The following Fedora EPEL 9 Security updates need testing: Age URL 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-7c7a65fa6c wordpress-6.5.2-1.el9 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-6ebc36e81d perl-Clipboard-0.29-1.el9 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-76d6941f10 python-django3-3.2.25-1.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-ce142428af llhttp-9.2.1-1.el9 python-aiohttp-3.9.3-2.el9 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-5fc8709aa5 python-pycryptodomex-3.20.0-1.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing ampache_browser-1.0.7-3.el9 chromium-123.0.6312.122-1.el9 fluidsynth-2.3.5-1.el9 nordugrid-arc-6.19.0-1.el9 objfw-1.1.1-1.el9 plantuml-1.2024.4-2.el9 python-google-auth-2.29.0-1.el9 raft-0.22.1-1.el9 rust-ctrlc-3.4.4-1.el9 rust-jobserver-0.1.30-1.el9 rust-uluru-3.1.0-2.el9 Details about builds: ================================================================================ ampache_browser-1.0.7-3.el9 (FEDORA-EPEL-2024-6277d9958e) C++ and Qt based client library for Ampache access -------------------------------------------------------------------------------- Update Information: ampache_browser 1.0.7 (2023-12-30) Fix infite 'Loading...' state. If Ampache declares higher number of Albums than really available (for example, when it groups multi-disk albums to a single albums) then 'Loading...' state never finished in Ampache Browser. This is now fixed. Fix sorting of tracks on albums with multiple disks. Since version 6 Ampache started to serve multiple disk albums as one album instead of each disk separately. Ampache Browser ordered tracks by track number regardless of the disk number. This lead to wrong ordering if tracks were numbered on each disk from "1". The track order in such case was: track 1 (from disk 1) track 1 (from disk 2) ... After the fix the order is correct: track 1 (from disk 1) track 2 (from disk 1) ... Required API version was increased to 440001. Ampache Browser now uses Ampache API 440001 instead of 350001. This is because of previous fix of tracks sorting as the older APIs does not contain information about disk number. Fix building with Qt < 5.15. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 22 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.0.7-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.0.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sat Dec 30 2023 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.0.7-1 - Update to 1.0.7. -------------------------------------------------------------------------------- ================================================================================ chromium-123.0.6312.122-1.el9 (FEDORA-EPEL-2024-2445965799) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information: update to 123.0.6312.122 High CVE-2024-3157: Out of bounds write in Compositing High CVE-2024-3516: Heap buffer overflow in ANGLE High CVE-2024-3515: Use after free in Dawn -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 11 2024 Than Ngo <than@xxxxxxxxxx> - 123.0.6312.122-1 - update to 123.0.6312.122 * High CVE-2024-3157: Out of bounds write in Compositing * High CVE-2024-3516: Heap buffer overflow in ANGLE * High CVE-2024-3515: Use after free in Dawn -------------------------------------------------------------------------------- References: [ 1 ] Bug #2274473 - CVE-2024-3157 CVE-2024-3515 CVE-2024-3516 chromium: various flaws [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2274473 -------------------------------------------------------------------------------- ================================================================================ fluidsynth-2.3.5-1.el9 (FEDORA-EPEL-2024-81a4e11125) Real-time software synthesizer -------------------------------------------------------------------------------- Update Information: Update to 2.3.5 -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2024 Christoph Karl <pampelmuse [AT] gmx [DOT] at> - 2.3.5-1 - Update to 2.3.5 * Wed Jan 24 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.3.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.3.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-6.19.0-1.el9 (FEDORA-EPEL-2024-0914ba8794) Advanced Resource Connector Middleware -------------------------------------------------------------------------------- Update Information: ARC 6.19.0 -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2024 Mattias Ellert <mattias.ellert@xxxxxxxxxxxxx> - 6.19.0-1 - Update to version 6.19.0 - Drop patches accepted upstream * Mon Feb 19 2024 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 6.18.0-6 - Fix compilation with SWIG 4.2 * Wed Feb 7 2024 Mattias Ellert <mattias.ellert@xxxxxxxxxxxxx> - 6.18.0-5 - Disable test incompatible with SWIG 4.2 * Thu Jan 25 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 6.18.