The following Fedora 30 Security updates need testing: Age URL 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-aba3cca74a python3-3.7.5-1.fc30 6 https://bodhi.fedoraproject.org/updates/FEDORA-2019-7559f29ace proftpd-1.3.6b-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d06bc63433 tcpdump-4.9.3-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-74ba24605e python2-2.7.17-1.fc30 python2-docs-2.7.17-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a2110fa094 varnish-6.3.1-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-7bb07c3b02 php-7.3.11-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-d3221d69e0 mingw-libidn2-2.2.0-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8934d55352 nspr-4.23.0-1.fc30 nss-3.47.0-2.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-73919e71f8 aspell-0.60.8-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-97dcb2762a file-5.36-5.fc30 The following Fedora 30 Critical Path updates have yet to be approved: Age URL 108 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c05e4425d1 dash-0.5.10.2-3.fc30 38 https://bodhi.fedoraproject.org/updates/FEDORA-2019-7cac16652c harfbuzz-2.6.1-2.fc30 22 https://bodhi.fedoraproject.org/updates/FEDORA-2019-01264c1d17 polkit-0.116-2.fc30.1 16 https://bodhi.fedoraproject.org/updates/FEDORA-2019-75aec6d68e libappstream-glib-0.7.16-1.fc30 12 https://bodhi.fedoraproject.org/updates/FEDORA-2019-992f0c04dd python-rpm-macros-3-43.fc30 11 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a28a633a0b vte291-0.56.4-1.fc30 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ae9aa274f2 cups-2.2.12-3.fc30 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9c4324f599 grub2-2.02-84.fc30 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-b0126ef1f0 plasma-workspace-5.15.5-2.fc30 qt5-qtdeclarative-5.12.5-4.fc30 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-5eaaf1a012 gnome-online-accounts-3.32.1-1.fc30 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-aba3cca74a python3-3.7.5-1.fc30 9 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8fb3af917d libinput-1.14.2-1.fc30 8 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c75e8b6f93 libldb-1.5.6-1.fc30 samba-4.10.9-0.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-97dcb2762a file-5.36-5.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8934d55352 nspr-4.23.0-1.fc30 nss-3.47.0-2.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bb9ea29ef2 linux-firmware-20191022-103.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-a07ea39a27 pungi-4.1.40-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-751c65ba68 librsvg2-2.46.3-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6dc3b05887 libreport-2.11.2-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-40dba3d36e plymouth-0.9.4-11.20191022git32c097c.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-1b16b0e9ae sssd-2.2.2-3.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-059be8496f mesa-19.1.8-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-8c712089e1 sudo-1.8.28p1-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-640a6c99c0 vim-8.1.2198-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-25ba44eac2 fedora-release-30-6 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-74ba24605e python2-2.7.17-1.fc30 python2-docs-2.7.17-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2019-7b32145751 initial-setup-0.3.69-2.fc30 The following builds have been pushed to Fedora 30 updates-testing SuperLUMT-3.1.0-24.fc30 castget-2.0.1-1.fc30 dxf2gcode-20191025-1.fc30 gnome-shell-extension-netspeed-3.30-0.6.20191015gitafff448.fc30 golang-github-jinzhu-now-1.1.1-1.fc30 java-latest-openjdk-13.0.1.9-2.rolling.fc30 libedit-3.1-29.20191025cvs.fc30 lollypop-1.2.2-1.fc30 mmapper-19.10.0-1.fc30 perl-HTML-Restrict-3.0.0-2.fc30 pytest-3.10.1-1.fc30 python-xnat-0.3.21-1.fc30 scribus-generator-2.8.1-2.fc30 selinux-policy-3.14.3-51.fc30 t1utils-1.41-1.fc30 vtk-8.1.1-6.fc30 Details about builds: ================================================================================ SuperLUMT-3.1.0-24.fc30 (FEDORA-2019-3363e04b40) Single precision real SuperLU routines for shared memory parallel machines -------------------------------------------------------------------------------- Update Information: - Optimize OpenMP flags - Undefine --as-needed link option -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 24 2019 Antonio Trande <sagitterATfedoraproject.org> - 3.1.0-24 - Optimize OpenMP flags * Wed Oct 23 2019 Antonio Trande <sagitterATfedoraproject.org> - 3.1.0-23 - Undefine --as-needed link option * Wed Jul 24 2019 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1.0-22 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Sat Jun 29 2019 Antonio Trande <sagitterATfedoraproject.org> - 3.1.0-21 - Use devtoolset-8 on epel - Downgrading Make's jobs -------------------------------------------------------------------------------- ================================================================================ castget-2.0.1-1.fc30 (FEDORA-2019-d571b3c9d7) A command-line podcast downloader -------------------------------------------------------------------------------- Update Information: Version 2.0.1 (2019/10/26): * Fix broken man pages in distribution (issue #37) -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 26 2019 Ed Marshall <esm@xxxxxxxxx> - 2.0.1-1 - Update to 2.0.1. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1765824 - castget-2.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1765824 -------------------------------------------------------------------------------- ================================================================================ dxf2gcode-20191025-1.fc30 (FEDORA-2019-dc16afc1ad) 2D drawings to CNC machine compatible G-Code converter -------------------------------------------------------------------------------- Update Information: Update to the latest available version -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 25 2019 Damian Wrobel <dwrobel@xxxxxxxxxxxxxxxxxx> - 20191025-1 - Update to the latest available version -------------------------------------------------------------------------------- ================================================================================ gnome-shell-extension-netspeed-3.30-0.6.20191015gitafff448.fc30 (FEDORA-2019-a7e64a9708) A gnome-shell extension to show speed of the internet -------------------------------------------------------------------------------- Update Information: Update to gnome-shell-extension-netspeed-3.30-0.6.20191015gitafff448 -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 25 2019 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 3.30-0.6.20191015gitafff448 - Add missing locales * Fri Oct 25 2019 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 3.30-0.5.20191015gitafff448 - Update to 3.30-0.5.20191015gitafff448 * Thu Jul 25 2019 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.30-0.4.20190430gita62e19b - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ golang-github-jinzhu-now-1.1.1-1.fc30 (FEDORA-2019-12def8e488) Time toolkit for Golang -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 25 2019 Elliott Sales de Andrade <quantum.analyst@xxxxxxxxx> - 1.1.1-1 - Update to latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1765772 - golang-github-jinzhu-now-1.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1765772 -------------------------------------------------------------------------------- ================================================================================ java-latest-openjdk-13.0.1.9-2.rolling.fc30 (FEDORA-2019-119312dbfc) OpenJDK Runtime Environment 13 -------------------------------------------------------------------------------- Update Information: This update brings security updates for OpenJDK 13 and updates it to most current version 13.0.1.9. -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 25 2019 Petra Alice Mikova <pmikova@xxxxxxxxxx> - 1:13.0.1.9-2.rolling - Fixed hardcoded major version in jdk13u to macro - added jdk8231405_guarantee_d_nonequals_null_failed_null_dominator_info.patch - added jdk8231583_fix_register_clash_in_sbsa_resolve_forwarding_pointer_borrowing.patch * Mon Oct 21 2019 Petra Alice Mikova <pmikova@xxxxxxxxxx> - 1:13.0.1.9-1.rolling - Updated to October 2019 CPU sources * Wed Oct 16 2019 Petra Alice Mikova <pmikova@xxxxxxxxxx> - 1:13.0.0.33-3.rolling - synced up generate tarball script with other OpenJDK packages - dropped pr2126-synchronise_elliptic_curves_in_sun_security_ec_namedcurve_with_those_listed_by_nss.patch from the sources - regenerated sources with the updated script * Wed Oct 2 2019 Andrew Hughes <gnu.andrew@xxxxxxxxxx> - 1:13.0.0.33-3.rolling - Switch to in-tree SunEC code, dropping NSS runtime dependencies and patches to link against it. * Wed Oct 2 2019 Andrew John Hughes <gnu.andrew@xxxxxxxxxx> - 1:13.0.0.33-3.rolling - Drop unnecessary build requirement on gtk3-devel, as OpenJDK searches for Gtk+ at runtime. - Add missing build requirement for libXrender-devel, previously masked by Gtk3+ dependency - Add missing build requirement for libXrandr-devel, previously masked by Gtk3+ dependency - fontconfig build requirement should be fontconfig-devel, previously masked by Gtk3+ dependency * Wed Oct 2 2019 Andrew Hughes <gnu.andrew@xxxxxxxxxx> - 1:13.0.0.33-3.rolling - Obsolete javadoc-slowdebug and javadoc-slowdebug-zip packages via javadoc and javadoc-zip respectively. * Tue Oct 1 2019 Severin Gehwolf <sgehwolf@xxxxxxxxxx> - 1:13.0.0.33-2.rolling - Don't produce javadoc/javadoc-zip sub packages for the debug variant build. - Don't perform a bootcycle build for the debug variant build. * Mon Sep 30 2019 Severin Gehwolf <sgehwolf@xxxxxxxxxx> - 1:13.0.0.33-2.rolling - Fix vendor version as JDK 13 has been GA'ed September 2019: 19.3 => 19.9 - bump buildjdkver to 13 -------------------------------------------------------------------------------- ================================================================================ libedit-3.1-29.20191025cvs.fc30 (FEDORA-2019-af5e9f72a8) The NetBSD Editline library -------------------------------------------------------------------------------- Update Information: Changes in version 20191025-3.1: - PR lib/54067: Only quote the completion matches if we are doing filename completion. If the user supplies a value for the attempted_completion_function parameter then we cannot be sure if the completion is for filename or something else. In such a case don't attempt to quote the completion matches. - Perform quoting of filename completions when there are multiple matches as well. Quoting of special characters in filename completion was implemented for the single match case. This enables it for multiple matches as well. This required unescaping escape sequences generated during last completion in order to find the word to complete. While there, also update the test to include cases for multiple matches. - PR/54117: Fix memory overrun: Account for the closing quote in memory allocation if quoted. - PR/52359: When resizing because of a signal save and restore the cursor position, since it does not change. - PR lib/54131 - declare the loop variable outside the for loop - Follow the man page for EL_GETTC and do not require a NULL terminated argument list: https://reviews.llvm.org/D61191. - PR/54279: Ignore adjacent start/end prompt ignore. - PR/54280: rl_completer_quote_characters should be const for readline compat - PR/54281: NULL terminate rl_line_buffer on modification to avoid completion leak. - PR/54329: According to https://www.gnu.org/software/termutils/manual/termcap-1.3 /html_chapter/termcap_4.html#SEC23 a cursor move with multiple escapes has undefined results when moving out of the screen. Stop using DO to move down multiple lines and use a loop of newlines instead. - PR/54400: out-of-bounds read in libedit c_delbefore - PR/54399: Uninitialized memory access in libedit history. Initialize the buffer using calloc. While here change all malloc(a * sizeof(b)) to calloc(a, sizeof(b)). - Put the NULL check immediately after the allocation in hist_init() - PR/54415: libedit stats completions for non-file completions. Use the proper completion function and account for the character appended by the function when computing the number of columns. - Increment offset when adding an element to history to keep it aligned with the last element entered. - PR lib/54510: Fix file completion inside quotes which broke with the second change in this list. While there also fix handling character appending in file completions when inside quotes. For example when inside a quote, if the completion is a directory then append a '/' but don't close the quote. On the other hand when inside a quote if the completion is a file name and it is the only match then we can close the quote. - Fix type of MB_FILL_CHAR and remove cast for it in terminal.c. - Change strncpy to either memcpy (when we know the len), or strlcpy. -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 26 2019 Jerry James <loganjerry@xxxxxxxxx> - 3.1-29.20191025cvs - New version (20191025-3.1) * Thu Jul 25 2019 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.1-28.20190324cvs - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1765761 - libedit-20191025-3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1765761 -------------------------------------------------------------------------------- ================================================================================ lollypop-1.2.2-1.fc30 (FEDORA-2019-fd35422594) Music player for GNOME -------------------------------------------------------------------------------- Update Information: Update to lollypop-1.2.2-1 ---- Update to lollypop-1.2.1 ---- - Update to 1.2.0 - Add pkgconfig(pygobject-3.0) - Add pkgconfig(libsoup-2.4) -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 26 2019 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 1.2.2-1 - Update to 1.2.2 * Wed Oct 23 2019 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 1.2.1-1 - Update to 1.2.1 * Mon Oct 21 2019 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 1.2.0-1 - Update to 1.2.0 - Add pkgconfig(pygobject-3.0) - Add pkgconfig(libsoup-2.4) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1764361 - lollypop-1.