Fedora EPEL 7 updates-testing report

updates@xxxxxxxxxxxxxxxxx · Sat, 15 Oct 2022 21:40:50 +0000 (GMT)

The following builds have been pushed to Fedora EPEL 7 updates-testing

    ckeditor-4.20.0-1.el7
    drupal7-7.92-1.el7
    lxi-tools-2.2-1.el7
    perl-Lua-API-0.04-1.el7
    php-Smarty-3.1.47-1.el7
    python3-pytest-2.9.2-5.el7

Details about builds:

================================================================================
 ckeditor-4.20.0-1.el7 (FEDORA-EPEL-2022-473e5052db)
 WYSIWYG text editor to be used inside web pages
--------------------------------------------------------------------------------
Update Information:

## CKEditor 4.20  New Features:  *
[#5084](https://github.com/ckeditor/ckeditor4/issues/5084): Added the [`config.t
abletools_scopedHeaders`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITO
R_config.html#cfg-tabletools_scopedHeaders) configuration option controlling the
behaviour of table headers with and without the `[scope]` attribute. *
[#5219](https://github.com/ckeditor/ckeditor4/issues/5219): Added the [`config.i
mage2_defaultLockRatio`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR
_config.html#cfg-image2_defaultLockRatio) configuration option allowing to set
the default value of the "Lock ratio" option in the [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) dialog. *
[#2008](https://github.com/ckeditor/ckeditor-dev/pull/2008): Extended the
[Mentions](https://ckeditor.com/cke4/addon/mentions) and
[Emoji](https://ckeditor.com/cke4/addon/emoji) plugins with a feature option
that adds a space after an accepted autocompletion match. See:         * [`confi
gDefinition.followingSpace`](https://ckeditor.com/docs/ckeditor4/latest/api/CKED
ITOR_plugins_mentions_configDefinition.html#property-followingSpace) option for
the mentions plugin, and         * [`config.emoji_followingSpace`](https://ckedi
tor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-emoji_followingSpace)
option for the emoji plugin. *
[#5215](https://github.com/ckeditor/ckeditor4/issues/5215): Added the [`config.c
oreStyles_toggleSubSup`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR
_config.html#cfg-coreStyles_toggleSubSup) configuration option which disallows
setting the subscript and superscript on the same element simultaneously using
UI buttons. This option is turned off by default.  Fixed Issues:  *
[#4889](https://github.com/ckeditor/ckeditor4/issues/4889): Fixed: Incorrect
position of the [Table Resize](https://ckeditor.com/cke4/addon/tableresize)
cursor after scrolling the editor horizontally. *
[#5319](https://github.com/ckeditor/ckeditor4/issues/5319): Fixed:
[Autolink](https://ckeditor.com/cke4/addon/autolink) [`config.autolink_urlRegex`
](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
autolink_urlRegex) option produced invalid links when configured directly using
the editor instance config. Thanks to [Aigars Zeiza](https://github.com/Zuzon)!
* [#4941](https://github.com/ckeditor/ckeditor4/issues/4941): Fixed: Some
entities got wrongly encoded when using [`entities_processNumerical =
true`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
entities_processNumerical) configuration option. *
[#4931](https://github.com/ckeditor/ckeditor4/issues/4931): Fixed: Selecting the
whole editor content when there is only a list with an empty element at the end
inside and deleting it did not delete all list items.   API changes:  *
[#5122](https://github.com/ckeditor/ckeditor4/issues/5122): Added the ability to
provide a list of buttons as an array to the [`config.removeButtons`](https://ck
editor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-removeButtons)
config variable. * [#2008](https://github.com/ckeditor/ckeditor-dev/pull/2008):
Added [Autocomplete](https://ckeditor.com/cke4/addon/autocomplete) [`followingSp
ace`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_autocomple
te_configDefinition.html#property-followingSpace) option that finishes an
accepted match with a space.  ## CKEditor 4.19.1  Fixed Issues:  *
[#5125](https://github.com/ckeditor/ckeditor4/issues/5125): Fixed: Deleting a
widget with disabled [autoParagraph](https://ckeditor.com/docs/ckeditor4/latest/
api/CKEDITOR_config.html#cfg-autoParagraph) by the keyboard `backspace` key
removes the editor editable area and crashes the editor. *
[#5135](https://github.com/ckeditor/ckeditor4/issues/5135): Fixed: The [`checkbo
x.setValue`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_ui_dialog_c
heckbox.html#method-setValue) and [`radio.setValue`](https://ckeditor.com/docs/c
keditor4/latest/api/CKEDITOR_ui_dialog_radio.html#method-setValue) methods are
not chainable as stated in the documentation. Thanks to [Jordan
Bradford](https://github.com/LordPachelbel)! *
[#5085](https://github.com/ckeditor/ckeditor4/issues/5085): Fixed: The
[Language](https://ckeditor.com/cke4/addon/language) plugin removes the element
marking the text in foreign language if said element does not have an
information about the text direction. *
[#4284](https://github.com/ckeditor/ckeditor4/issues/4284): Fixed:
[Tableselection](https://ckeditor.com/cke4/addon/tableselection) Merging cells
with a rowspan throws an unexpected error and does not create an undo step. *
[#5184](https://github.com/ckeditor/ckeditor4/issues/5184): Fixed: The [Editor
Placeholder](https://ckeditor.com/cke4/addon/wysiwygarea) plugin degrades typing
performance. * [#5158](https://github.com/ckeditor/ckeditor4/issues/5158):
Fixed: [`CKEDITOR.tools#convertToPx()`](https://ckeditor.com/docs/ckeditor4/late
st/api/CKEDITOR_tools.html#method-convertToPx) gives invalid results if the
helper calculator element was deleted from the DOM. *
[#5234](https://github.com/ckeditor/ckeditor4/issues/5234): Fixed: [Easy
Image](https://ckeditor.com/cke4/addon/easyimage) doesn't allow to upload images
files using toolbar button. *
[#438](https://github.com/ckeditor/ckeditor4/issues/438): Fixed: It is
impossible to navigate to the
[elementspath](https://ckeditor.com/cke4/addon/elementspath) from the
[toolbar](https://ckeditor.com/cke4/addon/toolbar) by keyboard and vice versa. *
[#4449](https://github.com/ckeditor/ckeditor4/issues/4449): Fixed: [`dialog.vali
date#functions`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dialog_
validate.html#method-functions) incorrectly composes functions that return an
optional error message, like e.g. [`dialog.validate.number`](https://ckeditor.co
m/docs/ckeditor4/latest/api/CKEDITOR_dialog_validate.html#method-number) due to
unnecessary return type coercion. *
[#4473](https://github.com/ckeditor/ckeditor4/issues/4473): Fixed: The [dialog.v
alidate](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dialog_validate
.html) method does not accept parameter value. The issue originated in [dialog.v
alidate.functions](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dialo
g_validate.html#method-functions) method that did not properly propagate
parameter value to validator. Affected validators:         * [`functions`](https
://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dialog_validate.html#method-
functions)         * [`equals`](https://ckeditor.com/docs/ckeditor4/latest/api/C
KEDITOR_dialog_validate.html#method-equals)         * [`notEqual`](https://ckedi
tor.com/docs/ckeditor4/latest/api/CKEDITOR_dialog_validate.html#method-notEqual)
* [`cssLength`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dialog_v
alidate.html#method-cssLength)         * [`htmlLength`](https://ckeditor.com/doc
s/ckeditor4/latest/api/CKEDITOR_dialog_validate.html#method-htmlLength)
* [`inlineStyle`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dialog
_validate.html#method-inlineStyle) *
[#5147](https://github.com/ckeditor/ckeditor4/issues/5147): Fixed: The
[Accessibility Help](https://ckeditor.com/cke4/addon/a11yhelp) dialog does not
contain info about focus being moved back to the editing area upon leaving
dialogs. * [#5144](https://github.com/ckeditor/ckeditor4/issues/5144): Fixed:
[Menu buttons](https://ckeditor.com/cke4/addon/menubutton) and [panel
buttons](https://ckeditor.com/cke4/addon/panelbutton) incorrectly indicate the
open status of their associated pop-up menus in the browser's accessibility
tree. * [#5022](https://github.com/ckeditor/ckeditor4/issues/5022): Fixed: [Find
and Replace](https://ckeditor.com/cke4/addon/find) does not respond to the
`Enter` key.  API changes:  *
[#5184](https://github.com/ckeditor/ckeditor4/issues/5184): Added the [`config.e
ditorplaceholder_delay`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR
_config.html#cfg-editorplaceholder_delay) configuration option allowing to delay
placeholder before it is toggled when changing editor content. *
[#5184](https://github.com/ckeditor/ckeditor4/issues/5184): Added the [`CKEDITOR
.tools#debounce()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_tool
s.html#method-debounce) function allowing to postpone a passed function
execution until the given milliseconds have elapsed since the last time it was
invoked.  ## CKEditor 4.19.0  New features:  *
[#2444](https://github.com/ckeditor/ckeditor4/issues/2444): Togglable toolbar
buttons are now exposed as toggle buttons in the browser's accessibility tree. *
[#4641](https://github.com/ckeditor/ckeditor4/issues/4641): Added an option
allowing to cancel the [Delayed Editor Creation](https://ckeditor.com/docs/ckedi
tor4/latest/features/delayed_creation.html) feature as a function handle for
editor creators ([`CKEDITOR.replace`](https://ckeditor.com/docs/ckeditor4/latest
/api/CKEDITOR.html#method-replace), [`CKEDITOR.inline`](https://ckeditor.com/doc
s/ckeditor4/latest/api/CKEDITOR.html#method-inline), [`CKEDITOR.appendTo`](https
://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.html#method-appendTo)). *
[#4986](https://github.com/ckeditor/ckeditor4/issues/4986): Added [`config.shift
LineBreaks`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html
#cfg-shiftLineBreaks) allowing to preserve inline elements formatting when the
`shift`+`enter` keystroke is used. *
[#2445](https://github.com/ckeditor/ckeditor4/issues/2445): Added [`config.appli
cationTitle`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.htm
l#cfg-applicationTitle) configuration option allowing to customize or disable
the editor's application region label. This option, combined with [`config.title
`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
title), gives much better control over the editor's labels read by screen
readers.  Fixed Issues:  *
[#4543](https://github.com/ckeditor/ckeditor4/issues/4543): Fixed: Toolbar
buttons toggle state is not correctly announced by screen readers lacking the
information whether the feature is on or off. *
[#4052](https://github.com/ckeditor/ckeditor4/issues/4052): Fixed: Editor labels
are read incorrectly by screen readers due to invalid editor control type for
the [Iframe Editing Area](https://ckeditor.com/cke4/addon/wysiwygarea) editors.
* [#1904](https://github.com/ckeditor/ckeditor4/issues/1904): Fixed: Screen
readers are not announcing the read-only editor state. *
[#4904](https://github.com/ckeditor/ckeditor4/issues/4904): Fixed: Table cell
selection and navigation with the `tab` key behavior is inconsistent after
adding a new row. * [#3394](https://github.com/ckeditor/ckeditor4/issues/3394):
Fixed: [Enhanced image](https://ckeditor.com/cke4/addon/image2) plugin dialog is
not supporting URL with query string parameters. Thanks to [Simon
Urli](https://github.com/surli)! *
[#5049](https://github.com/ckeditor/ckeditor4/issues/5049): Fixed: The editor
fails in strict mode due to not following the `use strict` directives in a core
editor module. * [#5095](https://github.com/ckeditor/ckeditor4/issues/5095):
Fixed: The [clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin shows
notification about unsupported file format when the file type is different than
`jpg`, `gif`, `png`, not respecting [supported types](https://ckeditor.com/docs/
ckeditor4/latest/api/CKEDITOR_fileTools_uploadWidgetDefinition.html#property-
supportedTypes) by the [Upload
Widget](https://ckeditor.com/cke4/addon/uploadwidget) plugin. *
[#4855](https://github.com/ckeditor/ckeditor4/issues/4855): [iOS] Fixed:
Focusing toolbar buttons with an enabled VoiceOver screen reader moves the
browser focus into an editable area and interrupts button functionality.  API
changes:  * [#4641](https://github.com/ckeditor/ckeditor4/issues/4641): The [`CK
EDITOR.replace`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.html#me
thod-replace), [`CKEDITOR.inline`](https://ckeditor.com/docs/ckeditor4/latest/ap
i/CKEDITOR.html#method-inline), [`CKEDITOR.appendTo`](https://ckeditor.com/docs/
ckeditor4/latest/api/CKEDITOR.html#method-appendTo) functions are now returning
a handle function allowing to cancel the [Delayed Editor Creation](https://ckedi
tor.com/docs/ckeditor4/latest/features/delayed_creation.html) feature. *
[#5095](https://github.com/ckeditor/ckeditor4/issues/5095): Added the [CKEDITOR.
plugins.clipboard.addFileMatcher](https://ckeditor.com/docs/ckeditor4/latest/api
/CKEDITOR_plugins_clipboard.html#method-addFileMatcher) function allowing to
define file formats supported by the
[clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin. Trying to paste
unsupported files will result in a notification that a file cannot be dropped or
pasted into the editor. *
[#2445](https://github.com/ckeditor/ckeditor4/issues/2445): Added [`config.appli
cationTitle`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.htm
l#cfg-applicationTitle) alongside [`CKEDITOR.editor#applicationTitle`](https://c
keditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#property-
applicationTitle) to allow customizing editor's application region label.  ##
CKEditor 4.18.0  **Security Updates:**  * Fixed an XSS vulnerability in the core
module reported by GitHub Security Lab team member [Kevin
Backhouse](https://github.com/kevinbackhouse).          Issue summary: The
vulnerability allowed to inject malformed HTML bypassing content sanitization,
which could result in executing a JavaScript code. See [CVE-2022-
24728](https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-4fc4-4p5g-
6w89) for more details.  * Fixed a Regular expression Denial of Service (ReDoS)
vulnerability in dialog plugin discovered by the CKEditor 4 team during our
regular security audit.          Issue summary: The vulnerability allowed to
abuse a dialog input validator regular expression, which could cause a
significant performance drop resulting in a browser tab freeze. See [CVE-2022-
24729](https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-f6rf-9m92-
x2hh) for more details.  You can read more details in the relevant security
advisory and [contact us](security@xxxxxxxxxxxx) if you have more questions.
**An upgrade is highly recommended!**  **Highlights:**  [Web Spell
Checker](https://webspellchecker.com/) ended support for WebSpellChecker Dialog
on December 31st, 2021. This means the plugin is not supported any longer.
Therefore, we decided to deprecate and remove the WebSpellChecker Dialog plugin
from CKEditor 4 presets.  We strongly encourage everyone to choose one of the
other available spellchecking solutions - [Spell Check As You Type
(SCAYT)](https://ckeditor.com/cke4/addon/scayt) or
[WProofreader](https://ckeditor.com/cke4/addon/wproofreader).  Fixed issues:  *
[#5097](https://github.com/ckeditor/ckeditor4/issues/5097): [Chrome] Fixed:
Incorrect conversion of points to pixels while using [`CKEDITOR.tools.convertToP
x()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_tools.html#method-
convertToPx). * [#5044](https://github.com/ckeditor/ckeditor4/issues/5044):
Fixed: `select` elements with `multiple` attribute had incorrect styling. Thanks
to [John R. D'Orazio](https://github.com/JohnRDOrazio)!  Other changes:  *
[#5093](https://github.com/ckeditor/ckeditor4/issues/5093): Deprecated and
removed WebSpellChecker Dialog from presets. *
[#5127](https://github.com/ckeditor/ckeditor4/issues/5127): Deprecated the [`CKE
DITOR.rnd`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.html#propert
y-rnd) property to discourage using it in a security-sensitive context. *
[#5087](https://github.com/ckeditor/ckeditor4/issues/5087): Improved the jQuery
adapter by replacing a deprecated jQuery API with existing counterparts. Thanks
to [Fran Boon](https://github.com/flavour)! *
[#5128](https://github.com/ckeditor/ckeditor4/issues/5128): Improved the
[Emoji](https://ckeditor.com/cke4/addon/emoji) definitions encoding set by the [
`config.emoji_emojiListUrl`](https://ckeditor.com/docs/ckeditor4/latest/api/CKED
ITOR_config.html#cfg-emoji_emojiListUrl) configuration option.  ## CKEditor
4.17.2  Fixed issues:  *
[#4934](https://github.com/ckeditor/ckeditor4/issues/4934): Fixed: Active focus
in dialog tabs is not visible in the High Contrast mode. *
[#547](https://github.com/ckeditor/ckeditor4/issues/547): Fixed: Dragging and
dropping elements like images within a table is no longer available. *
[#4875](https://github.com/ckeditor/ckeditor4/issues/4875): Fixed: It is not
possible to delete multiple selected lists. *
[#4873](https://github.com/ckeditor/ckeditor4/issues/4873): Fixed: Pasting
content from MS Word and Outlook with horizontal lines prevents images from
being uploaded. * [#4952](https://github.com/ckeditor/ckeditor4/issues/4952):
Fixed: Dragging and dropping images within a table cell appends additional
elements. * [#4761](https://github.com/ckeditor/ckeditor4/issues/4761): Fixed:
Some CSS files are missing unique timestamp used to prevent browser to cache
static resources between editor releases. *
[#4987](https://github.com/ckeditor/ckeditor4/issues/4987): Fixed:
[Find/Replace](https://ckeditor.com/cke4/addon/find) is not recognizing more
than one space character. *
[#5061](https://github.com/ckeditor/ckeditor4/issues/5061): Fixed:
[Find/Replace](https://ckeditor.com/cke4/addon/find) plugin incorrectly handles
multiple whitespace during replacing text. *
[#5004](https://github.com/ckeditor/ckeditor4/issues/5004): Fixed:
`MutationObserver` used in [IFrame Editing
Area](https://ckeditor.com/cke4/addon/wysiwygarea) plugin causes memory leaks. *
[#4994](https://github.com/ckeditor/ckeditor4/issues/4994): Fixed: [Easy
Image](https://ckeditor.com/cke4/addon/easyimage) plugin caused content pasted
from Word to turn into an image.  API changes:  *
[#4918](https://github.com/ckeditor/ckeditor4/issues/4918): Explicitly set the [
`config.useComputedState`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDIT
OR_config.html#cfg-useComputedState) default value to `true`. Thanks to [Shabab
Karim](https://github.com/shabab477)! *
[#4761](https://github.com/ckeditor/ckeditor4/issues/4761): The [`CKEDITOR.appen
dTimestamp()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.html#meth
od-appendTimestamp) function was added. *
[#4761](https://github.com/ckeditor/ckeditor4/issues/4761): [`CKEDITOR.dom.docum
ent#appendStyleSheet()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR
_dom_document.html#method-appendStyleSheet) and [`CKEDITOR.tools.buildStyleHtml(
)`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_tools.html#method-
buildStyleHtml) now use the newly added [`CKEDITOR.appendTimestamp()`](https://c
keditor.com/docs/ckeditor4/latest/api/CKEDITOR.html#method-appendTimestamp)
function to correctly handle caching of CSS files.  Other changes:  *
[#5014](https://github.com/ckeditor/ckeditor4/issues/5014): Fixed: Toolbar
configurator fails when plugin does not define a toolbar group. Thanks to
[SuperPat](https://github.com/SuperPat45)!  ## CKEditor 4.17.1  **Highlights:**
Due to a regression in CKEeditor 4.17.0 version that was only revealed after the
release and affected a limited area of operation, CSS assets loaded via relative
links started to point into invalid location when loaded from external
resources.  We have therefore decided to immediately release CKEditor 4.17.1
that fixed this problem. If you have already upgraded to v4.17.0, make sure to
upgrade to v4.17.1 to avoid this regression.  Fixed issues:  *
[#4979](https://github.com/ckeditor/ckeditor4/issues/3757): Fixed: Added cache
key in [#4761](https://github.com/ckeditor/ckeditor4/issues/4761) started to
breaking relative links for external CSS resources. The fix has been reverted
and will be corrected in the next editor version.  ## CKEditor 4.17  **Security
Updates:**  * Fixed XSS vulnerability in the core module reported by [William
Bowling](https://github.com/wbowling).          Issue summary: The vulnerability
allowed to inject malformed comments HTML bypassing content sanitization, which
could result in executing JavaScript code. See [CVE-2021-
41165](https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7h26-63m7-
qhf2) for more details.  * Fixed XSS vulnerability in the core module reported
by [Maurice Dauer](https://twitter.com/laytonctf).          Issue summary: The
vulnerability allowed to inject malformed HTML bypassing content sanitization,
which could result in executing JavaScript code. See
[CVE-2021-41164](https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-
pvmx-g8h5-cprj) for more details.  You can read more details in the relevant
security advisory and [contact us](security@xxxxxxxxxxxx) if you have more
questions.  **An upgrade is highly recommended!**  **Highlights:**  Adobe [ended
support of Flash Player](https://www.adobe.com/products/flashplayer/end-of-
life.html) on December 31, 2020 and blocked Flash content from running in Flash
Player beginning January 12, 2021. We have decided to deprecate and remove the
[Flash](https://ckeditor.com/cke4/addon/flash) plugin from CKEditor 4 to help
protect users' systems and discourage using insecure software.  New Features:  *
[#3433](https://github.com/ckeditor/ckeditor4/issues/3433): Marked required
fields in dialogs with asterisk (`*`) symbol. *
[#4374](https://github.com/ckeditor/ckeditor4/issues/4374): Integrated the
[Maximize](https://ckeditor.com/cke4/addon/maximize) plugin with browser's
History API. * [#4461](https://github.com/ckeditor/ckeditor4/issues/4461):
Introduced the possibility to delay editor initialization while it is in a
detached DOM element. *
[#4462](https://github.com/ckeditor/ckeditor4/issues/4462): Introduced support
for reattaching editor container element to DOM. *
[#4612](https://github.com/ckeditor/ckeditor4/issues/4612): Allow pasting images
as Base64 from [clipboard](https://ckeditor.com/cke4/addon/clipboard) in all
browsers except IE. *
[#4681](https://github.com/ckeditor/ckeditor4/issues/4681): Allow drag and drop
images as Base64. * [#4750](https://github.com/ckeditor/ckeditor4/issues/4750):
Added notification for pasting and dropping unsupported file types into the
editor. * [#4807](https://github.com/ckeditor/ckeditor4/issues/4807): [Chrome]
Improved the performance of pasting large images. Thanks to [FlowIT-
JIT](https://github.com/FlowIT-JIT)! *
[#4850](https://github.com/ckeditor/ckeditor4/issues/4850): Added support for
loading [content templates](https://ckeditor.com/cke4/addon/templates) from HTML
files. Thanks to [Fynn96](https://github.com/Fynn96)! *
[#4874](https://github.com/ckeditor/ckeditor4/issues/4874): Added the [`config.c
lipboard_handleImages`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_
config.html#cfg-clipboard_handleImages) configuration option for enabling and
disabling built-in support for pasting and dropping images in the
[Clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin. Thanks to
[FlowIT-JIT](https://github.com/FlowIT-JIT)! *
[#4026](https://github.com/ckeditor/ckeditor4/issues/4026):
[Preview](https://ckeditor.com/cke4/addon/preview) plugin now uses the [`editor#
title`](http://localhost/ckeditor4-
docs/build/docs/ckeditor4/latest/api/CKEDITOR_editor.html#property-title)
property for the title of the preview window. Thanks to
[Ely](https://github.com/Elyasin)! *
[#4467](https://github.com/ckeditor/ckeditor4/issues/4467): Added support for
inserting content next to a block
[widgets](https://ckeditor.com/cke4/addon/widget) using keyboard navigation.
Thanks to [bunglegrind](https://github.com/bunglegrind)!  Fixed Issues:  *
[#3757](https://github.com/ckeditor/ckeditor4/issues/3757): [Firefox] Fixed:
images pasted from [clipboard](https://ckeditor.com/cke4/addon/clipboard) are
not inserted as Base64-encoded images. *
[#3876](https://github.com/ckeditor/ckeditor4/issues/3876): Fixed: The
[Print](https://ckeditor.com/cke4/addon/print) plugin incorrectly prints links
and images. * [#4444](https://github.com/ckeditor/ckeditor4/issues/4444):
[Firefox] Fixed: Print preview is incorrectly loaded from CDN. *
[#4596](https://github.com/ckeditor/ckeditor4/issues/4596): Fixed: Incorrect
handling of HSL/HSLA values in [`CKEDITOR.tools.color`](https://ckeditor.com/doc
s/ckeditor4/latest/api/CKEDITOR_tools_color.html). *
[#4597](https://github.com/ckeditor/ckeditor4/issues/4597): Fixed: Incorrect
color conversion for HSL/HSLA values in [`CKEDITOR.tools.color`](https://ckedito
r.com/docs/ckeditor4/latest/api/CKEDITOR_tools_color.html). *
[#4604](https://github.com/ckeditor/ckeditor4/issues/4604): Fixed: [`CKEDITOR.pl
ugins.clipboard.dataTransfer#getTypes()`](https://ckeditor.com/docs/ckeditor4/la
test/api/CKEDITOR_plugins_clipboard_dataTransfer.html#method-getTypes) returns
no types. * [#4761](https://github.com/ckeditor/ckeditor4/issues/4761): Fixed:
Not all resources loaded by the editor respect the cache key. *
[#4783](https://github.com/ckeditor/ckeditor4/issues/4783): Fixed: The
[Accessibility Help](https://ckeditor.com/cke4/addon/a11yhelp) dialog does not
contain info about focus being moved back to the editing area upon activating a
toolbar button. * [#4790](https://github.com/ckeditor/ckeditor4/issues/4790):
Fixed: Printing page is invoked before the printed page is fully loaded. *
[#4874](https://github.com/ckeditor/ckeditor4/issues/4874): Fixed: Built-in
support for pasting and dropping images in the
[Clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin restricts third
party plugins from handling image pasting. Thanks to [FlowIT-
JIT](https://github.com/FlowIT-JIT)! *
[#4888](https://github.com/ckeditor/ckeditor4/issues/4888): Fixed: The [`CKEDITO
R.dialog#setState()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_di
alog.html#method-setState) method throws error when there is no "OK" button in
the dialog. * [#4858](https://github.com/ckeditor/ckeditor4/issues/4858): Fixed:
The [Autolink](https://ckeditor.com/cke4/addon/autolink) plugin incorrectly
escapes the `&` characters when pasting links into the editor. *
[#4892](https://github.com/ckeditor/ckeditor4/issues/4892): Fixed: Focus of
buttons in dialogs is not visible enough in High Contrast mode. *
[#3858](https://github.com/ckeditor/ckeditor4/issues/3858): Fixed: Pasting
content in `ENTER_BR` [enter
mode](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
enterMode) crashes the editor. *
[#4891](https://github.com/ckeditor/ckeditor4/issues/4891): Fixed: The
[Autogrow](https://ckeditor.com/cke4/addon/autogrow) plugin applies fixed width
to the editor.  API Changes:  *
[#4462](https://github.com/ckeditor/ckeditor4/issues/4462): [`CKEDITOR.editor#ge
tSelection()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.ht
ml#method-getSelection) now returns `null` if the editor is in recreating state.
* [#4583](https://github.com/ckeditor/ckeditor4/issues/4583): Added support for
new, comma-less color syntax to [`CKEDITOR.tools.color`](https://ckeditor.com/do
cs/ckeditor4/latest/api/CKEDITOR_tools_color.html). *
[#4604](https://github.com/ckeditor/ckeditor4/issues/4604): Added the [`CKEDITOR
.plugins.clipboard.dataTransfer#isFileTransfer()`](https://ckeditor.com/docs/cke
ditor4/latest/api/CKEDITOR_plugins_clipboard_dataTransfer.html#method-
isFileTransfer) method. *
[#4790](https://github.com/ckeditor/ckeditor4/issues/4790): Added `callback`
parameter to [`CKEDITOR.plugins.preview#createPreview()`](https://ckeditor.com/d
ocs/ckeditor4/latest/api/CKEDITOR_plugins_preview.html#method-createPreview)
method.  Other Changes:  *
[#4866](https://github.com/ckeditor/ckeditor4/issues/#4866): The
[Flash](https://ckeditor.com/cke4/addon/flash) plugin is now deprecated and has
been removed from CKEditor 4. *
[#4901](https://github.com/ckeditor/ckeditor4/issues/4901): Redesigned buttons
placement in the [Content templates](https://ckeditor.com/cke4/addon/templates)
dialog to make it more UX friendly. Thanks to
[Fynn96](https://github.com/Fynn96)!
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 14 2022 Shawn Iwinski <shawn@xxxxxxxx> - 4.20.0-1
- Update to 4.20.0 (RHBZ #2024097)
- CVE-2022-24728 (RHBZ #2065297, 2065299)
- CVE-2022-24729 (RHBZ #2065300, 2065301)
* Wed Jul 20 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.16.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Wed Jan 19 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.16.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2024097 - ckeditor-4.20.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2024097
  [ 2 ] Bug #2065297 - CVE-2022-24728 ckeditor: Cross Site Scripting in WYSIWYG [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2065297
  [ 3 ] Bug #2065299 - CVE-2022-24728 ckeditor: Cross Site Scripting in WYSIWYG [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2065299
  [ 4 ] Bug #2065300 - CVE-2022-24729 ckeditor: Dialog Plugin regular expression usage causes performance drop [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2065300
  [ 5 ] Bug #2065301 - CVE-2022-24729 ckeditor: Dialog Plugin regular expression usage causes performance drop [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=2065301
--------------------------------------------------------------------------------

================================================================================
 drupal7-7.92-1.el7 (FEDORA-EPEL-2022-22e6871166)
 An open-source content-management platform
--------------------------------------------------------------------------------
Update Information:

- [7.92](https://www.drupal.org/project/drupal/releases/7.92) -
[7.91](https://www.drupal.org/project/drupal/releases/7.91)     - [SA-
CORE-2022-012 / CVE-2022-25275](https://www.drupal.org/sa-core-2022-012) -
[7.90](https://www.drupal.org/project/drupal/releases/7.90) -
[7.89](https://www.drupal.org/project/drupal/releases/7.89) -
[7.88](https://www.drupal.org/project/drupal/releases/7.88)     - [SA-
CORE-2022-003 / CVE-2022-25271](https://www.drupal.org/sa-core-2022-003) -
[7.87](https://www.drupal.org/project/drupal/releases/7.87) -
[7.86](https://www.drupal.org/project/drupal/releases/7.86)     - [SA-
CORE-2022-001 / CVE-2021-41184](https://www.drupal.org/sa-core-2022-001)     -
[SA-CORE-2022-002 / CVE-2021-41182 / CVE-2021-41183 / CVE-2016-7103 /
CVE-2010-5312](https://www.drupal.org/sa-core-2022-002) -
[7.85](https://www.drupal.org/project/drupal/releases/7.85) -
[7.84](https://www.drupal.org/project/drupal/releases/7.84) -
[7.83](https://www.drupal.org/project/drupal/releases/7.83)
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct 15 2022 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 7.92-1
- Update to 7.92
- SA-CORE-2022-012 / CVE-2022-25275
- SA-CORE-2022-003 / CVE-2022-25271 (RHBZ #2055472, 2055473)
- SA-CORE-2022-001 / CVE-2021-41184
- SA-CORE-2022-002 / CVE-2021-41182 / CVE-2021-41183
* Thu Jul 21 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 7.82-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Thu Jan 20 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 7.82-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2055472 - CVE-2022-25271 drupal7: drupal: improper input validation found via drupal core api [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2055472
  [ 2 ] Bug #2055473 - CVE-2022-25271 drupal7: drupal: improper input validation found via drupal core api [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2055473
--------------------------------------------------------------------------------

