The following Fedora 33 Security updates need testing: Age URL 156 https://bodhi.fedoraproject.org/updates/FEDORA-2021-c3d587d52c shim-15.4-1 13 https://bodhi.fedoraproject.org/updates/FEDORA-2021-232161e4d5 lynx-2.8.9-13.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4a43cbe0b4 vim-8.2.3404-1.fc33 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-38b51d9fd3 golang-1.15.15-1.fc33 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-f53d1bbf50 wordpress-5.8.1-1.fc33 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-fed53cbc7d xen-4.14.2-4.fc33 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-cd5ee418f6 haproxy-2.2.17-1.fc33 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-db6fb33b05 libtpms-0.8.6-0.20210910git7a4d46a119.fc33 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-450c33d2a6 firefox-92.0-2.fc33 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9f020cf155 mingw-python-pillow-7.2.0-8.fc33 python-pillow-7.2.0-8.fc33 python2-pillow-6.2.2-7.fc33 The following Fedora 33 Critical Path updates have yet to be approved: Age URL 175 https://bodhi.fedoraproject.org/updates/FEDORA-2021-2961f34ccb PackageKit-1.2.3-1.fc33 110 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4797e362b3 abrt-2.14.6-1.fc33 libreport-2.15.1-1.fc33 satyr-0.37-2.fc33 26 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4ccf3840ed gnome-shell-3.38.6-1.fc33 mutter-3.38.6-1.fc33 13 https://bodhi.fedoraproject.org/updates/FEDORA-2021-dac2bec579 cracklib-2.9.6-27.fc33 12 https://bodhi.fedoraproject.org/updates/FEDORA-2021-f135b880d1 gnome-software-3.38.2-3.fc33 12 https://bodhi.fedoraproject.org/updates/FEDORA-2021-5326e30d64 hwdata-0.351-1.fc33 11 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9958e15ab2 perl-Digest-1.20-1.fc33 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-450c33d2a6 firefox-92.0-2.fc33 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-7a74c98205 thunderbird-91.1.0-1.fc33 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e7c8ba6301 ntfs-3g-2021.8.22-2.fc33 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-b23a9bea6a ethtool-5.14-1.fc33 1 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e63926a1bb btrfs-progs-5.14-2.fc33 The following builds have been pushed to Fedora 33 updates-testing bleachbit-4.4.0-1.fc33 bottles-2021.9.14-1.fc33 gnome-shell-extension-mediacontrols-15-1.fc33 goverlay-0.6.3-1.fc33 kernel-5.13.16-100.fc33 libmodulemd-2.13.0-2.fc33 moodle-3.9.10-1.fc33 php-amqplib-2.12.3-2.fc33 rust-1.55.0-1.fc33 squashfs-tools-4.5-3.20210913gite048580.fc33 Details about builds: ================================================================================ bleachbit-4.4.0-1.fc33 (FEDORA-2021-d37ad1ba8b) Remove sensitive data and free up disk space -------------------------------------------------------------------------------- Update Information: Bump to upstream version 4.4.0. See https://www.bleachbit.org/news/bleachbit-440 -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 13 2021 Audrey Toskin <audrey@xxxxxxx> - 4.4.0-1 - Bump to upstream version 4.4.0, with upstream enhancements documented here: https://www.bleachbit.org/news/bleachbit-440 * Wed Jul 21 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.2.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Tue Jan 26 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.2.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Fri Jan 15 2021 Audrey Toskin <audrey@xxxxxxx> - 4.2.0-2 - Adjust package spec to build for EPEL7. -------------------------------------------------------------------------------- ================================================================================ bottles-2021.9.14-1.fc33 (FEDORA-2021-5ce37a8c88) Easily manage Wine prefix in a new way -------------------------------------------------------------------------------- Update Information: Update to 2021.9.14 -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 14 2021 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 2021.9.14-1 - build(update): 2021.9.14 -------------------------------------------------------------------------------- ================================================================================ gnome-shell-extension-mediacontrols-15-1.fc33 (FEDORA-2021-d46407cefb) Show controls for the current playing media in the panel -------------------------------------------------------------------------------- Update Information: https://github.com/cliffniff/media-controls/releases/tag/v15 -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 13 2021 Carl George <carl@george.computer> 15-1 - Latest upstream -------------------------------------------------------------------------------- References: [ 1 ] Bug #2003812 - gnome-shell-extension-mediacontrols-15 is available https://bugzilla.redhat.com/show_bug.cgi?id=2003812 -------------------------------------------------------------------------------- ================================================================================ goverlay-0.6.3-1.fc33 (FEDORA-2021-6dedd62564) Opensource project that aims to create a Graphical UI to help manage Linux overlays -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 13 2021 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.6.3-1 - build(update): 0.6.3 -------------------------------------------------------------------------------- ================================================================================ kernel-5.13.16-100.fc33 (FEDORA-2021-9e50a13f09) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 5.13.6 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 13 2021 Justin M. Forbes <jforbes@xxxxxxxxxxxxxxxxx> [5.13.16-100] - kernel-5.13.16-0 (Justin M. Forbes) -------------------------------------------------------------------------------- ================================================================================ libmodulemd-2.13.0-2.fc33 (FEDORA-2021-b45ccbe1a6) Module metadata manipulation library -------------------------------------------------------------------------------- Update Information: This release adds a workaround for accepting an invalid buildorder 18446744073709551615 as found in RHEL 8 repositories. There are users who use Fedora to edit RHEL 8 repository metadata. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 14 2021 Petr Pisar <ppisar@xxxxxxxxxx> - 2.13.0-2 - Accept an invalid buildorder 18446744073709551615 found in RHEL 8 repositories (https://pagure.io/koji/issue/3025) -------------------------------------------------------------------------------- ================================================================================ moodle-3.9.10-1.fc33 (FEDORA-2021-6f1867da9d) A Course Management System -------------------------------------------------------------------------------- Update Information: Latest update. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 13 2021 Gwyn Ciesla <gwync@xxxxxxxxxxxxxx> - 3.9.10-1 - 3.9.10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2003490 - moodle-3.11.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2003490 -------------------------------------------------------------------------------- ================================================================================ php-amqplib-2.12.3-2.fc33 (FEDORA-2021-8a0b8d13f9) Pure PHP implementation of the AMQP protocol -------------------------------------------------------------------------------- Update Information: ## 2.12.3 - 2021-03-01 [GitHub Milestone](https://github.com/php-amqplib/php- amqplib/milestone/20?closed=1) ## 2.12.2 - 2021-02-12 [GitHub Milestone](https://github.com/php-amqplib/php-amqplib/milestone/18?closed=1) ## 2.12.1 - 2020-08-24 [GitHub Milestone](https://github.com/php-amqplib/php- amqplib/milestone/17?closed=1) -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 13 2021 Shawn Iwinski <shawn@xxxxxxxx> - 2.12.3-2 - Fix phpseclib3 compatibility * Mon Sep 13 2021 Shawn Iwinski <shawn@xxxxxxxx> - 2.12.3-1 - Update to 2.12.3 * Fri Jul 23 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.12.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Wed Jan 27 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.12.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rust-1.55.0-1.fc33 (FEDORA-2021-674bf31f8f) The Rust Programming Language -------------------------------------------------------------------------------- Update Information: Update to Rust 1.55.0: - Cargo deduplicates compiler errors - Faster, more correct float parsing - `std::io::ErrorKind` variants updated - Open range patterns added - Stabilized APIs See the [blog post](https://blog.rust- lang.org/2021/09/09/Rust-1.55.0.html) and [release notes](https://github.com/rust- lang/rust/blob/master/RELEASES.md#version-55-2021-09-09) for more details. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 9 2021 Josh Stone <jistone@xxxxxxxxxx> - 1.55.0-1 - Update to 1.55.0. - Use llvm-ranlib for wasm rlibs; Fixes rhbz#2002612 * Tue Aug 24 2021 Josh Stone <jistone@xxxxxxxxxx> - 1.54.0-2 - Build with LLVM 12 on Fedora 35+ -------------------------------------------------------------------------------- ================================================================================ squashfs-tools-4.5-3.20210913gite048580.fc33 (FEDORA-2021-9fb6da134f) Utility for the creation of squashfs filesystems -------------------------------------------------------------------------------- Update Information: Fix additional write outside destination directory exploit ---- 4.5 release (includes security fix for CVE-2021-40153) -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 13 2021 Bruno Wolff III <bruno@xxxxxxxx> - 4.5-3.20210913gite048580 - Fix bug 2003701 (additional write outside destination directory exploit) * Mon Jul 26 2021 Bruno Wolff III <bruno@xxxxxxxx> - 4.5-2 - Fix for sparse fragment bug 1985561 * Fri Jul 23 2021 Bruno Wolff III <bruno@xxxxxxxx> - 4.5-1 - First crack at 4.5 release - Man pages still need significant work * Wed Jan 27 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.4-5.git1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Sat Nov 14 2020 Bruno Wolff III <bruno@xxxxxxxx> - 4.4-4.git1 - Gating tests failed and unable to rerun them * Wed Nov 11 2020 Bruno Wolff III <bruno@xxxxxxxx> - 4.4-3.git1 - New upstream release with a minor fix -------------------------------------------------------------------------------- References: [ 1 ] Bug #1998621 - CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing outside of destination https://bugzilla.redhat.com/show_bug.cgi?id=1998621 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/test@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
