The following Fedora 34 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-61c487f241 redis-6.2.6-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-d894ca87dc xstream-1.4.18-2.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-eee8b7514f mediawiki-1.35.4-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-55f3c0b6f1 udisks2-2.9.4-1.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-05feb8a8b2 rt-4.4.5-4.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-de5e6c60c2 squid-5.2-1.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-80bbe7def0 xen-4.14.3-2.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4b201d15e6 flatpak-1.10.5-1.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-7cc30bb3dd libopenmpt-0.5.12-1.fc34 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-0ab8f6a19a fail2ban-0.11.2-9.fc34 The following Fedora 34 Critical Path updates have yet to be approved: Age URL 187 https://bodhi.fedoraproject.org/updates/FEDORA-2021-1300e131b6 ddpt-0.96-4.fc34 ledmon-0.95-4.fc34 libgpod-0.8.3-38.fc34 libzfcphbaapi-2.2.0-12.fc34 lsvpd-1.7.11-6.fc34 sg3_utils-1.46-1.fc34 udisks-1.0.5-18.fc34 55 https://bodhi.fedoraproject.org/updates/FEDORA-2021-10b1f23f5e iio-sensor-proxy-3.3-1.fc34 libgudev-237-1.fc34 34 https://bodhi.fedoraproject.org/updates/FEDORA-2021-91081360ab libtirpc-1.3.2-0.rc1.fc34 13 https://bodhi.fedoraproject.org/updates/FEDORA-2021-fa73464e97 rdma-core-37.0-1.fc34 12 https://bodhi.fedoraproject.org/updates/FEDORA-2021-bba60cc45a kexec-tools-2.0.22-4.fc34 9 https://bodhi.fedoraproject.org/updates/FEDORA-2021-9f40bdf3be openldap-2.4.57-6.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-55f3c0b6f1 udisks2-2.9.4-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-d7371cd154 pungi-4.3.0-2.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2021-379eb8a86c qt5-qtwayland-5.15.2-14.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-1854bd6a04 ostree-2021.5-2.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-a66e5cba93 libxmlb-0.3.3-1.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-80817d4fa0 libgusb-0.3.8-1.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-fce2665a95 evolution-3.40.4-2.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2021-6c2c811a05 gnome-remote-desktop-40.2-1.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-65eaf25c77 geoclue2-2.5.7-6.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2021-6ebbda1d9f fwupd-1.7.0-1.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4b201d15e6 flatpak-1.10.5-1.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4df4a5f5d1 bc-1.07.1-14.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-549a8efd8c pam-1.5.1-7.fc34 2 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e2a6de2af2 tzdata-2021c-1.fc34 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-4fb4d6f4af perl-Encode-3.15-462.fc34 0 https://bodhi.fedoraproject.org/updates/FEDORA-2021-e24d9993f2 koji-1.26.1-1.fc34 The following builds have been pushed to Fedora 34 updates-testing containerd-1.5.7-1.fc34 golang-github-djherbis-atime-1.1.0-2.fc34 golang-github-fsnotify-1.5.1-1.fc34 golang-github-tdewolff-minify-2.9.22-2.fc34 golang-github-tdewolff-parse-2.5.22-1.fc34 grafana-7.5.11-1.fc34 kernel-5.14.11-200.fc34 libical-3.0.11-1.fc34 libinput-1.19.1-1.fc34 linux-system-roles-1.9.0-1.fc34 mkvtoolnix-62.0.0-1.fc34 moby-engine-20.10.9-1.fc34 php-pear-PHP-CodeSniffer-3.6.1-1.fc34 php-ramsey-collection-1.2.2-1.fc34 proxysql-2.3.2-1.fc34 sane-airscan-0.99.27-1.fc34 solaar-1.0.7-1.fc34 system-config-printer-1.5.15-5.fc34 texstudio-4.0.1-1.fc34 transfig-3.2.8b-4.fc34 video-downloader-0.8.10-1.fc34 xfig-3.2.8b-1.fc34 Details about builds: ================================================================================ containerd-1.5.7-1.fc34 (FEDORA-2021-df975338d4) Open and reliable container runtime -------------------------------------------------------------------------------- Update Information: Security fixes for moby-engine and containerd containerd: - fixes CVE-2021-41103 - Fix insufficiently restricted permissions on container root and plugin directories - update to upstream 1.5.7 moby-engine: - fixes CVE-2021-41092, CVE-2021-41089 and CVE-2021-41091 - patches seccomp policy to fix clone3() issue - update to upstream 20.10.9 -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 10 2021 Olivier Lemasle <o.lemasle@xxxxxxxxx> - 1.5.7-1 - Update to upstream 1.5.7 (fixes rhbz#2009149) - Fixes CVE-2021-41103 (fixes rhbz#2011014, rhbz#2011007) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2011007 - CVE-2021-41103 containerd: insufficiently restricted permissions on container root and plugin directories https://bugzilla.redhat.com/show_bug.cgi?id=2011007 -------------------------------------------------------------------------------- ================================================================================ golang-github-djherbis-atime-1.1.0-2.fc34 (FEDORA-2021-df81a82718) Access Times for files -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1995418 - golang-github-fsnotify-1.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1995418 [ 2 ] Bug #2003312 - golang-github-tdewolff-minify-2.9.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=2003312 [ 3 ] Bug #2003415 - Review Request: golang-github-djherbis-atime - Access Times for files https://bugzilla.redhat.com/show_bug.cgi?id=2003415 [ 4 ] Bug #2010535 - golang-github-tdewolff-parse-2.5.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=2010535 -------------------------------------------------------------------------------- ================================================================================ golang-github-fsnotify-1.5.1-1.fc34 (FEDORA-2021-df81a82718) Cross-platform file system notifications for Go -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Sun Aug 29 2021 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 1.5.1-1 - Update to latest upstream release 1.5.1 (closes rhbz#1995418) * Thu Jul 22 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.4.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1995418 - golang-github-fsnotify-1.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1995418 [ 2 ] Bug #2003312 - golang-github-tdewolff-minify-2.9.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=2003312 [ 3 ] Bug #2003415 - Review Request: golang-github-djherbis-atime - Access Times for files https://bugzilla.redhat.com/show_bug.cgi?id=2003415 [ 4 ] Bug #2010535 - golang-github-tdewolff-parse-2.5.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=2010535 -------------------------------------------------------------------------------- ================================================================================ golang-github-tdewolff-minify-2.9.22-2.fc34 (FEDORA-2021-df81a82718) Go minifiers for web formats -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 9 2021 Elliott Sales de Andrade <quantum.analyst@xxxxxxxxx> 2.9.22-2 - Backport patch for latest parse * Sat Oct 9 2021 Elliott Sales de Andrade <quantum.analyst@xxxxxxxxx> 2.9.22-1 - Update to latest version (#2003312) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1995418 - golang-github-fsnotify-1.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1995418 [ 2 ] Bug #2003312 - golang-github-tdewolff-minify-2.9.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=2003312 [ 3 ] Bug #2003415 - Review Request: golang-github-djherbis-atime - Access Times for files https://bugzilla.redhat.com/show_bug.cgi?id=2003415 [ 4 ] Bug #2010535 - golang-github-tdewolff-parse-2.5.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=2010535 -------------------------------------------------------------------------------- ================================================================================ golang-github-tdewolff-parse-2.5.22-1.fc34 (FEDORA-2021-df81a82718) Go parsers for web formats -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 9 2021 Elliott Sales de Andrade <quantum.analyst@xxxxxxxxx> 2.5.22-1 - Update to latest version (#2010535) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1995418 - golang-github-fsnotify-1.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1995418 [ 2 ] Bug #2003312 - golang-github-tdewolff-minify-2.9.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=2003312 [ 3 ] Bug #2003415 - Review Request: golang-github-djherbis-atime - Access Times for files https://bugzilla.redhat.com/show_bug.cgi?id=2003415 [ 4 ] Bug #2010535 - golang-github-tdewolff-parse-2.5.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=2010535 -------------------------------------------------------------------------------- ================================================================================ grafana-7.5.11-1.fc34 (FEDORA-2021-dd83dc8b0b) Metrics dashboard and graph editor -------------------------------------------------------------------------------- Update Information: * upgrade to upstream 7.5.11 * security fix for CVE-2021-39226. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Andreas Gerstmayr <agerstmayr@xxxxxxxxxx> 7.5.11-1 - update to 7.5.11 tagged upstream community sources, see CHANGELOG - resolve CVE-2021-39226 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2011063 - CVE-2021-39226 grafana: Snapshot authentication bypass https://bugzilla.redhat.com/show_bug.cgi?id=2011063 -------------------------------------------------------------------------------- ================================================================================ kernel-5.14.11-200.fc34 (FEDORA-2021-385f3aebfd) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 5.14.11 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 10 2021 Justin M. Forbes <jforbes@xxxxxxxxxxxxxxxxx> [5.14.11-0] - Linux v5.14.11 -------------------------------------------------------------------------------- ================================================================================ libical-3.0.11-1.fc34 (FEDORA-2021-b711f60c72) Reference implementation of the iCalendar data type and serialization format -------------------------------------------------------------------------------- Update Information: Update to 3.0.11 upstream release. Included changes: * Fix icalrecur_iterator_set_start() for hourly, minutely, and secondly recurrences * Fix build for Berkeley DB version greater than 5 * Fix vcal for some architectures (like aarch64, ppc64le and