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 6.18.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Thu Nov 23 2023 Mattias Ellert <mattias.ellert@xxxxxxxxxxxxx> - 6.18.0-2 - Fix compilation with libxml2 2.12 -------------------------------------------------------------------------------- ================================================================================ objfw-1.1.1-1.el9 (FEDORA-EPEL-2024-4415c50aea) Portable, lightweight framework for the Objective-C language -------------------------------------------------------------------------------- Update Information: Update to 1.1.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 14 2024 Jonathan Schleifer <js@xxxxxx> - 1.1.1-1 - Update to 1.1.1 * Sun Apr 14 2024 Jonathan Schleifer <js@xxxxxx> - 1.1-3 - Fix missing ${DESTDIR}, missing files * Sun Apr 14 2024 Jonathan Schleifer <js@xxxxxx> - 1.1-2 - Fix utils-pie.patch * Sun Apr 14 2024 Jonathan Schleifer <js@xxxxxx> - 1.1-1 - Update to 1.1 -------------------------------------------------------------------------------- ================================================================================ plantuml-1.2024.4-2.el9 (FEDORA-EPEL-2024-c7d0eb6bbf) Program to generate UML diagram from a text description -------------------------------------------------------------------------------- Update Information: Update to version 1.2024.4 -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 14 2024 blinxen <h-k-81@xxxxxxxxxxx> - 1:1.2024.4-2 - Update to version 1.2024.4 (rhbz#2273825) * Tue Feb 27 2024 Jiri Vanek <jvanek@xxxxxxxxxx> - 1:1.2024.3-3 - Rebuilt for java-21-openjdk as system jdk -------------------------------------------------------------------------------- ================================================================================ python-google-auth-2.29.0-1.el9 (FEDORA-EPEL-2024-86127a3e30) Google Auth Python Library -------------------------------------------------------------------------------- Update Information: Update python-google-auth to 2.29.0. -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2024 Jason Montloon <jmontleo@xxxxxxxxxx> - 1:2.29.0-1 - Update to 2.29.0 (#2270854) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2270854 - python-google-auth-2.29.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2270854 -------------------------------------------------------------------------------- ================================================================================ raft-0.22.1-1.el9 (FEDORA-EPEL-2024-490907392d) C implementation of the Raft consensus protocol -------------------------------------------------------------------------------- Update Information: Update to 0.22.1 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2024 Reto Gantenbein <reto.gantenbein@xxxxxxxxxxxx> - 0.22.1-1 - Update to 0.22.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272285 - raft-0.22.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272285 -------------------------------------------------------------------------------- ================================================================================ rust-ctrlc-3.4.4-1.el9 (FEDORA-EPEL-2024-7d2af7bc49) Easy Ctrl-C handler for Rust projects -------------------------------------------------------------------------------- Update Information: Update to version 3.4.4. -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 14 2024 Fabio Valentini <decathorpe@xxxxxxxxx> - 3.4.4-1 - Update to version 3.4.4; Fixes RHBZ#2268727 * Fri Jan 26 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.4.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-jobserver-0.1.30-1.el9 (FEDORA-EPEL-2024-7b2addb41c) Implementation of the GNU Make jobserver for Rust -------------------------------------------------------------------------------- Update Information: Update to version 0.1.30. Update to version 0.1.29. -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 14 2024 Fabio Valentini <decathorpe@xxxxxxxxx> - 0.1.30-1 - Update to version 0.1.30; Fixes RHBZ#2274753 * Fri Apr 12 2024 Fabio Valentini <decathorpe@xxxxxxxxx> - 0.1.29-1 - Update to version 0.1.29; Fixes RHBZ#2274541 -------------------------------------------------------------------------------- ================================================================================ rust-uluru-3.1.0-2.el9 (FEDORA-EPEL-2024-3fa9907d74) Simple, fast, LRU cache implementation -------------------------------------------------------------------------------- Update Information: Update to version 3.1.0 -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 14 2024 blinxen <h-k-81@xxxxxxxxxxx> - 3.1.0-2 - Update to version 3.1.0 (rhbz#2273910) * Sat Jan 27 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.0.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- -- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
