The following Fedora 29 Security updates need testing: Age URL 85 https://bodhi.fedoraproject.org/updates/FEDORA-2018-51ce232320 xerces-c27-2.7.0-28.fc29 28 https://bodhi.fedoraproject.org/updates/FEDORA-2018-42555731d2 nagios-4.4.2-3.fc29 21 https://bodhi.fedoraproject.org/updates/FEDORA-2018-36115ae788 mysql-selinux-1.0.0-5.fc29 14 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cb66bc33e6 haproxy-1.8.15-1.fc29 14 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b89746cb9b tomcat-9.0.13-1.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4db33b3753 leptonica-1.77.0-1.fc29 mingw-leptonica-1.77.0-1.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2018-25b3204dc8 wordpress-5.0.2-1.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2018-679f8aba03 mingw-poppler-0.67.0-2.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b4f6179eae php-pear-1.10.7-2.fc29 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-1bd545ef39 terminology-1.3.2-1.fc29 0 https://bodhi.fedoraproject.org/updates/FEDORA-2018-95fe3aaa74 beep-1.3-24.fc29 The following Fedora 29 Critical Path updates have yet to be approved: Age URL 31 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6682778e13 pungi-4.1.31-1.fc29 15 https://bodhi.fedoraproject.org/updates/FEDORA-2018-3d43e7dd21 SLOF-0.1.git20180702-2.fc29 14 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d5bbed405f garcon-0.6.2-1.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2018-3d576aa333 lldb-7.0.1-1.fc29 lld-7.0.1-2.fc29 compiler-rt-7.0.1-1.fc29 libomp-7.0.1-1.fc29 clang-7.0.1-1.fc29 llvm-7.0.1-1.fc29 python-lit-0.7.1-1.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2018-332d9716ff xfce4-settings-4.13.5-2.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b21c629fd4 gdm-3.30.2-1.fc29 7 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6bcd108af2 libfm-1.3.1-1.fc29 pcmanfm-1.3.1-1.fc29 0 https://bodhi.fedoraproject.org/updates/FEDORA-2018-64a4d60839 kernel-4.19.12-301.fc29 kernel-headers-4.19.12-301.fc29 0 https://bodhi.fedoraproject.org/updates/FEDORA-2018-5250b47ed7 analitza-18.04.3-3.fc29 appmenu-qt5-0.3.0+16.10.20160628.1-11.fc29 calibre-3.34.0-2.fc29 deepin-qt5integration-0.3.4-2.fc29 deepin-tool-kit-0.3.3-11.fc29 dnscrypt-proxy-gui-1.21.16-2.fc29 dtkwidget-2.0.9.9-3.fc29 fcitx-qt5-1.2.3-4.fc29 gammaray-2.9.0-5.fc29 hedgewars-0.9.25-2.fc29 kate-18.12.0-1.fc29 kf5-akonadi-server-18.08.3-2.fc29 kf5-frameworkintegration-5.53.0-3.fc29 kf5-kdeclarative-5.53.0-3.fc29 kf5-kwayland-5.53.0-3.fc29 kf5-kxmlgui-5.53.0-3.fc29 kmymoney-5.0.2-2.fc29 kwin-5.14.4-2.fc29 libfm-qt-0.13.1-2.fc29 libqtxdg-3.2.0-2.fc29 lxqt-qtplugin-0.13.0-2.fc29 mscore-2.2.1-6.fc29 plasma-integration-5.14.4-2.fc29 pyotherside-1.5.3-14.fc29 pythonqt-3.2-14.fc29 python-qt5-5.11.3-1.fc29 qgnomeplatform-0.5-6.fc29 qstardict-1.3-7.fc29 qt5-5.11.3-1.fc29 qt5ct-0.35-5.fc29 qt5-qt3d-5.11.3-1.fc29 qt5-qtbase-5.11.3-1.fc29 qt5-qtcanvas3d-5.11.3-1.fc29 qt5-qtcharts-5.11.3-1.fc29 qt5-qtconnectivity-5.11.3-1.fc29 qt5-qtdat avis3d-5.11.3-1.fc29 qt5-qtdeclarative-5.11.3-1.fc29 qt5-qtdoc-5.11.3-1.fc29 qt5-qtenginio-1.6.2-20.fc29 qt5-qtgamepad-5.11.3-1.fc29 qt5-qtgraphicaleffects-5.11.3-1.fc29 qt5-qtimageformats-5.11.3-1.fc29 qt5-qtlocation-5.11.3-1.fc29 qt5-qtmultimedia-5.11.3-1.fc29 qt5-qtquickcontrols2-5.11.3-1.fc29 qt5-qtquickcontrols-5.11.3-1.fc29 qt5-qtremoteobjects-5.11.3-1.fc29 qt5-qtscript-5.11.3-1.fc29 qt5-qtscxml-5.11.3-1.fc29 qt5-qtsensors-5.11.3-1.fc29 qt5-qtserialbus-5.11.3-1.fc29 qt5-qtserialport-5.11.3-1.fc29 qt5-qtspeech-5.11.3-1.fc29 qt5-qtstyleplugins-5.0.0-29.fc29 qt5-qtsvg-5.11.3-1.fc29 qt5-qttools-5.11.3-1.fc29 qt5-qttranslations-5.11.3-1.fc29 qt5-qtvirtualkeyboard-5.11.3-1.fc29 qt5-qtwayland-5.11.3-1.fc29 qt5-qtwebchannel-5.11.3-1.fc29 qt5-qtwebengine-5.11.3-2.fc29 qt5-qtwebkit-5.212.0-0.31.alpha2.fc29 qt5-qtwebsockets-5.11.3-1.fc29 qt5-qtwebview-5.11.3-1.fc29 qt5-qtx11extras-5.11.3-1.fc29 qt5-qtxmlpatterns-5.11.3-1.fc29 qtcurve-1.9.1-2.fc29 sip-4.19.13-3.fc29 skrooge-2.14.0-3.fc29 texmaker-5.0.2-9.fc29 ugene-1.31.0-4.fc29 xdg-desktop-portal-kde-5.14.4-2.fc29 yarock-1.3.1-5.fc29 The following builds have been pushed to Fedora 29 updates-testing 0ad-0.0.23b-1.fc29 0ad-data-0.0.23b-1.fc29 Random123-1.09-7.fc29 darktable-2.6.0-2.fc29 greybird-3.22.9-2.fc29 krb5-1.16.1-23.fc29 krename-5.0.60-1.fc29 libappstream-glib-0.7.14-4.fc29 lutris-0.4.23-5.fc29 mesa-18.2.8-1.fc29 python-subliminal-2.0.5-8.fc29 qdigidoc-4.2.0-4.fc29 qt-creator-4.7.2-2.fc29 strace-4.26-1.fc29 supertux-0.6.0-1.fc29 tcpreplay-4.3.1-1.fc29 xpad-5.3.0-1.fc29 zchunk-1.0.2-1.fc29 Details about builds: ================================================================================ 0ad-0.0.23b-1.fc29 (FEDORA-2018-411d51bc34) Cross-Platform RTS Game of Ancient Warfare -------------------------------------------------------------------------------- Update Information: Update to 0.0.23b -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 27 2018 Pete Walter <pwalter@xxxxxxxxxxxxxxxxx> - 0.0.23b-1 - Update to 0.0.23b -------------------------------------------------------------------------------- ================================================================================ 0ad-data-0.0.23b-1.fc29 (FEDORA-2018-411d51bc34) The Data Files for 0 AD -------------------------------------------------------------------------------- Update Information: Update to 0.0.23b -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 27 2018 Pete Walter <pwalter@xxxxxxxxxxxxxxxxx> - 0.0.23b-1 - Update to 0.0.23b -------------------------------------------------------------------------------- ================================================================================ Random123-1.09-7.fc29 (FEDORA-2018-8b8160d0b6) Library of random number generators -------------------------------------------------------------------------------- Update Information: * Enable aarch64 support -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Ankur Sinha <ankursinha AT fedoraproject DOT org> - 1.09-7 - Add aarch64 patch -------------------------------------------------------------------------------- ================================================================================ darktable-2.6.0-2.fc29 (FEDORA-2018-fcbe7f2638) Utility to organize and develop raw images -------------------------------------------------------------------------------- Update Information: 2.6.0 release ---- Update to 2.6.0 -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Germano Massullo <germano@xxxxxxxxxxxxxxxxxxx> - 2.6.0-2 - changed cmake and clang minimum version requirement * Fri Dec 28 2018 Pete Walter <pwalter@xxxxxxxxxxxxxxxxx> - 2.6.0-1 - Update to 2.6.0 - Enable ppc64le build (#1660807) * Wed Jul 18 2018 Germano Massullo <germano.massullo@xxxxxxxxx> - 2.4.4-3 - added noise tools and basecurve tools subpackages -------------------------------------------------------------------------------- References: [ 1 ] Bug #1660807 - enable ppc64le when updating to 2.6 https://bugzilla.redhat.com/show_bug.cgi?id=1660807 [ 2 ] Bug #1613439 - [abrt] darktable: __libc_sigaction(): darktable killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1613439 -------------------------------------------------------------------------------- ================================================================================ greybird-3.22.9-2.fc29 (FEDORA-2018-958127d7c5) A clean minimalistic theme for Xfce, GTK+ 2 and 3 -------------------------------------------------------------------------------- Update Information: Correct fix for taskbar bug. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Kevin Fenzi <kevin@xxxxxxxxx> - 3.22.9-2 - Apply patch with 3 small post release fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1655263 - XFCE taskbar has a border around buttons making them unclickable https://bugzilla.redhat.com/show_bug.cgi?id=1655263 -------------------------------------------------------------------------------- ================================================================================ krb5-1.16.1-23.fc29 (FEDORA-2018-dc944aaa79) The Kerberos network authentication system -------------------------------------------------------------------------------- Update Information: This update re-disables a patch which was added in -20, found to cause problems for FreeIPA, and disabled in -21. The recent -22 update re-enabled that patch (possibly unintentionally, as this is not mentioned in the changelog), and it was immediately reported by [two](https://bugzilla.redhat.com/show_bug.cgi?id=1633089#c50) [testers](https://bugzilla.redhat.com/show_bug.cgi?id=1622760#c19) - and also by openQA update tests - that FreeIPA was having problems again. So, it seems wise to disable it once more. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Adam Williamson <awilliam@xxxxxxxxxx> - 1.16.1-23 - Disable patch from -20 again (rharwood re-enabled it in -22, and it immediately broke FreeIPA again) -------------------------------------------------------------------------------- ================================================================================ krename-5.0.60-1.fc29 (FEDORA-2018-b066ebfcd4) Powerful batch file renamer -------------------------------------------------------------------------------- Update Information: Switch to use Qt5/KF5. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 27 2018 Vasiliy Glazov Vasiliy N. Glazov <vascom2@xxxxxxxxx> 5.0.60-1 - Initial release with KF5 -------------------------------------------------------------------------------- ================================================================================ libappstream-glib-0.7.14-4.fc29 (FEDORA-2018-69c68f1385) Library for AppStream metadata -------------------------------------------------------------------------------- Update Information: This update backports an upstream fix for a common gnome-software crash. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Kalev Lember <klember@xxxxxxxxxx> 0.7.14-4 - Backport an upstream patch to fix common gnome-software crash -------------------------------------------------------------------------------- References: [ 1 ] Bug #1570096 - [abrt] gnome-software: g_hash_table_lookup_node(): gnome-software killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1570096 [ 2 ] Bug #1639558 - [abrt] gnome-software: g_hash_table_lookup_node(): gnome-software killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1639558 [ 3 ] Bug #1644026 - [abrt] gnome-software: g_hash_table_lookup_node(): gnome-software killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1644026 [ 4 ] Bug #1658140 - [abrt] gnome-software: g_hash_table_lookup_node(): gnome-software killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1658140 [ 5 ] Bug #1661382 - [abrt] gnome-software: g_hash_table_lookup_node(): gnome-software killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1661382 [ 6 ] Bug #1661701 - [abrt] gnome-software: g_hash_table_lookup_node(): gnome-software killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1661701 [ 7 ] Bug #1662130 - [abrt] gnome-software: as_app_add_token(): gnome-software killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1662130 -------------------------------------------------------------------------------- ================================================================================ lutris-0.4.23-5.fc29 (FEDORA-2018-707e162c18) Install and play any video game easily -------------------------------------------------------------------------------- Update Information: Changing the format of those previously added dependencies so that they work -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Christopher King <bunnyapocalypse@xxxxxxxxxxxxxx> - 0.4.23-5 - Changing the format of those previously added dependencies so that they work * Thu Dec 20 2018 Christopher King <bunnyapocalypse@xxxxxxxxxxxxxx> - 0.4.23-4 - Adding some mesa depends to make Lutris work on more systems more reliably * Fri Nov 16 2018 Christopher King <bunnyapocalypse@xxxxxxxxxxxxxx> - 0.4.23-3 - Turns out that I hadn't actually made a mistake, reverting most of the changes * Thu Nov 15 2018 Christopher King <bunnyapocalypse@xxxxxxxxxxxxxx> - 0.4.23-2 - Updating this spec to actually install the appdata file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1661236 - Missing 32-bit Mesa/Vulkan dependencies https://bugzilla.redhat.com/show_bug.cgi?id=1661236 -------------------------------------------------------------------------------- ================================================================================ mesa-18.2.8-1.fc29 (FEDORA-2018-ced2065bea) Mesa graphics libraries -------------------------------------------------------------------------------- Update Information: Update to 18.2.8 -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Pete Walter <pwalter@xxxxxxxxxxxxxxxxx> - 18.2.8-1 - Update to 18.2.8 -------------------------------------------------------------------------------- ================================================================================ python-subliminal-2.0.5-8.fc29 (FEDORA-2018-59a2f97cab) Python library to search and download subtitles -------------------------------------------------------------------------------- Update Information: Enable python dependency generator -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Juan Orti Alcaine <jorti@xxxxxxxxxxxxxxxxx> - 2.0.5-8 - Enable python dependency generator -------------------------------------------------------------------------------- References: [ 1 ] Bug #1662371 - Package fail to start (Library missing?) https://bugzilla.redhat.com/show_bug.cgi?id=1662371 -------------------------------------------------------------------------------- ================================================================================ qdigidoc-4.2.0-4.fc29 (FEDORA-2018-fe00905eb0) Estonian digital signature and encryption application -------------------------------------------------------------------------------- Update Information: 4.2 release Obsoletes qesteidutil -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Germano Massullo <germano@xxxxxxxxxxxxxxxxxxx> - 4.2.0-4 - added Provides: qesteidutil * Tue Dec 11 2018 Germano Massullo <germano@xxxxxxxxxxxxxxxxxxx> - 4.2.0-3 - adding obsoletes: qesteidutil for F30 * Tue Dec 4 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 4.2.0-2 - Add proper provides and obsoletes * Tue Dec 4 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 4.2.0-1 - Upstream release 4.2.0 * Mon Nov 19 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 4.1.0-1 - Upstream release 4.1.0 * Thu Oct 4 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 4.0.0-4 - Use the officially provided zip pack - Update static resource files * Mon Jun 25 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 4.0.0-3 - Add instructions on how to obtain the tarball - Re-pack the sources tarball with ones obtained from VCS. * Mon Jun 18 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 4.0.0-2 - Add a patch for sanbox compilation * Wed Jun 13 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 4.0.0-1 - Update sources to the 4.0.0 release - Add a patch to workaround the Qt 5.11 compatibility * Sun Jun 3 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 0.6.0-3 - Update sources to the latest one * Thu May 3 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 0.6.0-2 - Remove filetype bindings and icons to avoid conflict with DigiDoc3 * Tue May 1 2018 Dmitri Smirnov <dmitri@xxxxxxxxxx> - 0.6.0-1 - Initial packaging of 0.6.0 beta -------------------------------------------------------------------------------- References: [ 1 ] Bug #1606031 - qdigidoc: FTBFS in Fedora rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1606031 [ 2 ] Bug #1658238 - Fix sandbox patch https://bugzilla.redhat.com/show_bug.cgi?id=1658238 -------------------------------------------------------------------------------- ================================================================================ qt-creator-4.7.2-2.fc29 (FEDORA-2018-c3523ba5b5) Cross-platform IDE for Qt -------------------------------------------------------------------------------- Update Information: Rebuild for newer Qt5 release -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 27 2018 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.7.2-2 - rebuild (Qt5) -------------------------------------------------------------------------------- ================================================================================ strace-4.26-1.fc29 (FEDORA-2018-438210a9fd) Tracks and displays system calls associated with a running process -------------------------------------------------------------------------------- Update Information: v4.25 -> v4.26. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 27 2018 Dmitry V. Levin <ldv@xxxxxxxxxxxx> - 4.26-1 - v4.25 -> v4.26. * Tue Oct 30 2018 Dmitry V. Levin <ldv@xxxxxxxxxxxx> - 4.25-1 - v4.24 -> v4.25. -------------------------------------------------------------------------------- ================================================================================ supertux-0.6.0-1.fc29 (FEDORA-2018-2fd6e94b13) Jump'n run like game -------------------------------------------------------------------------------- Update Information: Update to 0.6.0 -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Pete Walter <pwalter@xxxxxxxxxxxxxxxxx> - 0.6.0-1 - Update to 0.6.0 - Drop opengl-game-wrapper.sh use - Update URL - Spec file cleanup - Remove ExcludeArch: ppc64le -------------------------------------------------------------------------------- ================================================================================ tcpreplay-4.3.1-1.fc29 (FEDORA-2018-5f91054677) Replay captured network traffic -------------------------------------------------------------------------------- Update Information: This release (4.3.1) contains bug fixes only: - Fix checkspell detected typos (#531) - Heap overflow packet2tree and get_l2len (#530) This is Tcpreplay suite 4.3.0 This release contains several bug fixes and enhancements: - Fix maxOS TOS checksum failure (#524) - TCP sequence edits seeding (#514) - Fix issues identifed by Codacy (#493) - CVE-2018-18408 use-after-free in post_args (#489) - CVE-2018-18407 heap-buffer-overflow csum_replace4 (#488) - CVE-2018-17974 heap- buffer-overflow dlt_en10mb_encode (#486) - CVE-2018-17580 heap-buffer-overflow fast_edit_packet (#485) - CVE-2018-17582 heap-buffer-overflow in get_next_packet (#484) - Out-of-tree build (#482) - CVE-2018-13112 heap-buffer-overflow in get_l2len (#477 dup #408) - Closing stdin on pipe (#479) - Second pcap file hangs on multiplier option (#472) - Jumbo frame support for fragroute option (#466) - TCP sequence edit ACK corruption (#451) - TCP sequence number edit initial SYN packet should have zero ACK (#450) - Travis CI build fails due to new build images (#432) - Upgrade libopts to 5.18.12 to address version build issues (#430) - Add ability to change tcp SEQ/ACK numbers (#425) - Hang using loop and netmap options (#424) - tcpprep -S not working for large cache files (#423) - Unable to tcprewrite range of ports with --portmap (#422) - --maxsleep broken for values less than 1000 (#421) - -T flag breaks traffic replay timing (#419) - Respect 2nd packet timing (#418) - Avoid non-blocking behaviour when using STDIN (#416) - pcap containing >1020 packets produces invalid cache file (#415) - manpage typos (#413) - Fails to open tap0 on Zephyr (#411) - Heap- buffer-overflow in get_l2protocol (#410) - Heap-buffer-overflow in packet2tree (#409) - Heap-buffer-overflow in get_l2len (#408) - Heap-buffer-overflow in flow_decode (#407) - Rewrite zero IP total length field to match the actual packet length (#406) - Stack-buffer-overflow in tcpcapinfo (#405) - tcpprep --include option does not exclude (#404) - Negative-size-param memset in dlt_radiotap_get_80211 (#402) - tcpeplay --verbose option not working (#398) - Fix replay when using --with-testnic (#178) -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 29 2018 Bojan Smojver <bojan@rexursive com> - 4.3.1-1 - bump up to 4.3.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1636599 - CVE-2018-17974 tcpreplay: heap-based buffer over-read in dlt_en10mb_encode in plugins/dlt_en10mb/en10mb.c [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1636599 [ 2 ] Bug #1635043 - CVE-2018-17582 tcpreplay: heap-based buffer over-read in the get_next_packet() in send_packets.c [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1635043 [ 3 ] Bug #1635040 - CVE-2018-17580 tcpreplay: heap-based buffer over-read in fast_edit_packet() in file send_packets.c [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1635040 [ 4 ] Bug #1646410 - CVE-2018-18408 tcpreplay: use-after-free in post_args function in tcpbridge.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1646410 [ 5 ] Bug #1646404 - CVE-2018-18407 tcpreplay: tcpreplay: heap-based buffer over-read in csum_replace4 function in incremental_checksum.h [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1646404 [ 6 ] Bug #1636600 - CVE-2018-17974 tcpreplay: heap-based buffer over-read in dlt_en10mb_encode in plugins/dlt_en10mb/en10mb.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1636600 [ 7 ] Bug #1635042 https://bugzilla.redhat.com/show_bug.cgi?id=1635042 [ 8 ] Bug #1635039 - CVE-2018-17580 tcpreplay: heap-based buffer over-read in fast_edit_packet() in file send_packets.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1635039 -------------------------------------------------------------------------------- ================================================================================ xpad-5.3.0-1.fc29 (FEDORA-2018-83b7814a7f) Sticky notepad for GTK -------------------------------------------------------------------------------- Update Information: Update to 5.3.0 with various bugfixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Kevin Fenzi <kevin@xxxxxxxxx> - 5.3.0-1 - Update to 5.3.0 -------------------------------------------------------------------------------- ================================================================================ zchunk-1.0.2-1.fc29 (FEDORA-2018-6620a61263) Compressed file format that allows easy deltas -------------------------------------------------------------------------------- Update Information: Add tests for validating new chunk matching code ---- Use hash table for finding identical chunks, speeding up process considerably -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 28 2018 Jonathan Dieter <jdieter@xxxxxxxxx> - 1.0.2-1 - Use hash table for finding identical chunks, speeding up process considerably - Add test case to verify that identical chunk checking is working -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/test@xxxxxxxxxxxxxxxxxxxxxxx