s390x) * Fix memory leaks in vcal * Prevent crash when looking for tzid in initialize_rscale * Adjust libdir and includedir in generated pkgconfig files * Built-in timezones updated to tzdata2021c -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Milan Crha <mcrha@xxxxxxxxxx> - 3.0.11-1 - Update to 3.0.11 -------------------------------------------------------------------------------- ================================================================================ libinput-1.19.1-1.fc34 (FEDORA-2021-4313e17bda) Input device library -------------------------------------------------------------------------------- Update Information: libinput 1.19.1, fixes some issues with built-in USB touchpads and the usual set of new quirks and fixes -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 29 2021 Peter Hutterer <peter.hutterer@xxxxxxxxxx> - 1.19.1-1 - libinput 1.19.1 * Wed Sep 15 2021 Peter Hutterer <peter.hutterer@xxxxxxxxxx> - 1.19.0-1 - libinput 1.19.0 * Wed Sep 1 2021 Peter Hutterer <peter.hutterer@xxxxxxxxxx> - 1.18.901-1 - libinput 1.18.901 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2004978 - Disabling the touchpad also disables the trackpoint (Thinkpad X1 tablet 1st gen) https://bugzilla.redhat.com/show_bug.cgi?id=2004978 -------------------------------------------------------------------------------- ================================================================================ linux-system-roles-1.9.0-1.fc34 (FEDORA-2021-006433993e) Set of interfaces for unified system management -------------------------------------------------------------------------------- Update Information: - Support ansible-core and improve roles: - selinux: Add support for Rocky Linux 8, fix ansible_distribution_major_version - timesync: Support ansible-core, use ansible_managed | comment - kdump: Support ansible-core, use ansible_managed | comment - network: Support ansible-core; deprecate RHEL 9 in readme; validate that ipv6_disabled is conflicting with other settings; specify PCI address to configure profile - adds match and path settings) - storage: Support ansible-core, add skip checks feature to speed up the tests - logging: Support ansible-core, add the `uid` option for elasticsearch, improve performance, use ansible_manged | comment Resolves rhbz#1990490 - ssh: Use ansible_manged | comment - sshd: Use ansible_managed | comment - ha_cluster: Support ansible-core, fix password_hash salt length - vpn: Support ansible-core, use wait_for_connection instead of wait_for with ssh - ansible_managed | comment BZs: Resolves rhbz#2006230 (EL9) Resolves rhbz#2006231 (EL8) Resolves rhbz#2006233 (EL7) - untar the collection tarballs and copy the files - Add vendoring code for rhel / centos - selinux: selinux, seboolean, seport, selogin, sefcontext - storage: mount - vpn: ipaddr Resolves rhbz#2006076 (EL9) Resolves rhbz#2006081 (EL8) - logging - Update the certificates copy tasks Resolves rhbz#1996777 (EL9) Resolves rhbz#1994580 (EL8) - storage - revert the dm-vdo workaround fix for vdo testing Resolves rhbz#1978488 (EL9) Resolves rhbz#1991141 (EL8) -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 6 2021 Sergei Petrosian <spetrosi@xxxxxxxxxx> - 1.9.0-1 - Support ansible-core and improve roles: - selinux: Add support for Rocky Linux 8, fix ansible_distribution_major_version - timesync: Support ansible-core, use ansible_managed | comment - kdump: Support ansible-core, use ansible_managed | comment - network: Support ansible-core; deprecate RHEL 9 in readme; validate that ipv6_disabled is conflicting with other settings; specify PCI address to configure profile - adds match and path settings) - storage: Support ansible-core, add skip checks feature to speed up the tests - logging: Support ansible-core, add the `uid` option for elasticsearch, improve performance, use ansible_manged | comment Resolves rhbz#1990490 - ssh: Use ansible_manged | comment - sshd: Use ansible_managed | comment - ha_cluster: Support ansible-core, fix password_hash salt length - vpn: Support ansible-core, use wait_for_connection instead of wait_for with ssh - ansible_managed | comment BZs: Resolves rhbz#2006230 (EL9) Resolves rhbz#2006231 (EL8) Resolves rhbz#2006233 (EL7) * Wed Sep 22 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.8.2-3 - untar the collection tarballs and copy the files * Wed Sep 22 2021 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.8.2-2 - Add vendoring code for rhel / centos - selinux: selinux, seboolean, seport, selogin, sefcontext - storage: mount - vpn: ipaddr Resolves rhbz#2006076 (EL9) Resolves rhbz#2006081 (EL8) * Thu Aug 26 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.8.2-1 - logging - Update the certificates copy tasks Resolves rhbz#1996777 (EL9) Resolves rhbz#1994580 (EL8) - storage - revert the dm-vdo workaround fix for vdo testing Resolves rhbz#1978488 (EL9) Resolves rhbz#1991141 (EL8) * Fri Aug 20 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.8.1-2 - selinux - tag tests_selinux_disabled.yml with tests::avc Resolves rhbz#1996315 (EL9) Resolves rhbz#1996317 (EL8) * Mon Aug 16 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.8.1-1 - metrics - the bpftrace role does not properly configure bpftrace agent Resolves rhbz#1994180 (EL9) Resolves rhbz#1993240 (EL8) * Thu Aug 12 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.8.0-1 - drop support for Ansible 2.8 - min_ansible_version is now 2.9 Resolves rhbz#1989197 (EL9) Resolves rhbz#1989199 (EL8) - sshd - fix rhel6 support - failed to validate: error:Missing Match criteria for all Bad Match condition Resolves rhbz#1991598 (EL9) Resolves rhbz#1990947 (EL8) * Fri Aug 6 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.7.5-1 - storage - tests_create_lvmvdo_then_remove fails - Module dm-vdo not found Resolves rhbz#1991141 (EL8) Resolves rhbz#1991062 (EL9) - storage - Get syntax errors in tests_lvm_errors.yml Resolves rhbz#1990793 (EL8) Resolves rhbz#1991142 (EL9) * Fri Aug 6 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.7.4-1 - logging, certificate - Instead of the archive module, use "tar" command for backup. Resolves rhbz#1984182 (EL9) Resolves rhbz#1987096 (EL8) - logging - Add a support for list value to server_host in the elasticsearch output Resolves rhbz#1986460 (EL9) Resolves rhbz#1986463 (EL8) - logging - tests_relp.yml; Can't detect any of the required Python libraries cryptography (>= 1.2.3) or PyOpenSSL (>= 0.6) Resolves rhbz#1989962 (EL9) Resolves rhbz#1990142 (EL8) * Tue Aug 3 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.7.3-1 - storage - tag tests that use NVME and SCSI Resolves rhbz#1989211 (EL9) Resolves rhbz#1989638 (EL8) * Tue Aug 3 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.7.2-1 - sshd - support for rhel9 managed hosts Resolves rhbz#1989221 (EL9) Resolves rhbz#1989638 (EL8) * Thu Jul 29 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.7.1-1 - network - tests_provider_nm.yml fails with an error: Failure in test 'I can manage a veth interface with NM after I managed it with initscripts. Resolves rhbz#1935919 - network - _initscripts tests fail because "No package network-scripts available." Resolves rhbz#1935916 - network - Test tests_bond_initscripts.yml failed to create interface Resolves rhbz#1980870 - storage - covscan error - DEADCODE - vdopool if create_vdo else parent Resolves rhbz#1985571 (EL9) Resolves rhbz#1985572 (EL8) - network - network: tests_bond_initscripts.yml leaves behind unusable resolv.conf in CI Resolves rhbz#1915017 * Wed Jul 28 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.7.0-1 - network - Skip tests on RHEL9 that use hostapd Resolves rhbz#1945348 - network - Fix the bond test on DHCP Resolves rhbz#1918252 - certificate, logging - Use 'tar' command instead of archive module Resolves rhbz#1984182 (EL9) Resolves rhbz#1987096 (EL8) - kernel_settings - Disable bootloader testing on EL9 Resolves rhbz#1944599 - logging - Add a support for list value to server_host in the elasticsearch output Resolves rhbz#1986460 (EL9) Resolves rhbz#1986463 (EL8) - storage - Add support for percentage-based volume sizes Resolves rhbz#1984583 (EL9) Resolves rhbz#1894642 (EL8) - storage -storage_test_actual_size != storage_test_requested_size observed with tests_lvm_auto_size_cap.yml Resolves rhbz#1986284 (EL8) * Fri Jul 23 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.6.2-1 - Error: device becoming unmanaged and pytest not reproducible in tests_integration_pytest.yml Resolves rhbz#1985382 (EL9) Resolves rhbz#1932699 (EL8) - EPEL yum repository configuration for tests Rebasing to latest picks up this fix - see rhel7 bz1980439 - connections: workaround DeprecationWarning for NM.SettingEthtool.set_feature() Rebasing to latest picks up this fix * Thu Jul 22 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.6.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Tue Jul 20 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.6.1-1 - metrics - Grafana dashboard not working after metrics role run unless services manually restarted Resolves rhbz#1984150 (EL9) Resolves rhbz#1978357 (EL8) * Thu Jul 15 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.6.0-1 - ha_cluster - add pacemaker cluster properties configuration Resolves rhbz#1982913 (EL8) Resolves rhbz#1982906 (EL9) * Thu Jul 15 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.5.0-1 - crypto_policies - rename 'policy modules' to 'subpolicies' Resolves rhbz#1982896 (EL9) Resolves rhbz#1982897 (EL8) * Thu Jul 15 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.4.2-1 - storage - relabel doesn't support - Fixed volume relabeling Resolves rhbz#1876315 (EL8) Resolves rhbz#1982841 (EL9) * Fri Jul 9 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.4.1-1 - network - Re-running the network system role results in "changed: true" when nothing has actually changed Resolves rhbz#1943384 - network - Test tests_bond_initscripts.yml failed to create interface Resolves rhbz#1918210 * Thu Jul 8 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.4.0-1 - storage - LVMVDO support Resolves rhbz#1882475 Resolves rhbz#1978488 * Wed Jun 23 2021 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.3.0-1 - ha_cluster - add pacemaker resources configuration Resolves rhbz#1963283 - ha_cluster - code cleanup Resolves rhbz#1970666 - Postfix RHEL system role README.md missing variables under the "Role Variables" section Resolves rhbz#1961858 - logging README.html examples are rendered incorrectly Resolves rhbz#1962374 - make postfix role idempotent - round 2 Resolves rhbz#1960375 - selinux task for semanage says Fedora in name but also runs on RHEL/CentOS 8 Resolves rhbz#1966681 - metrics role task to enable logging for targeted hosts not working Resolves rhbz#1967335 - network - Add 'auto_gateway' option Resolves rhbz#1897565 - network - Only show stderr_lines by default Resolves rhbz#1970666 - storage - LVMVDO support Resolves rhbz#1882475 - storage - fix several linter issues Resolves rhbz#1970666 - ssh - Fix variable precedence when invoked through roles Resolves rhbz#1966711 - ssh - Update configuration options list for OpenSSH 8.6 Resolves rhbz#1970666 - sshd - Fix variable precedence when invoked through roles Resolves rhbz#1966711 - sshd - Update configuration options list for OpenSSH 8.6 Resolves rhbz#1970666 - sshd - support for appending a snippet to configuration file Resolves rhbz#1970642 - timesync - add NTS support Resolves rhbz#1970664 - timesync - rebase to latest Resolves rhbz#1970666 - nbde_client - rebase to latest Resolves rhbz#1970666 -------------------------------------------------------------------------------- ================================================================================ mkvtoolnix-62.0.0-1.fc34 (FEDORA-2021-369c1be090) Matroska container manipulation utilities -------------------------------------------------------------------------------- Update Information: # Version 62.0.0 "Apollo" 2021-10-10 ## New features and enhancements * all: IETF BCP 47/TFC 5646 language tags: all ISO 639 languages are now available, even the ones that aren't of types "Constructed", "Living" or "Special". * mkvmerge, mkvpropedit: chapters: both programs will now write elements set to their default value, too (e.g. the legacy language element if it's set to `eng`). This is done to be more consistent with how MKVToolNix GUI writes chapters. Implements #3210. * MKVToolNix GUI: multiplexer: when adding new files as attachments the GUI checks if there are other attachments with the same name. If so, the GUI would ask whether to skip the affected files or add them anyway. There's now an option in the preferences to always skip such files, and it's enabled by default. Implements #3213. * MKVToolNix GUI: chapter editor: removed the support for explicitly setting the legacy country elements. Instead the legacy country elements are derived from the region parts of the IETF BCP 47 languages. Part of the implementation of #3193. ## Bug fixes * mkvmerge: fixed a crash when splitting by chapters is enabled but there are no chapters at all. Part of the fix of #3198. * mkvmerge: the error message when trying to split by a chapter number that doesn't exist contained the wrong number of chapters that actually do exist. Part of the fix of #3198. * mkvmerge: AVC ES parser: fixed mkvmerge aborting due to uncaught exception when encountering bad SPS data. Part of the fix of #3176. * mkvmerge: AVC/H.264 parser: re-added the hack `--engage all_i_slices_are_key_frames` which was accidentally removed in release v61. * mkvmerge: AVI reader: fixed a crash trying to allocate too big of a memory chunk due to an integer overflows in check conditions. Part of the fix of #3176. * mkvmerge: HEVC ES parser: fixed another issue with frame type recognition. Certain frames were marked as B frames/discardable on the container level even though they could be reference pictures. Now only SLNR pictures (sub-layer non- reference) are marked that way. Fixes #3192. * mkvmerge: HEVC ES reader: improved file content detection for HEVC ES files with wrong file name extensions (e.g. `.mkv`), which fixes them being mis-detected as something else, e.g. DTS. Fixes #3201. * mkvmerge: HEVC ES parser: "end of sequence" NALUs are kept now, and no superfluous flushing will be done when one is found. This prevents splitting NALUs into two different Matroska blocks when they should really be part of a single one, also causing problems with erroneous timestamps. Mostly affects DoVi NALUs. Fixes #3202. * mkvmerge: Matroska reader, TrueHD: mkvmerge will now probe much more TrueHD frames trying to find the first sync frame. This fixes track detection in situations when a TrueHD doesn't start with a sync frame, e.g. when the source file's the result of splitting between sync frames. * mkvmerge, MKVToolNix GUI's chapter editor: IETF BCP 47/RFC 5646 language tags: when reading chapters from MPLS playlist files, the `ChapLanguageIETF` element will now be set to the configured default chapter language, not just the legacy `ChapterLanguage` element. Part of the fix of #3193. * mkvmerge, mkvpropedit, MKVToolNix GUI's chapter editor: IETF BCP 47 elements will now always be created before writing chapters unless IETF BCP 47 elements are disabled. Part of the fix of #3193. * mkvmerge, mkvpropedit, MKVToolNix GUI's chapter editor: when a chapter display element contains legacy language & country elements but no IETF BCP 47 elements and IETF BCP 47 elements aren't disabled, the IETF BCP 47 elements created will contain the region from the legacy element. Part of the fix of #3193. * mkvmerge, mkvpropedit, MKVToolNix GUI's chapter editor: Legacy country elements are now created when IETF BCP 47 elements are present & contain a region code allowed in legacy country elements. Part of the fix of #3193. ## Build system changes * The `tools` sub-directory is now always built. The corresponding `configure` option `--with-tools` has been removed. The `install` target still doesn't install them, though. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Dominik Mierzejewski <rpm@xxxxxxxxxxxxxx> - 62.0.0-1 - update to 62.0.0 (#2012572) - drop removed configure option -------------------------------------------------------------------------------- References: [ 1 ] Bug #2012572 - mkvtoolnix-62.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2012572 -------------------------------------------------------------------------------- ================================================================================ moby-engine-20.10.9-1.fc34 (FEDORA-2021-df975338d4) The open-source application container engine -------------------------------------------------------------------------------- Update Information: Security fixes for moby-engine and containerd containerd: - fixes CVE-2021-41103 - Fix insufficiently restricted permissions on container root and plugin directories - update to upstream 1.5.7 moby-engine: - fixes CVE-2021-41092, CVE-2021-41089 and CVE-2021-41091 - patches seccomp policy to fix clone3() issue - update to upstream 20.10.9 -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 8 2021 Maxwell G <gotmax@e.email> - 20.10.9-1 - Update to 20.10.9 (fixes rhbz#2010508) - Patch seccomp policy to fix clone3() issue (fixes rhbz#2011523 and rhbz#1988199) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2011007 - CVE-2021-41103 containerd: insufficiently restricted permissions on container root and plugin directories https://bugzilla.redhat.com/show_bug.cgi?id=2011007 -------------------------------------------------------------------------------- ================================================================================ php-pear-PHP-CodeSniffer-3.6.1-1.fc34 (FEDORA-2021-5fc5914ecb) PHP coding standards enforcement tool -------------------------------------------------------------------------------- Update Information: **Version 3.6.1** - PHPCS annotations can now be specified using hash-style comments - Previously, only slash-style and block-style comments could be used to do things like disable errors - Thanks to Juliette Reinders Folmer for the patch - Fixed an issue where some sniffs would not run on PHP files that only used the short echo tag - The following sniffs were affected: - Generic.Files.ExecutableFile - Generic.Files.LowercasedFilename - Generic.Files.LineEndings - Generic.Files.EndFileNewline - Generic.Files.EndFileNoNewline - Generic.PHP.ClosingPHPTag - Generic.PHP.Syntax - Generic.VersionControl.GitMergeConflict - Generic.WhiteSpace.DisallowSpaceIndent - Generic.WhiteSpace.DisallowTabIndent - Thanks to Juliette Reinders Folmer for the patch - The new PHP 8.1 tokenisation for ampersands has been reverted to use the existing PHP_CodeSniffer method - The PHP 8.1 tokens T_AMPERSAND_FOLLOWED_BY_VAR_OR_VARARG and T_AMPERSAND_NOT_FOLLOWED_BY_VAR_OR_VARARG are unsued - Ampersands continue to be tokenized as T_BITWISE_AND for all PHP versions - Thanks to Juliette Reinders Folmer and Anna Filina for the patch - File::getMethodParameters() no longer incorrectly returns argument attributes in the type hint array index - A new has_attributes array index is available and set to TRUE if the argument has attributes defined - Thanks to Juliette Reinders Folmer for the patch - Generic.NamingConventions.ConstructorName no longer throws deprecation notices on PHP 8.1 - Thanks to Juliette Reinders Folmer for the patch - Squiz.Commenting.BlockComment now correctly applies rules for block comments after a short echo tag - Thanks to Juliette Reinders Folmer for the patch - Fixed false positives when using attributes in the following sniffs: - PEAR.Commenting.FunctionComment - Squiz.Commenting.InlineComment - Squiz.Commenting.BlockComment - Squiz.Commenting.VariableComment - Squiz.WhiteSpace.MemberVarSpacing - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3294 : Bug in attribute tokenization when content contains PHP end token or attribute closer on new line - Thanks to Alessandro Chitolina for the patch - Thanks to Juliette Reinders Folmer for the tests - Fixed bug #3296 : PSR2.ControlStructures.SwitchDeclaration takes phpcs:ignore as content of case body - Fixed bug #3297 : PSR2.ControlStructures.SwitchDeclaration.TerminatingComment does not handle try/finally blocks - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3302 : PHP 8.0 | Tokenizer/PHP: bugfix for union types using namespace operator - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3303 : findStartOfStatement() doesn't work with T_OPEN_TAG_WITH_ECHO - Fixed bug #3316 : Arrow function not tokenized correctly when using null in union type - Fixed bug #3317 : Problem with how phpcs handles ignored files when running in parallel - Thanks to Emil Andersson for the patch - Fixed bug #3324 : PHPCS hangs processing some nested arrow functions inside a function call - Fixed bug #3326 : Generic.Formatting.MultipleStatementAlignment error with const DEFAULT - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3333 : Squiz.Objects.ObjectInstantiation: null coalesce operators are not recognized as assignment - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3340 : Ensure interface and trait names are always tokenized as T_STRING - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3342 : PSR12/Squiz/PEAR standards all error on promoted properties with docblocks - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3345 : IF statement with no braces and double catch turned into syntax error by auto-fixer - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3352 : PSR2.ControlStructures.SwitchDeclaration can remove comments on the same line as the case statement while fixing - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3357 : Generic.Functions.OpeningFunctionBraceBsdAllman removes return type when additional lines are present - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3362 : Generic.WhiteSpace.ScopeIndent false positive for arrow functions inside arrays - Fixed bug #3384 : Squiz.Commenting.FileComment.SpacingAfterComment false positive on empty file - Fixed bug #3394 : Fix PHP 8.1 auto_detect_line_endings deprecation notice - Fixed bug #3400 : PHP 8.1: prevent deprecation notices about missing return types - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3424 : PHPCS fails when using PHP 8 Constructor property promotion with attributes - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3425 : PHP 8.1 | Runner::processChildProcs(): fix passing null to non-nullable bug - Thanks to Juliette Reinders Folmer for the patch - Fixed bug #3445 : Nullable parameter after attribute incorrectly tokenized as ternary operator - Thanks to Juliette Reinders Folmer for the patch -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Remi Collet <remi@xxxxxxxxxxxx> - 3.6.1-1 - update to 3.6.1 -------------------------------------------------------------------------------- ================================================================================ php-ramsey-collection-1.2.2-1.fc34 (FEDORA-2021-7e5ac5b41a) Library for representing and manipulating collections -------------------------------------------------------------------------------- Update Information: **Version 1.2.2** - 2021-10-10 Fixed * Merging of sets now excludes duplicates, since a set does not allow duplicate values. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Remi Collet <remi@xxxxxxxxxxxx> - 1.2.2-1 - update to 1.2.2 -------------------------------------------------------------------------------- ================================================================================ proxysql-2.3.2-1.fc34 (FEDORA-2021-ebc87faa7f) A high-performance MySQL proxy -------------------------------------------------------------------------------- Update Information: # Release notes: [v2.3.2](https://github.com/sysown/proxysql/releases/tag/v2.3.2) -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 24 2021 Marek Kulik <mkulik@xxxxxxxxxx> - 2.3.2-1 - Updated to ProxySQL 2.3.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2001477 - RPMLint issues https://bugzilla.redhat.com/show_bug.cgi?id=2001477 [ 2 ] Bug #2007046 - proxysql-2.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2007046 -------------------------------------------------------------------------------- ================================================================================ sane-airscan-0.99.27-1.fc34 (FEDORA-2021-bc807603e1) SANE backend for AirScan (eSCL) and WSD document scanners -------------------------------------------------------------------------------- Update Information: 2012253 - sane-airscan-0.99.27 is available -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Zdenek Dohnal <zdohnal@xxxxxxxxxx> - 0.99.27-1 - 2012253 - sane-airscan-0.99.27 is available * Fri Jul 23 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.99.26-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2012253 - sane-airscan-0.99.27 is available https://bugzilla.redhat.com/show_bug.cgi?id=2012253 -------------------------------------------------------------------------------- ================================================================================ solaar-1.0.7-1.fc34 (FEDORA-2021-ade7d8afa4) Device manager for a wide range of Logitech devices -------------------------------------------------------------------------------- Update Information: * Don't use `time_ns` so as not to require Python 3.7 * Correctly determine setting box in `change_click` method * Handle fake Nano connection notifications * Lock on actual handle, not just on handle number * Mark Nano receiver C52F as not unpairing * Upgrade pairing/unpairing documentation * Don't signal status change when battery changes from None to None. * Add Japanese translation * Use first word of name for code name if no other code name available. * Better determination of when to add SW ID. * Check for more HID++ feature request failing. * Fix bug with `new_fn_inversion` setting. * Use correct device number for directly connected devices * Add debug message when candidate device found * Update Polish, Taiwanese, and Brazilian Portugese translations * Add MouseProcess a rule condition like Process but for the window under the mouse * Add parameters for binary settings to support prefixes * Add locks to serialize requests to devices * Fix bug when reprog key requests returns None * Fix bug for empty process name and class * Rules can now trigger on both pressing and releasing a diverted key * Upgrade mouse gestures to allow sequences of movements * Fix gkeys diversion faked read * Add support for Logitech g pro x superlight receiver * Convert HID++ 2.0 device kinds to enhanced HID++ 1.0 device kinds * Update about window, bug report templates, and supported kernels. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Dominik Mierzejewski <rpm@xxxxxxxxxxxxxx> - 1.0.7-1 - update to 1.0.7 (#2009721) - fix exception when disabling "MX Keys" (#2003483) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2003483 - [abrt] solaar: _get_failed_spinner_control(): config_panel.py:535:_get_failed_spinner_control:AttributeError: 'VBox' object has no attribute '_failed' https://bugzilla.redhat.com/show_bug.cgi?id=2003483 [ 2 ] Bug #2009721 - solaar-1.0.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=2009721 -------------------------------------------------------------------------------- ================================================================================ system-config-printer-1.5.15-5.fc34 (FEDORA-2021-dbada15814) A printer administration tool -------------------------------------------------------------------------------- Update Information: fix issues reported by Coverity scan add a weak dependency on PackageKit for scp-libs -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 6 2021 Zdenek Dohnal <zdohnal@xxxxxxxxxx> - 1.5.15-5 - fix issues reported by Coverity scan - add a weak dependency on PackageKit for scp-libs * Fri Jul 23 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.5.15-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Fri Jun 4 2021 Python Maint <python-maint@xxxxxxxxxx> - 1.5.15-3 - Rebuilt for Python 3.10 -------------------------------------------------------------------------------- ================================================================================ texstudio-4.0.1-1.fc34 (FEDORA-2021-03f736bc02) A feature-rich editor for LaTeX documents -------------------------------------------------------------------------------- Update Information: - update to 4.0.1 - https://raw.githubusercontent.com/texstudio- org/texstudio/master/utilities/manual/CHANGELOG.txt -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Johannes Lips <hannes@xxxxxxxxxxxxxxxxx> 4.0.1-1 - Update to latest upstream release 4.0.1 -------------------------------------------------------------------------------- ================================================================================ transfig-3.2.8b-4.fc34 (FEDORA-2021-b5a2b92d1f) Utility for converting FIG files (made by xfig) to other formats -------------------------------------------------------------------------------- Update Information: - xfig: new upstream bugfix release 3.2.8b - transfig: fix eps images embedded into a fig file being misplaced -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Hans de Goede <hdegoede@xxxxxxxxxx> - 1:3.2.8b-4 - Add patch from upstream git fixing eps images embedded into a fig file being misplaced * Wed Sep 29 2021 Ondrej Dubaj <odubaj@xxxxxxxxxx> - 1:3.2.8b-3 - Updated to version 3.2.8b * Fri Jul 23 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1:3.2.8a-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ video-downloader-0.8.10-1.fc34 (FEDORA-2021-94c1dbffb1) Download videos from websites like YouTube and many others -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 28 2021 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.8.10-1 - build(update): 0.8.10 * Mon Sep 27 2021 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.8.9-1 - build(update): 0.8.9 * Mon Sep 27 2021 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.8.8-2 - test: Disable upstream tests. Basically they are the same as Fedora doing for AppData. * Mon Sep 27 2021 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.8.8-1 - build(update): 0.8.8 -------------------------------------------------------------------------------- ================================================================================ xfig-3.2.8b-1.fc34 (FEDORA-2021-b5a2b92d1f) An X Window System tool for drawing basic vector graphics -------------------------------------------------------------------------------- Update Information: - xfig: new upstream bugfix release 3.2.8b - transfig: fix eps images embedded into a fig file being misplaced -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2021 Hans de Goede <hdegoede@xxxxxxxxxx> - 3.2.8b-1 - New upstream release 3.2.8b * Fri Jul 23 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.2.8a-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/test@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