================================================================================
 lxi-tools-2.2-1.el7 (FEDORA-EPEL-2022-6a70b8c908)
 Tools to manage network attached LXI compatible instruments
--------------------------------------------------------------------------------
Update Information:

# lxi-tools v2.2    * Add support for manually adding instruments      Manually
added instruments are managed via settings in the dconf registry so that they
can be remembered by the application.      Manually added instruments will
appear with an instrument icon with a yellow indicator (indicating that it may
or may not be present).      Automatically discovered instruments will appear
with an instrument icon with a green indicator (indicating that it is likely
present since it responded).      Once added it is possible to edit or remove
instruments again via the right click menu.    * Show error in case benchmark
fails    * Make use of new `AdwAboutWindow`    * Do not break normal clipboard
copy feature    * Only copy image data to clipboard when image data is available
* Add lua log feature to command-line tool    * Add repology packaging status
* Fix desktop file categories      Prevent that application might appear more
than once in the application menu    * Rework meson lua dependency check      To
support more distributions which package lua differently.    * Rework meson
readline dependency check      To support readline installations without pkg-
config.    * Remove internationalization stuff      There are no plans to
support other languages.    * Rename `COPYING` -> `LICENSE`    * Cleanup
`date_time()`      Also, use ISO8601 timestamp format.    * Rename `test` ->
`examples`    * Update PSU data log test script    * Add automation test script
(draft)    * Reduce default timeout values    * Fix timeout conversion      Fix
so that the printed default timeout values are not different when running `lxi`
or `lxi --help`. Fix also simplifies code.    * Remove obsolete completion
script for snap    * Use `#pragma once` in all headers    * Disable natural wrap
mode    * Cleanup circleCI configuration    * Rename `ChangeLog` to `NEWS`    *
Enable gui by default      Distributions like Ubuntu now have all the components
required to build `lxi-gui` so let's enable it by default.    * Add TODO list
* README: update readme to reflect lecroy support      Add the LeCroy WavePro
ZI-a to the list of tested devices.    * plugins: lecroy: poll status register
until SCDP bit is set      To avoid racing the device (transferring a file
before it's available), poll the SCDP bit in the status register until the
hardcopy has completed.    * plugins: lecroy make command format consistent
Use shortened and capitalized forms across all commands for consistency.    *
plugins: lecroy: error check and validate inputs      Fix some memory safety
issues. Add some rudimentary checks and validate untrusted input from the
device.    * plugins: implement screenshot for LeCroy WavePRO oscilloscopes
This changeset adds screenshot support for LeCroy oscilloscopes that implement
the MAUI LXI interface.      In principle this should work with other LeCroy
telescopes, but I have only tested it with the WavePro 7 Zi-A.    * Added
ability to copy grabbed screenshot to clipboard    * adds R&S CMW270 to `README`
* Add R&S ZNL as compatible      Tested R&S ZNL3. LXI discover and SCPI ok. As
far as I read the manual screenshoots are only saved to the device or send to a
printer.    * Update Wiki link text; add Wiki section
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct 15 2022 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 2.2-1
- Upgrade to 2.2 (#2135055)
* Sun Oct  2 2022 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 2.1-3
- Build the lxi-gui application for Fedora 36 (and later)
* Thu Jul 21 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2135055 - lxi-tools-2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2135055
--------------------------------------------------------------------------------

