 3 2026 Artur Frenszek-Iwicki <[email protected]> - 0.9.78-1
- Update to v0.9.78
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2426909 - firejail-0.9.78 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2426909
--------------------------------------------------------------------------------
================================================================================
netcat-1.237-1.el8 (FEDORA-EPEL-2026-412f32c2b3)
OpenBSD netcat to read and write data across connections using TCP or UDP
--------------------------------------------------------------------------------
Update Information:
OpenBSD netcat 1.237
Disallow -T with = when arguments are not key=value pairs
Add SOCKS4A support to nc(1)'s proxy (-X) mode
Add SOCKS4A to help text
For SOCKS4A don't perform a local hostname lookup that we're not going to use
Fix HTTP CONNECT proxy support to not treat responses like "HTTP/1.0 200poo" as
success
limitiation -> limitation
Sort process_tls_opt[]
Add ALPN TLS option, so you can specify -T alpn=value
Document -Talpn
Use strtonum() instead of atoi(), and error out for bad numbers
Allow network programs select DSCP_VA for network ToS
Sort the va keyword to be in alpha order, some programs use bsearch()
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 3 2026 Robert Scheck <[email protected]> 1.237-1
- Upgrade to 1.237 (#2406149)
* Thu Jul 24 2025 Fedora Release Engineering <[email protected]> -
1.229-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Fri Jan 17 2025 Fedora Release Engineering <[email protected]> -
1.229-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2406149 - netcat-1.234 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2406149
--------------------------------------------------------------------------------
================================================================================
python-pycryptodomex-3.21.0-1.el8 (FEDORA-EPEL-2026-4013949761)
A self-contained cryptographic library for Python
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2023-52323
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 3 2026 Mohamed El Morabity <[email protected]> - 3.21.0-1
- Update to 3.21.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2415408 - Update python-pytcryptodomex to >= 3.19.1 in EPEL-8 for
CVE-2023-52323
https://bugzilla.redhat.com/show_bug.cgi?id=2415408
--------------------------------------------------------------------------------
================================================================================
rc-1.7.4-26.el8 (FEDORA-EPEL-2026-8cd5a85b15)
Re-implementation for Unix of the Plan 9 shell
--------------------------------------------------------------------------------
Update Information:
Add upstream patch for C23 compatibility
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 3 2026 Robert Scheck <[email protected]> 1.7.4-26
- Add upstream patch for C23 compatibility
* Fri Jul 25 2025 Fedora Release Engineering <[email protected]> -
1.7.4-25
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Sat Jan 18 2025 Fedora Release Engineering <[email protected]> -
1.7.4-24
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Fri Jul 19 2024 Fedora Release Engineering <[email protected]> -
1.7.4-23
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Fri Jan 26 2024 Fedora Release Engineering <[email protected]> -
1.7.4-22
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Mon Jan 22 2024 Fedora Release Engineering <[email protected]> -
1.7.4-21
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jul 21 2023 Fedora Release Engineering <[email protected]> -
1.7.4-20
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri Jan 20 2023 Fedora Release Engineering <[email protected]> -
1.7.4-19
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Sat Jul 23 2022 Fedora Release Engineering <[email protected]> -
1.7.4-18
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Fri Jan 21 2022 Fedora Release Engineering <[email protected]> -
1.7.4-17
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Fri Jul 23 2021 Fedora Release Engineering <[email protected]> -
1.7.4-16
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jan 27 2021 Fedora Release Engineering <[email protected]> -
1.7.4-15
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Wed Jul 29 2020 Fedora Release Engineering <[email protected]> -
1.7.4-14
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Thu Jan 30 2020 Fedora Release Engineering <[email protected]> -
1.7.4-13
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Fri Jul 26 2019 Fedora Release Engineering <[email protected]> -
1.7.4-12
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
--
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
