The following Fedora EPEL 9 Security updates need testing: Age URL 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-2775a88d84 lua-mpack-1.0.12-1.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing mod_mapcache-1.14.1-1.el9 nextcloud-29.0.6-1.el9 oidc-agent-5.2.1-1.el9 php-pecl-rpminfo-1.1.1-1.el9 pmount-0.9.23-32.el9 python-pylons-sphinx-themes-1.0.13-6.el9 python-qt5-epel-5.15.9-1.el9 rust-cxx-1.0.128-1.el9 rust-cxx-build-1.0.128-1.el9 rust-cxx-gen-0.7.128-1.el9 rust-cxxbridge-flags-1.0.128-1.el9 rust-cxxbridge-macro-1.0.128-1.el9 wolfssl-5.7.2-2.el9 zabbix7.0-7.0.3-1.el9 Details about builds: ================================================================================ mod_mapcache-1.14.1-1.el9 (FEDORA-EPEL-2024-b201f2bff8) Caching server for WMS layers -------------------------------------------------------------------------------- Update Information: https://mapserver.org/development/changelog/mapcache/changelog-1-14.html -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 19 2024 Neil Hanlon <neil@xxxxxxxx> - 1.14.1-1 - update to 1.14.1 * Thu Jul 18 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.14.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ nextcloud-29.0.6-1.el9 (FEDORA-EPEL-2024-87852e6d70) Private file sync and share server -------------------------------------------------------------------------------- Update Information: 29.0.6 release RHBZ#2305125 RHBZ#2309499 fixes CVE-2024-39338 -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Andrew Bauer <zonexpertconsulting@xxxxxxxxxxx> - 29.0.6-1 - 29.0.6 release RHBZ#2305125 RHBZ#2309499 fixes CVE-2024-39338 * Tue Sep 3 2024 Andrew Bauer <zonexpertconsulting@xxxxxxxxxxx> - 29.0.5-5 - 29.0.6 release RHBZ#2305125 RHBZ#2309499 fixes CVE-2024-39338 * Tue Sep 3 2024 Andrew Bauer <zonexpertconsulting@xxxxxxxxxxx> - 29.0.5-4 - 29.0.6 release RHBZ#2305125 RHBZ#2309499 fixes CVE-2024-39338 * Tue Sep 3 2024 Andrew Bauer <zonexpertconsulting@xxxxxxxxxxx> - 29.0.5-3 - 29.0.6 release RHBZ#2305125 RHBZ# 2309499 fixes CVE-2024-39338 * Mon Sep 2 2024 Miroslav Suchý <msuchy@xxxxxxxxxx> - 29.0.5-2 - convert license to SPDX -------------------------------------------------------------------------------- References: [ 1 ] Bug #2305125 - CVE-2024-39338 nextcloud: axios: Server-Side Request Forgery [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2305125 [ 2 ] Bug #2309499 - nextcloud-30.0.0rc3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309499 -------------------------------------------------------------------------------- ================================================================================ oidc-agent-5.2.1-1.el9 (FEDORA-EPEL-2024-a00708b07a) Managing OpenID Connect tokens on the command line -------------------------------------------------------------------------------- Update Information: oidc agent 5.2.1 -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 2 2024 Mattias Ellert <mattias.ellert@xxxxxxxxxxxxx> - 5.2.1-1 - Update to version 5.2.1 * Thu Aug 29 2024 Mattias Ellert <mattias.ellert@xxxxxxxxxxxxx> - 5.2.0-1 - Update to version 5.2.0 * Thu Jul 18 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 5.1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Thu Jan 25 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 5.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ php-pecl-rpminfo-1.1.1-1.el9 (FEDORA-EPEL-2024-9ef2c1431c) RPM information -------------------------------------------------------------------------------- Update Information: display author and license in phpinfo drop support for librpm < 4.13 -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Remi Collet <remi@xxxxxxxxxxxx> - 1.1.1-1 - update to 1.1.1 -------------------------------------------------------------------------------- ================================================================================ pmount-0.9.23-32.el9 (FEDORA-EPEL-2024-d610bf5137) Enable normal user mount -------------------------------------------------------------------------------- Update Information: Remove quiet and nonempty exfat mount options -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Andrew Bauer <zonexpertconsulting@xxxxxxxxxxx> - 0.9.23-32 - Remove quiet and nonempty exfat mount options * Fri Jul 26 2024 Miroslav Suchý <msuchy@xxxxxxxxxx> - 0.9.23-31 - convert license to SPDX * Fri Jul 19 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.9.23-30 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Thu Jan 25 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.9.23-29 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.9.23-28 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jul 21 2023 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.9.23-27 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Fri Jan 20 2023 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.9.23-26 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Mon Dec 12 2022 Florian Weimer <fweimer@xxxxxxxxxx> - 0.9.23-25 - Port to C99 (#2152707) -------------------------------------------------------------------------------- ================================================================================ python-pylons-sphinx-themes-1.0.13-6.el9 (FEDORA-EPEL-2024-cdba32b76d) Sphinx themes for projects under the Pylons Project -------------------------------------------------------------------------------- Update Information: Rebuilt -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Ján ONDREJ (SAL) <ondrejj(at)salstar.sk> - 1.0.13-6 - rebuilt * Fri Jan 20 2023 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.0.13-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ python-qt5-epel-5.15.9-1.el9 (FEDORA-EPEL-2024-241f6610d5) PyQt5 is Python bindings for Qt5 -------------------------------------------------------------------------------- Update Information: Build for EPEL10 -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 18 2023 Jan Grulich <jgrulich@xxxxxxxxxx> - 5.15.9-1 - 5.15.9 Resolves: bz#2175758 * Tue May 3 2022 Jan Grulich <jgrulich@xxxxxxxxxx> - 5.15.6-1 - 5.15.6 + sync with Fedora Resolves: bz#2061728 * Wed Apr 6 2022 Jan Grulich <jgrulich@xxxxxxxxxx> - 5.15.0-11 - Rebuild (Qt 5.15.3) Resolves: bz#2061728 * Tue Aug 10 2021 Mohan Boddu <mboddu@xxxxxxxxxx> - 5.15.0-10 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2308129 - Please branch and build python-qt5-epel in EPEL 9 https://bugzilla.redhat.com/show_bug.cgi?id=2308129 -------------------------------------------------------------------------------- ================================================================================ rust-cxx-1.0.128-1.el9 (FEDORA-EPEL-2024-6bbe3a569a) Safe interop between Rust and C++ -------------------------------------------------------------------------------- Update Information: Update of rust-cxx suite to patchversion 128. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Jan StanÄ?k <jstanek@xxxxxxxxxx> - 1.0.128-1 - Update to version 1.0.128 (rhbz#2309026) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2309025 - rust-cxxbridge-flags-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309025 [ 2 ] Bug #2309026 - rust-cxx-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309026 [ 3 ] Bug #2309027 - rust-cxxbridge-macro-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309027 [ 4 ] Bug #2309028 - rust-cxx-build-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309028 [ 5 ] Bug #2309029 - rust-cxx-gen-0.7.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309029 -------------------------------------------------------------------------------- ================================================================================ rust-cxx-build-1.0.128-1.el9 (FEDORA-EPEL-2024-6bbe3a569a) C++ code generator for integrating cxx crate into a Cargo build -------------------------------------------------------------------------------- Update Information: Update of rust-cxx suite to patchversion 128. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Jan StanÄ?k <jstanek@xxxxxxxxxx> - 1.0.128-1 - Update to version 1.0.128 (rhbz#2309028) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2309025 - rust-cxxbridge-flags-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309025 [ 2 ] Bug #2309026 - rust-cxx-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309026 [ 3 ] Bug #2309027 - rust-cxxbridge-macro-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309027 [ 4 ] Bug #2309028 - rust-cxx-build-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309028 [ 5 ] Bug #2309029 - rust-cxx-gen-0.7.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309029 -------------------------------------------------------------------------------- ================================================================================ rust-cxx-gen-0.7.128-1.el9 (FEDORA-EPEL-2024-6bbe3a569a) C++ code generator for integrating cxx crate into higher level tools -------------------------------------------------------------------------------- Update Information: Update of rust-cxx suite to patchversion 128. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Jan StanÄ?k <jstanek@xxxxxxxxxx> - 0.7.128-1 - Update to version 0.7.128 (rhbz#2309029) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2309025 - rust-cxxbridge-flags-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309025 [ 2 ] Bug #2309026 - rust-cxx-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309026 [ 3 ] Bug #2309027 - rust-cxxbridge-macro-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309027 [ 4 ] Bug #2309028 - rust-cxx-build-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309028 [ 5 ] Bug #2309029 - rust-cxx-gen-0.7.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309029 -------------------------------------------------------------------------------- ================================================================================ rust-cxxbridge-flags-1.0.128-1.el9 (FEDORA-EPEL-2024-6bbe3a569a) Compiler configuration of the cxx crate (implementation detail) -------------------------------------------------------------------------------- Update Information: Update of rust-cxx suite to patchversion 128. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Jan StanÄ?k <jstanek@xxxxxxxxxx> - 1.0.128-1 - Update to version 1.0.128 (rhbz#2309025) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2309025 - rust-cxxbridge-flags-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309025 [ 2 ] Bug #2309026 - rust-cxx-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309026 [ 3 ] Bug #2309027 - rust-cxxbridge-macro-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309027 [ 4 ] Bug #2309028 - rust-cxx-build-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309028 [ 5 ] Bug #2309029 - rust-cxx-gen-0.7.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309029 -------------------------------------------------------------------------------- ================================================================================ rust-cxxbridge-macro-1.0.128-1.el9 (FEDORA-EPEL-2024-6bbe3a569a) Implementation detail of the cxx crate -------------------------------------------------------------------------------- Update Information: Update of rust-cxx suite to patchversion 128. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Jan StanÄ?k <jstanek@xxxxxxxxxx> - 1.0.128-1 - Update to version 1.0.128 (rhbz#2309027) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2309025 - rust-cxxbridge-flags-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309025 [ 2 ] Bug #2309026 - rust-cxx-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309026 [ 3 ] Bug #2309027 - rust-cxxbridge-macro-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309027 [ 4 ] Bug #2309028 - rust-cxx-build-1.0.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309028 [ 5 ] Bug #2309029 - rust-cxx-gen-0.7.128 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309029 -------------------------------------------------------------------------------- ================================================================================ wolfssl-5.7.2-2.el9 (FEDORA-EPEL-2024-5f0c4ba4b8) Lightweight SSL/TLS library written in ANSI C -------------------------------------------------------------------------------- Update Information: RHBZ#2308628 RHBZ#2308629 RHBZ#2308630 RHBZ#2308631 fixed in 5.7.2 release -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Andrew Bauer <zonexpertconsulting@xxxxxxxxxxx> - 5.7.2-2 - RHBZ#2308628 RHBZ#2308629 RHBZ#2308630 RHBZ#2308631 fixed in 5.7.2 release - fips macro patch no longer needed * Sun Aug 25 2024 Andrew Bauer <zonexpertconsulting@xxxxxxxxxxx> - 5.7.2-1 - 5.7.2 release - patch FIPS_VERSION3_GE macro issue -------------------------------------------------------------------------------- References: [ 1 ] Bug #2308628 - CVE-2024-1543 wolfssl: The side-channel protected T-Table implementation in wolfSSL [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2308628 [ 2 ] Bug #2308629 - CVE-2024-1543 wolfssl: The side-channel protected T-Table implementation in wolfSSL [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2308629 [ 3 ] Bug #2308630 - CVE-2024-1545 wolfssl: Fault Injection vulnerability in RsaPrivateDecryption function in wolfssl/wolfcrypt/src/rsa.c in WolfSSL [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2308630 [ 4 ] Bug #2308631 - CVE-2024-1545 wolfssl: Fault Injection vulnerability in RsaPrivateDecryption function in wolfssl/wolfcrypt/src/rsa.c in WolfSSL [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2308631 -------------------------------------------------------------------------------- ================================================================================ zabbix7.0-7.0.3-1.el9 (FEDORA-EPEL-2024-1670b5de97) Open-source monitoring solution for your IT infrastructure -------------------------------------------------------------------------------- Update Information: Build 7.0.X for EPEL -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 3 2024 Orion Poplawski <orion@xxxxxxxx> - 7.0.3-1 - Build for EPEL --------------------------------------------------------------------------------
-- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
