The following Fedora EPEL 7 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-64b282dfaf sympa-6.2.72-2.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-becb7041de perl-HTML-StripScripts-1.06-22.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing chromium-114.0.5735.106-1.el7 radare2-5.8.6-1.el7 Details about builds: ================================================================================ chromium-114.0.5735.106-1.el7 (FEDORA-EPEL-2023-787571a7ba) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information: update to 114.0.5735.106. Fixes the following security issue: CVE-2023-3709 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 7 2023 Than Ngo <than@xxxxxxxxxx> - 114.0.5735.106-1 - update to 114.0.5735.106 * Sun May 28 2023 Than Ngo <than@xxxxxxxxxx> - 114.0.5735.45-1 - update to 114.0.5735.45 - add qt6 linuxui backend - backport: handle scale factor changes - backport: fix font double_scaling -------------------------------------------------------------------------------- References: [ 1 ] Bug #2212975 - CVE-2023-3079 chromium: chromium-browser: Type Confusion in V8 [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2212975 [ 2 ] Bug #2212976 - CVE-2023-3079 chromium: chromium-browser: Type Confusion in V8 [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2212976 -------------------------------------------------------------------------------- ================================================================================ radare2-5.8.6-1.el7 (FEDORA-EPEL-2023-423bcaf739) The reverse engineering framework -------------------------------------------------------------------------------- Update Information: Bump to 5.8.6 -------------------------------------------------------------------------------- ChangeLog: * Tue May 23 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.6-1 - bump to 5.8.6 * Sat Mar 25 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.5-0.3 - 5.8.5 rebuild from git, patched for segfault * Wed Mar 22 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.4-2 - patch for segfault in sdb_hash * Thu Mar 16 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.4-1 - bump to 5.8.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2157016 - CVE-2022-4843 radare2: Fix null deref in io.bank [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2157016 [ 2 ] Bug #2170036 - syscall detection is broken https://bugzilla.redhat.com/show_bug.cgi?id=2170036 [ 3 ] Bug #2178851 - radare2-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2178851 [ 4 ] Bug #2179047 - iaito-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2179047 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
