Fedora EPEL 8 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

The following builds have been pushed to Fedora EPEL 8 updates-testing

    clamav-0.101.4-1.el8
    libunwind-1.3.1-3.el8
    perl-CPAN-Changes-0.400002-13.el8
    perl-Expect-1.35-10.el8
    perl-HTTP-Headers-Fast-0.22-3.el8
    perl-Mixin-Linewise-0.108-15.el8
    perl-Net-IP-1.26-20.el8
    python-ecdsa-0.13.2-3.el8

Details about builds:


================================================================================
 clamav-0.101.4-1.el8 (FEDORA-EPEL-2019-fabd190d13)
 End-user tools for the Clam Antivirus scanner
--------------------------------------------------------------------------------
Update Information:

ClamAV 0.101.4 is a security patch release that addresses the following issues.
-    An out of bounds write was possible within ClamAV's NSIS bzip2 library when
attempting decompression in cases where the number of selectors exceeded the max
limit set by the library (CVE-2019-12900). The issue has been resolved by
respecting that limit.      Thanks to Martin Simmons for reporting the issue
here.  -     The zip bomb vulnerability mitigated in 0.101.3 has been assigned
the CVE identifier CVE-2019-12625. Unfortunately, a workaround for the zip-bomb
mitigation was immediately identified. To remediate the zip-bomb scan time
issue, a scan time limit has been introduced in 0.101.4. This limit now resolves
ClamAV's vulnerability to CVE-2019-12625.      The default scan time limit is 2
minutes (120000 milliseconds).      To customize the time limit:     - use the
clamscan  --max-scantime option     - use the clamd  MaxScanTime config option
Libclamav users may customize the time limit using the cl_engine_set_num
function. For example:      C         cl_engine_set_num(engine,
CL_ENGINE_MAX_SCANTIME, time_limit_milliseconds)      Thanks to David Fifield
for reviewing the zip-bomb mitigation in 0.101.3 and reporting the issue.
--------------------------------------------------------------------------------


================================================================================
 libunwind-1.3.1-3.el8 (FEDORA-EPEL-2019-c25ebc1512)
 An unwinding library
--------------------------------------------------------------------------------
Update Information:

Libunwind provides a C ABI to determine the call-chain of a program.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1743588 - Please build for epel8
        https://bugzilla.redhat.com/show_bug.cgi?id=1743588
--------------------------------------------------------------------------------


================================================================================
 perl-CPAN-Changes-0.400002-13.el8 (FEDORA-EPEL-2019-0a41d88896)
 Read and write Changes files
--------------------------------------------------------------------------------
Update Information:

This is the first EPEL-8 package of perl-CPAN-Changes.
--------------------------------------------------------------------------------


================================================================================
 perl-Expect-1.35-10.el8 (FEDORA-EPEL-2019-6fc04a83e8)
 Expect for Perl
--------------------------------------------------------------------------------
Update Information:

This is the first EPEL-8 build of perl-Expect.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1744512 - Request to build perl-Expect for EPEL 8
        https://bugzilla.redhat.com/show_bug.cgi?id=1744512
--------------------------------------------------------------------------------


================================================================================
 perl-HTTP-Headers-Fast-0.22-3.el8 (FEDORA-EPEL-2019-07cb841e5f)
 Faster implementation of HTTP::Headers
--------------------------------------------------------------------------------
Update Information:

HTTP::Headers::Fast is a perl class for parsing/writing HTTP headers.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1744710 - [RFE] EPEL8 branch of perl-HTTP-Headers-Fast
        https://bugzilla.redhat.com/show_bug.cgi?id=1744710
--------------------------------------------------------------------------------


================================================================================
 perl-Mixin-Linewise-0.108-15.el8 (FEDORA-EPEL-2019-62e6d002f2)
 Write your linewise code for handles; this does the rest
--------------------------------------------------------------------------------
Update Information:

First EPEL-8 build of perl-Mixin-Linewise.
--------------------------------------------------------------------------------


================================================================================
 perl-Net-IP-1.26-20.el8 (FEDORA-EPEL-2019-e5ad6f9682)
 Perl module for manipulation of IPv4 and IPv6 addresses
--------------------------------------------------------------------------------
Update Information:

This is the first EPEL-8 build of perl-Net-IP.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1744681 - [RFE] EPEL8 branch of perl-Net-IP
        https://bugzilla.redhat.com/show_bug.cgi?id=1744681
--------------------------------------------------------------------------------


================================================================================
 python-ecdsa-0.13.2-3.el8 (FEDORA-EPEL-2019-e9edb47a44)
 ECDSA cryptographic signature library
--------------------------------------------------------------------------------
Update Information:

This is an easy-to-use implementation of ECDSA cryptography (Elliptic Curve
Digital Signature Algorithm), implemented purely in Python, released under the
MIT license. With this library, you can quickly create keypairs (signing key and
verifying key), sign messages, and verify the signatures. The keys and
signatures are very short, making them easy to handle and incorporate into other
protocols.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1744977 - Request to build python-ecdsa for EPEL 8
        https://bugzilla.redhat.com/show_bug.cgi?id=1744977
--------------------------------------------------------------------------------

_______________________________________________
epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
[Index of Archives]     [Fedora Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Announce]     [SSH]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Linux Apps]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux