The following Fedora 30 Security updates need testing: Age URL 120 https://bodhi.fedoraproject.org/updates/FEDORA-2019-71b2273a9f libarchive-3.3.3-7.fc30 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-40fa1ae94b libxslt-1.1.34-1.fc30 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-4c3d74204a nethack-3.6.6-1.fc30 5 https://bodhi.fedoraproject.org/updates/FEDORA-2020-79f233b15e chromium-80.0.3987.132-1.fc30 5 https://bodhi.fedoraproject.org/updates/FEDORA-2020-f3fa778924 webkit2gtk3-2.28.0-5.fc30 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-c870aa8378 tomcat-9.0.31-2.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2020-1050d60507 timeshift-20.03-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2020-872ec29251 varnish-6.3.2-3.fc30 The following Fedora 30 Critical Path updates have yet to be approved: Age URL 251 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c05e4425d1 dash-0.5.10.2-3.fc30 120 https://bodhi.fedoraproject.org/updates/FEDORA-2019-71b2273a9f libarchive-3.3.3-7.fc30 14 https://bodhi.fedoraproject.org/updates/FEDORA-2020-f13060e7a5 vim-8.2.348-1.fc30 13 https://bodhi.fedoraproject.org/updates/FEDORA-2020-36282d2a6d cups-2.2.12-6.fc30 12 https://bodhi.fedoraproject.org/updates/FEDORA-2020-6f6589f3ef ceph-14.2.8-1.fc30 11 https://bodhi.fedoraproject.org/updates/FEDORA-2020-6ff1ecb240 gnome-software-3.32.4-7.fc30 10 https://bodhi.fedoraproject.org/updates/FEDORA-2020-09e7d027b6 koji-1.20.1-1.fc30 python-pycdio-2.0.0-8.fc30 6 https://bodhi.fedoraproject.org/updates/FEDORA-2020-40fa1ae94b libxslt-1.1.34-1.fc30 5 https://bodhi.fedoraproject.org/updates/FEDORA-2020-7eb53be2a5 perl-Encode-3.04-13.fc30 5 https://bodhi.fedoraproject.org/updates/FEDORA-2020-b6287eafe3 dnsmasq-2.80-12.fc30 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-fffba1c2dd python3-3.7.7-1.fc30 python3-docs-3.7.7-1.fc30 4 https://bodhi.fedoraproject.org/updates/FEDORA-2020-94049d2962 nss-3.50.0-2.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2020-ed8d4d492b pcre2-10.34-8.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2020-9360ad9872 perl-Pod-Usage-1.70-1.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2020-1070052d10 linux-firmware-20200316-106.fc30 1 https://bodhi.fedoraproject.org/updates/FEDORA-2020-fa2df48609 pungi-4.2.1-2.fc30 The following builds have been pushed to Fedora 30 updates-testing conmon-2.0.13-1.fc30 libinsane-1.0.4-1.fc30 marco-1.22.4-2.fc30 nagios-plugins-2.3.3-1.fc30 nohang-0.1-24.20200317gitc70b824.fc30 pdfarranger-1.4.2-1.fc30 php-7.3.16-1.fc30 python-pikepdf-1.10.3-1.fc30 syncthing-1.4.0-1.fc30 Details about builds: ================================================================================ conmon-2.0.13-1.fc30 (FEDORA-2020-07237458ea) OCI container runtime monitor -------------------------------------------------------------------------------- Update Information: autobuilt v2.0.13 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2020 RH Container Bot <rhcontainerbot@xxxxxxxxxxxxxxxxx> - 2:2.0.13-1 - autobuilt v2.0.13 * Mon Mar 16 2020 RH Container Bot <rhcontainerbot@xxxxxxxxxxxxxxxxx> - 2:2.0.12-1 - autobuilt v2.0.12 * Thu Mar 12 2020 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 2:2.0.11-2 - Resolves: containers/libpod#5467 * Wed Mar 4 2020 RH Container Bot <rhcontainerbot@xxxxxxxxxxxxxxxxx> - 2:2.0.11-1 - autobuilt v2.0.11 * Sat Jan 25 2020 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 2:2.0.10-7 - 2.0.10-7 for obs test * Sat Jan 25 2020 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 2:2.0.10-6 - test * Sat Jan 25 2020 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 2:2.0.10-5 - bump for OBS test * Sat Jan 25 2020 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 2:2.0.10-4 - bump for OBS test * Sat Jan 25 2020 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 2:2.0.10-3 - bump for OBS test -------------------------------------------------------------------------------- ================================================================================ libinsane-1.0.4-1.fc30 (FEDORA-2020-d3f48ee64a) Cross-platform access to image scanners -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2020 Elliott Sales de Andrade <quantum.analyst@xxxxxxxxx> - 1.0.4-1 - Update to latest version * Wed Jan 29 2020 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.0.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1813669 - libinsane-1.0.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1813669 -------------------------------------------------------------------------------- ================================================================================ marco-1.22.4-2.fc30 (FEDORA-2020-af2d5ccd0a) MATE Desktop window manager -------------------------------------------------------------------------------- Update Information: - add upstream patches to avoid crashes -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2020 Wolfgang Ulbrich <fedora@xxxxxxxxx> - 1.22.4-2 - add upstream patches to avoid crashes - use https://github.com/mate-desktop/marco/commit/b07f3f3 - use https://github.com/mate-desktop/marco/commit/26864e5 - use https://github.com/mate-desktop/marco/commit/50cc7c7 - use https://github.com/mate-desktop/marco/commit/251a84f - use https://github.com/mate-desktop/marco/commit/897a11c - use https://github.com/mate-desktop/marco/commit/556c4ff - use https://github.com/mate-desktop/marco/commit/f77dbd2 - use https://github.com/mate-desktop/marco/commit/4ae91ff - use https://github.com/mate-desktop/marco/pull/605 - use https://github.com/mate-desktop/marco/pull/601 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1787130 - [abrt] marco: meta_frame_calc_borders(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1787130 [ 2 ] Bug #1792624 - [abrt] marco: INT_cairo_region_num_rectangles(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1792624 [ 3 ] Bug #1787131 - [abrt] marco: meta_frame_get_frame_bounds(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1787131 [ 4 ] Bug #1794918 - [abrt] marco: _IO_file_doallocate(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1794918 [ 5 ] Bug #1779482 - [abrt] marco: read_packet(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1779482 [ 6 ] Bug #1753184 - [abrt] marco: g_log_structured_standard(): marco killed by SIGTRAP https://bugzilla.redhat.com/show_bug.cgi?id=1753184 [ 7 ] Bug #1793524 - [abrt] marco: meta_frame_get_frame_bounds(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1793524 [ 8 ] Bug #1785216 - [abrt] marco: INT_cairo_region_num_rectangles(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1785216 [ 9 ] Bug #1785157 - [abrt] marco: meta_frame_calc_borders(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1785157 [ 10 ] Bug #1787184 - [abrt] marco: meta_frame_get_frame_bounds(): marco killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1787184 -------------------------------------------------------------------------------- ================================================================================ nagios-plugins-2.3.3-1.fc30 (FEDORA-2020-2194e6a808) Host/service/network monitoring program plugins for Nagios -------------------------------------------------------------------------------- Update Information: New upstream version -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 15 2020 Martin Jackson <mhjacks@xxxxxxxxxx> - 2.3.3-1 - New upstream version - Remove reference to path10 which no longer is in the specfile -------------------------------------------------------------------------------- References: [ 1 ] Bug #1805441 - nagios-plugins-2.3.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1805441 -------------------------------------------------------------------------------- ================================================================================ nohang-0.1-24.20200317gitc70b824.fc30 (FEDORA-2020-ae0746de19) Highly configurable OOM prevention daemon -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2020 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.1-24.20200317gitc70b824 - Update to latest git snapshot * Fri Feb 28 2020 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.1-23.20200228git2928709 - Update to latest git snapshot * Fri Feb 21 2020 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.1-22.20200221git8cc7c63 - Update to latest git snapshot -------------------------------------------------------------------------------- ================================================================================ pdfarranger-1.4.2-1.fc30 (FEDORA-2020-abb64e5136) PDF file merging, rearranging, and splitting -------------------------------------------------------------------------------- Update Information: Update to new upstream version 1.4.2 (rhbz#1814032) -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2020 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 1.4.2-1 - Update to new upstream version 1.4.2 (rhbz#1814032) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1814032 - pdfarranger-1.4.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1814032 -------------------------------------------------------------------------------- ================================================================================ php-7.3.16-1.fc30 (FEDORA-2020-ce5a2a7403) PHP scripting language for creating dynamic web sites -------------------------------------------------------------------------------- Update Information: **PHP version 7.3.16** (19 Mar 2020) **Core:** * Fixed bug php#63206 (restore_error_handler does not restore previous errors mask). (Mark Plomer) **DOM:** * Fixed bug php#77569: (Write Access Violation in DomImplementation). (Nikita, cmb) * Fixed bug php#79271 (DOMDocumentType::$childNodes is NULL). (cmb) **Enchant:** * Fixed bug php#79311 (enchant_dict_suggest() fails on big endian architecture). (cmb) **EXIF:** * Fixed bug php#79282 (Use-of- uninitialized-value in exif). (**CVE-2020-7064*) (Nikita) **MBstring:** * Fixed bug php#79371 (mb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full). (**CVE-2020-7065**) (cmb) **MySQLi:** * Fixed bug php#64032 (mysqli reports different client_version). (cmb) **PCRE:** * Fixed bug php#79188 (Memory corruption in preg_replace/preg_replace_callback and unicode). (Nikita) **PDO_ODBC:** * Fixed bug php#79038 (PDOStatement::nextRowset() leaks column values). (cmb) **Reflection:** * Fixed bug php#79062 (Property with heredoc default value returns false for getDocComment). (Nikita) **SQLite3:** * Fixed bug php#79294 (::columnType() may fail after SQLite3Stmt::reset()). (cmb) **Standard:** * Fixed bug php#79329 (get_headers() silently truncates after a null byte). (**CVE-2020-7066**) (cmb) * Fixed bug php#79254 (getenv() w/o arguments not showing changes). (cmb) * Fixed bug php#79265 (Improper injection of Host header when using fopen for http requests). (Miguel Xavier Penha Neto) -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2020 Remi Collet <remi@xxxxxxxxxxxx> - 7.3.16-1 - Update to 7.3.16 - http://www.php.net/releases/7_3_16.php -------------------------------------------------------------------------------- ================================================================================ python-pikepdf-1.10.3-1.fc30 (FEDORA-2020-e39bbc8b04) Read and write PDFs with Python, powered by qpdf -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2020 Elliott Sales de Andrade <quantum.analyst@xxxxxxxxx> - 1.10.3-1 - Update to latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1814136 - python-pikepdf-1.10.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1814136 -------------------------------------------------------------------------------- ================================================================================ syncthing-1.4.0-1.fc30 (FEDORA-2020-6fb3bc1e00) Continuous File Synchronization -------------------------------------------------------------------------------- Update Information: Update to version 1.4.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.4.0 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2020 Fabio Valentini <decathorpe@xxxxxxxxx> - 1.4.0-1 - Update to version 1.4.0. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1801490 - syncthing-1.4.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1801490 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/test@xxxxxxxxxxxxxxxxxxxxxxx