================================================================================
 perl-Lua-API-0.04-1.el7 (FEDORA-EPEL-2022-1eef7b5256)
 Interface to Lua's embedding API
--------------------------------------------------------------------------------
Update Information:

Initial package for Fedora
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 14 2022 Neal Gompa <ngompa@xxxxxxxxxxxxxxxxx> - 0.04-1
- Initial package
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2056210 - Review Request: perl-Lua-API - Interface to Lua's embedding API
        https://bugzilla.redhat.com/show_bug.cgi?id=2056210
--------------------------------------------------------------------------------

================================================================================
 php-Smarty-3.1.47-1.el7 (FEDORA-EPEL-2022-576e858e93)
 Smarty - the compiling PHP template engine
--------------------------------------------------------------------------------
Update Information:

## [3.1.47] - 2022-09-14  ### Security - Applied appropriate javascript and html
escaping in mailto plugin to counter injection attacks
[#454](https://github.com/smarty-php/smarty/issues/454)  ### Fixed - Fixed use
of `rand()` without a parameter in math function
[#794](https://github.com/smarty-php/smarty/issues/794) - Fixed unselected
year/month/day not working in html_select_date [#395](https://github.com/smarty-
php/smarty/issues/395)  ## [3.1.46] - 2022-08-01  ### Fixed - Fixed problems
with smarty_mb_str_replace [#549](https://github.com/smarty-
php/smarty/issues/549) - Fixed second parameter of unescape modifier not working
[#777](https://github.com/smarty-php/smarty/issues/777)  ## [3.1.45] -
2022-05-17  ### Security - Prevent PHP injection through malicious block name or
include file name. This addresses CVE-2022-29221  ### Fixed - Math equation
`max(x, y)` didn't work anymore [#721](https://github.com/smarty-
php/smarty/issues/721)  ## [3.1.44] - 2022-01-18  ### Fixed - Fixed illegal
characters bug in math function security check [#702](https://github.com/smarty-
php/smarty/issues/702)  ## [3.1.43] - 2022-01-10  ### Security - Prevent evasion
of the `static_classes` security policy. This addresses CVE-2021-21408  ##
[3.1.42] - 2022-01-10  ### Security - Prevent arbitrary PHP code execution
through maliciously crafted expression for the math function. This addresses
CVE-2021-29454  ## [3.1.41] - 2022-01-09  ### Security - Rewrote the mailto
function to not use `eval` when encoding with javascript  ## [3.1.40] -
2021-10-13  ### Changed - modifier escape now triggers a E_USER_NOTICE when an
unsupported escape type is used https://github.com/smarty-php/smarty/pull/649
### Security - More advanced javascript escaping to handle
https://html.spec.whatwg.org/multipage/scripting.html#restrictions-for-contents-
of-script-elements thanks to m-haritonov  ## [3.1.39] - 2021-02-17  ### Security
- Prevent access to `$smarty.template_object` in sandbox mode. This addresses
CVE-2021-26119. - Fixed code injection vulnerability by using illegal function
names in `{function name='blah'}{/function}`. This addresses CVE-2021-26120.  ##
[3.1.38] - 2021-01-08  ### Fixed - Smarty::SMARTY_VERSION wasn't updated
https://github.com/smarty-php/smarty/issues/628  ## [3.1.37] - 2021-01-07  ###
Changed - Changed error handlers and handling of undefined constants for
php8-compatibility (set $errcontext argument optional)
https://github.com/smarty-php/smarty/issues/605 - Changed expected error levels
in unit tests for php8-compatibility - Travis unit tests now run for all php
versions >= 5.3, including php8 - Travis runs on Xenial where possible  ###
Fixed - PHP5.3 compatibility fixes - Brought lexer source functionally up-to-
date with compiled version  ## [3.1.36] - 2020-04-14  ### Fixed  -
Smarty::SMARTY_VERSION wasn't updated in v3.1.35 https://github.com/smarty-
php/smarty/issues/584  ## [3.1.35] - 2020-04-14  - remove whitespaces after
comments https://github.com/smarty-php/smarty/issues/447  - fix foreachelse on
arrayiterators https://github.com/smarty-php/smarty/issues/506  - fix files
contained in git export archive for package maintainers
https://github.com/smarty-php/smarty/issues/325  - throw SmartyException when
setting caching attributes for cacheable plugin https://github.com/smarty-
php/smarty/issues/457  - fix errors that occured where isset was replaced with
null check such as https://github.com/smarty-php/smarty/issues/453  - unit tests
are now in the repository  ## 3.1.34 release - 05.11.2019 13.01.2020  - fix typo
in exception message (JercSi)  - fix typehint warning with callable
(bets4breakfast)  - add travis badge and compatability info to readme (matks)  -
fix stdClass cast when compiling foreach (carpii)  - fix wrong set/get methods
for memcached (IT-Experte)  - fix pborm assigning value to object variables in
smarty_internal_compile_assign (Hunman)  - exclude error_reporting.ini from git
export (glensc)  ## 3.1.34-dev-6 - 30.10.2018  - bugfix a nested subblock in an
inheritance child template was not replace by    outer level block with same
name in same child template https://github.com/smarty-php/smarty/issues/500
29.10.2018  - bugfix Smarty::$php_handling == PHP_PASSTHRU (default) did eat the
"\n" (newline) character if it did directly followed    a PHP tag like "?>" or
other https://github.com/smarty-php/smarty/issues/501  14.10.2018  - bugfix
autoloader exit shortcut https://github.com/smarty-php/smarty/issues/467
11.10.2018  - bugfix {insert} not works when caching is enabled and included
template is present    https://github.com/smarty-php/smarty/issues/496  - bugfix
in date-format modifier; NULL at date string or default_date did not produce
correct output    https://github.com/smarty-php/smarty/pull/458  09.10.2018  -
bugfix fix of 26.8.2017 https://github.com/smarty-php/smarty/issues/327
modifier is applied to sum expression https://github.com/smarty-
php/smarty/issues/491  - bugfix indexed arrays could not be defined
"array(...)""  18.09.2018   - bugfix large plain text template sections without
a Smarty tag > 700kB could     could fail in version 3.1.32 and 3.1.33 because
PHP preg_match() restrictions     https://github.com/smarty-
php/smarty/issues/488
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 14 2022 Shawn Iwinski <shawn@xxxxxxxx> - 3.1.47-1
- Update to 3.1.47
- CVE-2022-29221 (RHBZ #2088250, 2088251)
- CVE-2021-29454 (RHBZ #2044970, 2044971)
- CVE-2021-21408 (RHBZ #2043595, 2043596)
- Security update (RHBZ #2126854, 2126855, 2126856)
* Fri Jul 22 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1.33-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Fri Jan 21 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1.33-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Fri Jul 23 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1.33-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jan 27 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1.33-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Tue Jul 28 2020 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1.33-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Thu Jan 30 2020 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1.33-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Fri Jul 26 2019 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1.33-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2043595 - CVE-2021-21408 php-Smarty: template authors could run restricted static php methods [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2043595
  [ 2 ] Bug #2043596 - CVE-2021-21408 php-Smarty: template authors could run restricted static php methods [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=2043596
  [ 3 ] Bug #2044970 - CVE-2021-29454 php-Smarty: template authors could run arbitrary PHP code by crafting a malicious math string [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2044970
  [ 4 ] Bug #2044971 - CVE-2021-29454 php-Smarty: template authors could run arbitrary PHP code by crafting a malicious math string [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=2044971
  [ 5 ] Bug #2088250 - CVE-2022-29221 php-Smarty: php injection via malicious block name or include file name [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2088250
  [ 6 ] Bug #2088251 - CVE-2022-29221 php-Smarty: php injection via malicious block name or include file name [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=2088251
  [ 7 ] Bug #2126855 - php-Smarty: javascript injection in mailto function [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=2126855
  [ 8 ] Bug #2126856 - php-Smarty: javascript injection in mailto function [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2126856
--------------------------------------------------------------------------------

================================================================================
 python3-pytest-2.9.2-5.el7 (FEDORA-EPEL-2022-40f2c79def)
 Simple powerful testing with Python
--------------------------------------------------------------------------------
Update Information:

Provide python3-pytest from ptyhon36-pytest.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 11 2022 Maxwell G - 2.9.2-5
- Add missing %py_provides
--------------------------------------------------------------------------------

_______________________________________________
epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue