The following Fedora EPEL 8 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-d431be322b zabbix40-4.0.39-1.el8 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-0dca326d43 abcm2ps-8.14.13-1.el8 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-ad126686cf python-paramiko-2.4.3-2.el8 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-42af0c4375 libcaca-0.99-0.59.beta20.el8 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-1edabe7090 openssl3-3.0.1-18.el8.1 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-883139a5ce openvpn-2.4.12-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing R-4.1.3-1.el8 kdeplasma-addons-5.23.3-2.el8 kf5-knewstuff-5.88.0-2.el8 libbinio-1.5-1.el8 partclone-0.3.19-1.el8 plasma-discover-5.22.5-2.el8 plasma-workspace-5.23.3-2.el8 Details about builds: ================================================================================ R-4.1.3-1.el8 (FEDORA-EPEL-2022-0b159c8635) A language for data analysis and graphics -------------------------------------------------------------------------------- Update Information: Update R to 4.1.3 (and rebuild rpy where applicable) -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 19 2022 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 4.1.3-1 - update to 4.1.3 * Sat Feb 5 2022 Jiri Vanek <jvanek@xxxxxxxxxx> - 4.1.2-4 - Rebuilt for java-17-openjdk as system jdk * Wed Jan 26 2022 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 4.1.2-3 - disable _package_note_flags because it breaks R modules * Wed Jan 19 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2062854 - R-4.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2062854 -------------------------------------------------------------------------------- ================================================================================ kdeplasma-addons-5.23.3-2.el8 (FEDORA-EPEL-2022-c0681c5aa8) Additional Plasmoids for Plasma 5 -------------------------------------------------------------------------------- Update Information: plasma-discover and knewstuff are causing a distributed denial of service attack on KDE.org These packages have been patched to use caches more, check less often, and check servers that are setup better for high loads. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 18 2022 Troy Dawson <tdawson@xxxxxxxxxx> - 5.23.3-2 - Correct download enpoints (#2065761) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2065761 - [EPEL8] plasma-discover / knewstuff fix needed https://bugzilla.redhat.com/show_bug.cgi?id=2065761 -------------------------------------------------------------------------------- ================================================================================ kf5-knewstuff-5.88.0-2.el8 (FEDORA-EPEL-2022-c0681c5aa8) KDE Frameworks 5 Tier 3 module for downloading application assets -------------------------------------------------------------------------------- Update Information: plasma-discover and knewstuff are causing a distributed denial of service attack on KDE.org These packages have been patched to use caches more, check less often, and check servers that are setup better for high loads. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 18 2022 Troy Dawson <tdawson@xxxxxxxxxx> - 5.88.0-2 - Add patch for providerFileUrl and caching (#2065761) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2065761 - [EPEL8] plasma-discover / knewstuff fix needed https://bugzilla.redhat.com/show_bug.cgi?id=2065761 -------------------------------------------------------------------------------- ================================================================================ libbinio-1.5-1.el8 (FEDORA-EPEL-2022-e80b9ca2e5) A software library for binary I/O classes in C++ -------------------------------------------------------------------------------- Update Information: Update to 1.5 to fix off-by-one error in binisstream, libbinio fails to use memoryobjects -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 16 2022 Charles R. Anderson <cra@xxxxxxxxxxxx> - 1.5-1 - Source moved to github. Update to 1.5. * Thu Jan 20 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.4-36 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.4-35 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Tue Jan 26 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.4-34 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.4-33 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Wed Jan 29 2020 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.4-32 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1800905 - update to fix off-by-one error in binisstream, libbinio fails to use memoryobjects https://bugzilla.redhat.com/show_bug.cgi?id=1800905 -------------------------------------------------------------------------------- ================================================================================ partclone-0.3.19-1.el8 (FEDORA-EPEL-2022-7038242b02) Utility to clone and restore a partition -------------------------------------------------------------------------------- Update Information: # partclone v0.3.19 - Ignore free space check if compression is enabled - Fix crash when backing up swap partition - Update to btrfs-progs 5.4.1 - Change C99 for loop init to C89 for compatibility - doc: document the image formats - doc: fix typo for logfile argument - Add block_size and blocks_total in `torrent.info` to provide partition info - Use EVP OpenSSL API - Fix using EVP OpenSSL API - Fix typo - Support HFS+ wrapper volumes - Domain file doc - Docs typo "normanly" - How to contribute docs: readme -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 18 2022 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 0.3.19-1 - Upgrade to 0.3.19 (#2065858) * Thu Jan 20 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.3.18-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2065858 - partclone-0.3.19 is available https://bugzilla.redhat.com/show_bug.cgi?id=2065858 -------------------------------------------------------------------------------- ================================================================================ plasma-discover-5.22.5-2.el8 (FEDORA-EPEL-2022-c0681c5aa8) KDE and Plasma resources management GUI -------------------------------------------------------------------------------- Update Information: plasma-discover and knewstuff are causing a distributed denial of service attack on KDE.org These packages have been patched to use caches more, check less often, and check servers that are setup better for high loads. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 18 2022 Troy Dawson <tdawson@xxxxxxxxxx> - 5.22.50-2 - trigger offline updates less often (#2065761) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2065761 - [EPEL8] plasma-discover / knewstuff fix needed https://bugzilla.redhat.com/show_bug.cgi?id=2065761 -------------------------------------------------------------------------------- ================================================================================ plasma-workspace-5.23.3-2.el8 (FEDORA-EPEL-2022-c0681c5aa8) Plasma workspace, applications and applets -------------------------------------------------------------------------------- Update Information: plasma-discover and knewstuff are causing a distributed denial of service attack on KDE.org These packages have been patched to use caches more, check less often, and check servers that are setup better for high loads. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 18 2022 Troy Dawson <tdawson@xxxxxxxxxx> - 5.23.3-2 - Correct download enpoints (#2065761) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2065761 - [EPEL8] plasma-discover / knewstuff fix needed https://bugzilla.redhat.com/show_bug.cgi?id=2065761 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