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1764361 [ 2 ] Bug #1756631 - lollypop-1.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1756631 [ 3 ] Bug #1761252 - [abrt] lollypop: wrapper(): helper_signals.py:40:wrapper:TypeError: __init__() got an unexpected keyword argument 'search' https://bugzilla.redhat.com/show_bug.cgi?id=1761252 [ 4 ] Bug #1756754 - [abrt] lollypop: insert_album(): view_albums_list.py:558:insert_album:IndexError: list index out of range https://bugzilla.redhat.com/show_bug.cgi?id=1756754 [ 5 ] Bug #1747484 - [abrt] lollypop: set_listened_at(): database_tracks.py:801:set_listened_at:sqlite3.OperationalError: database is locked https://bugzilla.redhat.com/show_bug.cgi?id=1747484 [ 6 ] Bug #1765737 - lollypop-1.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1765737 -------------------------------------------------------------------------------- ================================================================================ mmapper-19.10.0-1.fc30 (FEDORA-2019-0d7eeec53e) Graphical MUME mapper -------------------------------------------------------------------------------- Update Information: mmaper 19.10.0 release. For details, see https://github.com/MUME/MMapper/releases/tag/v19.10.0 -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 26 2019 Kalev Lember <klember@xxxxxxxxxx> - 19.10.0-1 - Update to 19.10.0 - Disable github version checks -------------------------------------------------------------------------------- ================================================================================ perl-HTML-Restrict-3.0.0-2.fc30 (FEDORA-2019-d7fa725f0a) Perl module to strip unwanted HTML tags and attributes -------------------------------------------------------------------------------- Update Information: HTML::Restrict 3.0.0 ==================== - Better fix for handling malformed tags. Removes `max_parser_loops()`, which was introduced in 2.4.0 (GH#37) (Graham Knop) -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 26 2019 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.0.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Thu Jun 20 2019 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 3.0.0-1 - 3.0.0 bump * Fri May 31 2019 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 2.5.0-2 - Perl 5.30 rebuild -------------------------------------------------------------------------------- ================================================================================ pytest-3.10.1-1.fc30 (FEDORA-2019-c25af7bbe9) Simple powerful testing with Python -------------------------------------------------------------------------------- Update Information: Update to the latest 3.X version. See https://docs.pytest.org/en/latest/changelog.html#pytest-3-10-1-2018-11-11 for the full list of changes. -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 26 2019 Thomas Moschny <thomas.moschny@xxxxxx> - 3.10.1-1 - Update to 3.10.1. * Mon Feb 18 2019 Igor Gnatenko <ignatenkobrain@xxxxxxxxxxxxxxxxx> - 3.9.3-3 - Enable python dependency generator -------------------------------------------------------------------------------- ================================================================================ python-xnat-0.3.21-1.fc30 (FEDORA-2019-d4bf33e521) A new XNAT client that exposes XNAT objects/functions as python objects/functions. -------------------------------------------------------------------------------- Update Information: Upgraded to v0.3.21 -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 23 2019 Aniket Pradhan <major AT fedoraproject DOT org> - 0.3.21-1 - Upgraded to v0.3.21 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1759891 - python-xnat-0.3.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=1759891 -------------------------------------------------------------------------------- ================================================================================ scribus-generator-2.8.1-2.fc30 (FEDORA-2019-44e07a5f6e) Open source high-quality PDF template and mail-merge alternative -------------------------------------------------------------------------------- Update Information: Fix requirement for Fedora 30 and lower when upgrading to the newer release -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 26 2019 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.8.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1765806 - Can't upgrade to F31 because scribus-generator requires python2-tkinter https://bugzilla.redhat.com/show_bug.cgi?id=1765806 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.14.3-51.fc30 (FEDORA-2019-f83217e2bf) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: More info: https://koji.fedoraproject.org/koji/buildinfo?buildID=1404715 ---- More info: https://koji.fedoraproject.org/koji/buildinfo?buildID=1403685 ---- More info: https://koji.fedoraproject.org/koji/buildinfo?buildID=1396394 -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 25 2019 Lukas Vrabec <lvrabec@xxxxxxxxxx> - 3.14.3-51 - Allow confined users to run newaliases - Allow tmpreaper_t domain to read all domains state - Allow nagios_script_t domain list files labled sysfs_t. - Allow jetty_t domain search and read cgroup_t files. - Dontaudit domains read/write leaked pipes * Tue Oct 22 2019 Lukas Vrabec <lvrabec@xxxxxxxxxx> - 3.14.3-50 - Allow nagios_script_t domain list files labled sysfs_t. - Allow jetty_t domain search and read cgroup_t files. - Dontaudit and disallow sys_admin capability for keepalived_t domain - Update numad policy to allow signull, kill, nice and trace processes - Label /var/log/hawkey.log as rpm_log_t and update rpm named filetrans interfaces. - Allow ipmievd_t to RW watchdog devices - Update allow rules set for pads_t domain - Allow user domains to manage user session services - Allow staff and user users to get status of user systemd session - Update sudo_role_template() to allow caller domain to read syslog pid files * Wed Oct 9 2019 Lukas Vrabec <lvrabec@xxxxxxxxxx> - 3.14.3-49 - Remove duplicate file context for /usr//bin/nova-api-metadata - Allow setroubleshoot_fixit_t to read random_device_t - Label /etc/named direcotory as named_conf_t BZ(1759495) - Allow dkim to execute sendmail - Update virt_read_content interface to allow caller domain mmap virt_content_t block devices and files - Update aide_t domain to allow this tool to analyze also /dev filesystem - Update interface modutils_read_module_deps to allow caller domain also mmap modules_dep_t files BZ(1758634) - Allow avahi_t to send msg to xdm_t - Update dev_manage_sysfs() to support managing also lnk files BZ(1759019) - Allow systemd_logind_t domain to read blk_files in domain removable_device_t - Add new interface udev_getattr_rules_chr_files() * Fri Oct 4 2019 Lukas Vrabec <lvrabec@xxxxxxxxxx> - 3.14.3-48 - Update aide_t domain to allow this tool to analyze also /dev filesystem - Add net_broadcast capability to openvswitch_t domain BZ(1716044) - Allow exim_t to read mysqld conf files if exim_can_connect_db is enabled. BZ(1756973) - Label /var/log/collectd.log as collectd_log_t - Allow boltd_t domain to manage sysfs files and dirs BZ(1754360) - Add fowner capability to the pcp_pmlogger_t domain BZ(1754767) - networkmanager: allow NetworkManager_t to create bluetooth_socket - Add new interface udev_getattr_rules_chr_files() - Allow systemd(init_t) to load kernel modules - Allow xdm_t setpcap capability in user namespace BZ(1756790) - Allow xdm_t domain to user netlink_route sockets BZ(1756791) - Allow sudo userdomain to run rpm related commands - Add sys_admin capability for ipsec_t domain - Allow systemd_modules_load_t domain to read systemd pid files - Add new interface init_read_pid_files() - Allow systemd labeled as init_t domain to manage faillog_t objects - Add file context ipsec_var_run_t for /var/run/charon\.dck to ipsec.fc * Fri Sep 20 2019 Lukas Vrabec <lvrabec@xxxxxxxxxx> - 3.14.3-47 - Dontaudit thumb_t domain to getattr of nsfs_t files BZ(1753598) - Allow rhsmcertd_t domain to read rtas_errd lock files - Add new interface rtas_errd_read_lock() - Update allow rules set for nrpe_t domain - Label /dev/shm/dirsrv/ with dirsrv_tmpfs_t label - Allow dlm_controld_t domain to read random device - Add sys_ptrace capability to pcp_pmlogger_t domain BZ(1751816) - Allow gssproxy_t domain read state of all processes on system - Allow xdm_t domain to read sssd pid files BZ(1753240) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1706651 - SELinux is preventing caddy from mounton on the directory /run/systemd/unit-root/var/lib/caddy https://bugzilla.redhat.com/show_bug.cgi?id=1706651 [ 2 ] Bug #1525641 - Incorrectly relabeled /var/named/chroot/ because of loop https://bugzilla.redhat.com/show_bug.cgi?id=1525641 [ 3 ] Bug #1760834 - SELinux is preventing rhsmcertd-worke from 'open' accesses on the file /var/log/hawkey.log. https://bugzilla.redhat.com/show_bug.cgi?id=1760834 [ 4 ] Bug #1759561 - SELinux is preventing numad from using the 'signull' accesses on a process. https://bugzilla.redhat.com/show_bug.cgi?id=1759561 [ 5 ] Bug #1760889 - SELinux prevents jetty from searching under /sys/fs/cgroup directory https://bugzilla.redhat.com/show_bug.cgi?id=1760889 [ 6 ] Bug #1758634 - SELinux is preventing modprobe from 'map' accesses on the file /usr/lib/modules/5.3.1-matteo/modules.dep.bin. https://bugzilla.redhat.com/show_bug.cgi?id=1758634 [ 7 ] Bug #1760883 - SELinux prevents various nagios plugins from reading /sys/devices/system/cpu directory https://bugzilla.redhat.com/show_bug.cgi?id=1760883 [ 8 ] Bug #1758525 - upstream qemu change that mmaps ELF files breaks with selinux rules https://bugzilla.redhat.com/show_bug.cgi?id=1758525 [ 9 ] Bug #1759495 - No SELinux context for /etc/named directory https://bugzilla.redhat.com/show_bug.cgi?id=1759495 [ 10 ] Bug #1717405 - firewalld fails to start in F30 (Silverblue): Failed to load nf_conntrack module https://bugzilla.redhat.com/show_bug.cgi?id=1717405 [ 11 ] Bug #1750288 - Blocking the D-Bus autostart of fwupd https://bugzilla.redhat.com/show_bug.cgi?id=1750288 [ 12 ] Bug #1750112 - selinux is blocking gdm from accessing boot_t files, breaking the grub hidden menu feature https://bugzilla.redhat.com/show_bug.cgi?id=1750112 [ 13 ] Bug #1756790 - SELinux is preventing bwrap from 'setpcap' accesses on the cap_userns Desconocido. https://bugzilla.redhat.com/show_bug.cgi?id=1756790 [ 14 ] Bug #1756973 - Allow read access from exim to mysql config files https://bugzilla.redhat.com/show_bug.cgi?id=1756973 [ 15 ] Bug #1753383 - SELinux is preventing (systemd) from 'add_name' accesses on the katalog sddm. https://bugzilla.redhat.com/show_bug.cgi?id=1753383 [ 16 ] Bug #1756791 - SELinux is preventing bwrap from 'nlmsg_write' accesses on the netlink_route_socket Desconocido. https://bugzilla.redhat.com/show_bug.cgi?id=1756791 [ 17 ] Bug #1716044 - SELinux is preventing dockerd-current from using the 'net_broadcast' capabilities. https://bugzilla.redhat.com/show_bug.cgi?id=1716044 [ 18 ] Bug #1754767 - SELinux is preventing xz from using the fowner capability. https://bugzilla.redhat.com/show_bug.cgi?id=1754767 [ 19 ] Bug #1751816 - SELinux is preventing ps from using the sys_ptrace capability. https://bugzilla.redhat.com/show_bug.cgi?id=1751816 [ 20 ] Bug #1759019 - SELinux is preventing boltd from 'getattr' accesses on the lnk_file /sys/bus/wmi/devices/7FF47003-3B6C-4E5E-A227-E979824A85D1. https://bugzilla.redhat.com/show_bug.cgi?id=1759019 -------------------------------------------------------------------------------- ================================================================================ t1utils-1.41-1.fc30 (FEDORA-2019-b2156dcba6) Collection of Type 1 and 2 font manipulation utilities -------------------------------------------------------------------------------- Update Information: T1utils 1.41 ============ * `t1asm`, `t1disasm`: More security fixes T1utils 1.40 ============ * `t1disasm`: More security fixes reported by Jakub Wilk and Niels Thykier -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 26 2019 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 1.41-1 - Update to 1.41 * Sat Jul 27 2019 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.39-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ vtk-8.1.1-6.fc30 (FEDORA-2019-a340661795) The Visualization Toolkit - A high level 3D visualization library -------------------------------------------------------------------------------- Update Information: Drop unneed SIP_INCLUDE_DIR definition that breaks some dependencies -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 24 2019 Orion Poplawski <orion@xxxxxxxx> - 8.1.1-6 - Drop unneed SIP_INCLUDE_DIR definition that breaks some dependencies (bz#1765109) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1765109 - VTK python wrapper specifies non-existent include dir /usr/include/python3.7 https://bugzilla.redhat.com/show_bug.cgi?id=1765109 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/test@xxxxxxxxxxxxxxxxxxxxxxx
