The following Fedora EPEL 8 Security updates need testing: Age URL 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-a72ba05853 libopenmpt-0.7.9-1.el8 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-1434b533be chromium-128.0.6613.137-1.el8 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-31d4c55df0 arm-none-eabi-binutils-cs-2.43-1.el8 arm-none-eabi-gcc-cs-12.4.0-1.el8 arm-none-eabi-newlib-4.4.0.20231231-1.el8 The following builds have been pushed to Fedora EPEL 8 updates-testing baresip-3.15.0-1.el8 libre-3.15.0-1.el8 unrealircd-6.1.7.2-1.el8 Details about builds: ================================================================================ baresip-3.15.0-1.el8 (FEDORA-EPEL-2024-eaa70d9663) Modular SIP user-agent with audio and video support -------------------------------------------------------------------------------- Update Information: Baresip v3.15.0 (2024-08-28) audiounit: remove deprecated iOS session handling audiounit/cmake: use CMAKE_HOST_SYSTEM_NAME add filter_registrar option feature: in-band dtmf detection and generation gst: fix potential SEGVs in error cases test/call: fix SNI selftest ice: fix crash during ICE on fast disconnect test/call: set global certificate again in SNI test uag: match transport and af when finding ua for msg bevent: add core bevent API aureceiver: set aubuf id sip/transp: add client certificate to all TLS transports aufilt: add aufilt_enable account: add set audio devices bevent: add backwards wrappers sndfile: add close file module events aufile: fixes for prm->duration account specific video source and display ua: remove all matching headers when calling ua_rm_custom_hdr bevent: update function calls in src test: use bevent API menu: use new bevent API ctrl_dbus: use new bevent API ctrl_tcp: use new bevent API echo: use new bevent API gtk: use new bevent API mqtt: use new bevent API ebuacip: use new bevent API serreg: use new bevent API rtcpsummary: use new bevent API presence: use new bevent API mwi: use new bevent API presence: publisher - use new bevent API bevent: fix typo in deprecated warning mwi: use bevent_ua_emit() menu: use new bevent_call_emit() version 3.15.0 libre v3.15.0 (2024-08-28) misc: remove HAVE_INET6 dns/rr: fix dns_rr_print underflow test/async: remove AI_ADDRCONFIG retest: update usage message add filter_registrar option sa: add utility function to check if address is multicast tls/sni: skip SNI check if we are client or server_name absent tls/sni: do not enable client verification when SNI matching is done dd: Dependency Descriptor RTP header extension aubuf: add AUBUF_TRACE mode with id sip/transp: add client certificate to all TLS transports tmr: add TMR_INIT sipsess/reply: fix heap-use-after-free bug version 3.15.0 -------------------------------------------------------------------------------- ChangeLog: * Sat Sep 14 2024 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 3.15.0-1 - Upgrade to 3.15.0 (#2309007) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2309007 - baresip-3.15.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309007 [ 2 ] Bug #2309407 - libre-3.15.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309407 -------------------------------------------------------------------------------- ================================================================================ libre-3.15.0-1.el8 (FEDORA-EPEL-2024-eaa70d9663) Generic library for real-time communications -------------------------------------------------------------------------------- Update Information: Baresip v3.15.0 (2024-08-28) audiounit: remove deprecated iOS session handling audiounit/cmake: use CMAKE_HOST_SYSTEM_NAME add filter_registrar option feature: in-band dtmf detection and generation gst: fix potential SEGVs in error cases test/call: fix SNI selftest ice: fix crash during ICE on fast disconnect test/call: set global certificate again in SNI test uag: match transport and af when finding ua for msg bevent: add core bevent API aureceiver: set aubuf id sip/transp: add client certificate to all TLS transports aufilt: add aufilt_enable account: add set audio devices bevent: add backwards wrappers sndfile: add close file module events aufile: fixes for prm->duration account specific video source and display ua: remove all matching headers when calling ua_rm_custom_hdr bevent: update function calls in src test: use bevent API menu: use new bevent API ctrl_dbus: use new bevent API ctrl_tcp: use new bevent API echo: use new bevent API gtk: use new bevent API mqtt: use new bevent API ebuacip: use new bevent API serreg: use new bevent API rtcpsummary: use new bevent API presence: use new bevent API mwi: use new bevent API presence: publisher - use new bevent API bevent: fix typo in deprecated warning mwi: use bevent_ua_emit() menu: use new bevent_call_emit() version 3.15.0 libre v3.15.0 (2024-08-28) misc: remove HAVE_INET6 dns/rr: fix dns_rr_print underflow test/async: remove AI_ADDRCONFIG retest: update usage message add filter_registrar option sa: add utility function to check if address is multicast tls/sni: skip SNI check if we are client or server_name absent tls/sni: do not enable client verification when SNI matching is done dd: Dependency Descriptor RTP header extension aubuf: add AUBUF_TRACE mode with id sip/transp: add client certificate to all TLS transports tmr: add TMR_INIT sipsess/reply: fix heap-use-after-free bug version 3.15.0 -------------------------------------------------------------------------------- ChangeLog: * Sat Sep 14 2024 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 3.15.0-1 - Upgrade to 3.15.0 (#2309407) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2309007 - baresip-3.15.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309007 [ 2 ] Bug #2309407 - libre-3.15.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2309407 -------------------------------------------------------------------------------- ================================================================================ unrealircd-6.1.7.2-1.el8 (FEDORA-EPEL-2024-f7642a5dc1) Open Source IRC server -------------------------------------------------------------------------------- Update Information: UnrealIRCd 6.1.7.2 Central Blocklist: Fix issue if CBL server is not reachable (caused nick collisions) UnrealIRCd 6.1.7.1 Add country and ASN support in WHOWAS Fix an annoying "[BUG] trying to modify fd -2 in fd table" message that appeared to IRCOps sometimes. UnrealIRCd 6.1.7 This is UnrealIRCd 6.1.7 stable. It comes with ASN support, more flexible ban user { } and require authentication { } blocks and more. UnrealIRCd recently turned 25 years! ð??? See UnrealIRCd celebrates its 25th birthday. Enhancements In the ban user { } and require authentication { } blocks the mask is now a Mask item. This means you can use all the power of mask items and security groups and multiple matching criteria. The GeoIP module now contains information about Autonomous System Numbers: The asn is shown in the user connecting notice as [asn: ###], is shown in WHOIS (for IRCOps) and it is expanded in JSON data such as JSON Logging and JSON-RPC calls like user.list. Can be used in Extended server ban: GLINE ~asn:64496 0 This ISP is banned. Can be used in security groups and mask items so you can do like: require authentication { mask { asn { 64496; 64497; 64498; } } reason "Too much abuse from this ISP. You are required to log in with an account using SASL."; } In Crule functions as match_asn(64496) Also available in regular extbans/invex, but normally users don't know the IP or ASN of other users, unless you use no cloaking or change set::whois- details::asn. JSON-RPC: Similar to oper and operclass, in an rpc-user you now have to specify an rpc-user::rpc-class. The rpc-class is defined in an rpc-class block and configures what JSON methods can be called. There are two default json-rpc classes: full: access to all JSON-RPC Methods read-only: access to things like server_ban.list but not to server_ban.add set::spamfilter::except is now a Mask item instead of only a list of exempted targets. A warning is created to existing users along with a suggestion of how to use the new syntax. Technically, this is not really new functionality as all this was already possible via the Except ban block with type spamfilter, but it is more visible/logical to have this also. New option set::hide-killed-by: We normally show the nickname of the oper who did the /KILL in the quit message. When set to yes the quit message becomes shortened to "Killed (Reason)". This can prevent oper harassment. set::restrict-commands: new option channel-create for managing who may create new channels. New option set::tls::certificate-expiry-notification: since UnrealIRCd 5.0.8 we warn if a SSL/TLS certificate is (nearly) expired. This new option allows turning it off, it is (still) on by default. Add the ability to capture the same data as Central Spamreport by providing an spamreport::url option. Changes IRCOps with the operclass locop can now only REHASH the local server and not remote servers. Comment out some more in example.conf by default Fixes Crash when removing the websocket option on a websocket listener. Silence some compiler warnings regarding deprecation of c-ares API in src/dns.c. Memory leaks of around 1-2KB per rehash Developers and protocol Upstream uses numeric 569 (RPL_WHOISASN) for displaying ASN info to IRCOps: :irc.example.net 569 x whoiseduser 64496 :is connecting from AS64496 [Example Corp] -------------------------------------------------------------------------------- ChangeLog: * Sat Sep 14 2024 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 6.1.7.2-1 - Upgrade to 6.1.7.2 (#2297919) * Sat Jul 20 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 6.1.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2297919 - unrealircd-6.1.7.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2297919 --------------------------------------------------------------------------------
-- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue