The following Fedora 34 Security updates need testing: Age URL 67 https://bodhi.fedoraproject.org/updates/FEDORA-2022-6aba96e1b8 radare2-5.6.4-1.fc34 19 https://bodhi.fedoraproject.org/updates/FEDORA-2022-63de6726ce libinput-1.19.4-1.fc34 18 https://bodhi.fedoraproject.org/updates/FEDORA-2022-5e637f6cc6 podman-3.4.7-1.fc34 13 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b0a47f8060 freerdp-2.7.0-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-fc5776b142 curl-7.76.1-15.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-d9d630891d blender-2.93.8-2.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-f624aad735 libxml2-2.9.14-1.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-abbb9d5575 seamonkey-2.53.12-1.fc34 5 https://bodhi.fedoraproject.org/updates/FEDORA-2022-857d1f7050 mingw-SDL2_ttf-2.0.18-2.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-5e45671294 freetype-2.10.4-6.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-efaa7e8775 java-1.8.0-openjdk-aarch32-1.8.0.332.b09-1.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-f9ace23a78 keylime-6.4.0-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9ce9716352 thunderbird-91.9.0-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-7704d5e885 ecdsautils-0.4.1-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-a910a41a17 clamav-0.103.6-1.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-4bdf35a1b5 chafa-1.2.1-7.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-80b92b2a04 et-6.2.1-2.fc34 The following Fedora 34 Critical Path updates have yet to be approved: Age URL 397 https://bodhi.fedoraproject.org/updates/FEDORA-2021-1300e131b6 ddpt-0.96-4.fc34 ledmon-0.95-4.fc34 libgpod-0.8.3-38.fc34 libzfcphbaapi-2.2.0-12.fc34 lsvpd-1.7.11-6.fc34 sg3_utils-1.46-1.fc34 udisks-1.0.5-18.fc34 118 https://bodhi.fedoraproject.org/updates/FEDORA-2022-e3b891fe11 gdb-11.1-7.fc34 67 https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f3103b973 hwdata-0.357-1.fc34 48 https://bodhi.fedoraproject.org/updates/FEDORA-2022-dab75a01b8 gnome-shell-40.10-1.fc34 gnome-shell-extensions-40.7-1.fc34 mutter-40.10-1.fc34 34 https://bodhi.fedoraproject.org/updates/FEDORA-2022-eb1d10aba3 libldb-2.3.3-1.fc34 samba-4.14.13-0.fc34 19 https://bodhi.fedoraproject.org/updates/FEDORA-2022-63de6726ce libinput-1.19.4-1.fc34 13 https://bodhi.fedoraproject.org/updates/FEDORA-2022-b0a47f8060 freerdp-2.7.0-1.fc34 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-095ac0abfb livecd-tools-30.0-1.fc34 12 https://bodhi.fedoraproject.org/updates/FEDORA-2022-47554f7728 gnutls-3.7.4-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-f624aad735 libxml2-2.9.14-1.fc34 6 https://bodhi.fedoraproject.org/updates/FEDORA-2022-fc5776b142 curl-7.76.1-15.fc34 4 https://bodhi.fedoraproject.org/updates/FEDORA-2022-5e45671294 freetype-2.10.4-6.fc34 1 https://bodhi.fedoraproject.org/updates/FEDORA-2022-9ce9716352 thunderbird-91.9.0-1.fc34 The following builds have been pushed to Fedora 34 updates-testing golang-github-openprinting-ipp-usb-0.9.21-1.fc34 kernel-5.17.6-100.fc34 kernel-headers-5.17.6-100.fc34 kernel-tools-5.17.6-100.fc34 kubernetes-1.21.0-1.fc34 openrgb-0.7-3.fc34 python-colcon-common-extensions-0.3.0-1.fc34 qownnotes-22.5.0-2.fc34 rust-inlinable_string-0.1.15-2.fc34 slurm-21.08.8-2.fc34 vim-8.2.4927-1.fc34 Details about builds: ================================================================================ golang-github-openprinting-ipp-usb-0.9.21-1.fc34 (FEDORA-2022-74c8f36ee3) HTTP reverse proxy, backed by IPP-over-USB connection to device -------------------------------------------------------------------------------- Update Information: 2082709 - golang-github-openprinting-ipp-usb-0.9.21 is available -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Zdenek Dohnal <zdohnal@xxxxxxxxxx> - 0.9.21-1 - 2082709 - golang-github-openprinting-ipp-usb-0.9.21 is available -------------------------------------------------------------------------------- References: [ 1 ] Bug #2082709 - golang-github-openprinting-ipp-usb-0.9.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=2082709 -------------------------------------------------------------------------------- ================================================================================ kernel-5.17.6-100.fc34 (FEDORA-2022-a0f65397a3) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 5.17.6 stable kernel updates contain a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Justin M. Forbes <jforbes@xxxxxxxxxxxxxxxxx> [5.17.6-0] - fedora: arm: Enable new Rockchip 356x series drivers (Peter Robinson) - fedora: arm: enable DRM_I2C_NXP_TDA998X on aarch64 (Peter Robinson) - Add config entry for CONFIG_BLK_DEV_FD_RAWCMD (Justin M. Forbes) - Update changelog (Justin M. Forbes) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2080330 - kernel: Concurrency use-after-free in floppy's raw_cmd https://bugzilla.redhat.com/show_bug.cgi?id=2080330 [ 2 ] Bug #2080940 - CVE-2022-29968 kernel: io_rw_init_file in fs/io_uring.c lacks initialization of kiocb->private https://bugzilla.redhat.com/show_bug.cgi?id=2080940 -------------------------------------------------------------------------------- ================================================================================ kernel-headers-5.17.6-100.fc34 (FEDORA-2022-a0f65397a3) Header files for the Linux kernel for use by glibc -------------------------------------------------------------------------------- Update Information: The 5.17.6 stable kernel updates contain a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Justin M. Forbes <jforbes@xxxxxxxxxxxxxxxxx> - 5.17.6-100 - Linux v5.17.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2080330 - kernel: Concurrency use-after-free in floppy's raw_cmd https://bugzilla.redhat.com/show_bug.cgi?id=2080330 [ 2 ] Bug #2080940 - CVE-2022-29968 kernel: io_rw_init_file in fs/io_uring.c lacks initialization of kiocb->private https://bugzilla.redhat.com/show_bug.cgi?id=2080940 -------------------------------------------------------------------------------- ================================================================================ kernel-tools-5.17.6-100.fc34 (FEDORA-2022-a0f65397a3) Assortment of tools for the Linux kernel -------------------------------------------------------------------------------- Update Information: The 5.17.6 stable kernel updates contain a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Justin M. Forbes <jforbes@xxxxxxxxxxxxxxxxx> - 5.17.6-100 - Linux v5.17.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2080330 - kernel: Concurrency use-after-free in floppy's raw_cmd https://bugzilla.redhat.com/show_bug.cgi?id=2080330 [ 2 ] Bug #2080940 - CVE-2022-29968 kernel: io_rw_init_file in fs/io_uring.c lacks initialization of kiocb->private https://bugzilla.redhat.com/show_bug.cgi?id=2080940 -------------------------------------------------------------------------------- ================================================================================ kubernetes-1.21.0-1.fc34 (FEDORA-2022-f876b4a07a) Container cluster management -------------------------------------------------------------------------------- Update Information: Bringing Kubernetes RPMs back into sync. -------------------------------------------------------------------------------- ChangeLog: * Wed May 12 2021 Jan Chaloupka <jchaloup@xxxxxxxxxx> - 1.21.0-1 - Update to 1.21.0 resolves: #1959262 -------------------------------------------------------------------------------- ================================================================================ openrgb-0.7-3.fc34 (FEDORA-2022-b558c575cb) Open source RGB lighting control -------------------------------------------------------------------------------- Update Information: build: Trigger udev reload for udev-rules sub-package -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 30 2022 Artem Polishchuk <ego.cordatus@xxxxxxxxx> - 0.7-2 - build: Trigger udev reload for udev-rules sub-package -------------------------------------------------------------------------------- ================================================================================ python-colcon-common-extensions-0.3.0-1.fc34 (FEDORA-2022-5b16a2b02d) Meta package aggregating colcon-core and common extensions -------------------------------------------------------------------------------- Update Information: Update to `colcon-common-extensions` 0.3.0 -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Scott K Logan <logans@xxxxxxxxxxx> - 0.3.0-1 - Update to 0.3.0 (rhbz#2074334) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2074334 - python-colcon-common-extensions-0.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2074334 -------------------------------------------------------------------------------- ================================================================================ qownnotes-22.5.0-2.fc34 (FEDORA-2022-f779652573) Plain-text file markdown note taking with Nextcloud integration -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Artem Polishchuk <ego.cordatus@xxxxxxxxx> 22.5.0-2 - build: Add condition for <=f34 build * Mon May 9 2022 Artem Polishchuk <ego.cordatus@xxxxxxxxx> 22.5.0-1 - chore(update): 22.5.0 -------------------------------------------------------------------------------- ================================================================================ rust-inlinable_string-0.1.15-2.fc34 (FEDORA-2022-14d43a7484) Owned, grow-able UTF-8 string that stores small strings inline -------------------------------------------------------------------------------- Update Information: Initial import (fedora#2005982). -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Jan Baudisch <jan@xxxxxxxxxxxx> 0.1.15-2 - shorten summary * Sun May 8 2022 Jan Baudisch <jan@xxxxxxxxxxxx> 0.1.15-1 - Initial import (fedora#2005982). -------------------------------------------------------------------------------- References: [ 1 ] Bug #2005982 - Review Request: rust-inlinable_string - Alternative Rust String implementation https://bugzilla.redhat.com/show_bug.cgi?id=2005982 -------------------------------------------------------------------------------- ================================================================================ slurm-21.08.8-2.fc34 (FEDORA-2022-eeeff46680) Simple Linux Utility for Resource Management -------------------------------------------------------------------------------- Update Information: Update to 21.08.8 to fix CVE-2022-29500, CVE-2022-29501, and CVE-2022-29502. https://www.schedmd.com/news.php?id=260#OPT_260 -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Philip Kovacs <pkfed@xxxxxxxxxxxxxxxxx> - 21.08.8-2 - Update to 21.08.8-2 (upstream re-release) * Thu May 5 2022 Carl George <carl@george.computer> - 21.08.8-1 - Update to 21.08.8, resolves: rhbz#2082276 - Fix CVE-2022-29500, resolves: rhbz#2082286 - Fix CVE-2022-29501, resolves: rhbz#2082289 - Fix CVE-2022-29502, resolves: rhbz#2082293 * Sat Apr 2 2022 Philip Kovacs <pkfed@xxxxxxxxxxxxxxxxx> - 21.08.6-1 - Update to 21.08.6 * Sat Jan 22 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 21.08.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jan 14 2022 Philip Kovacs <pkfed@xxxxxxxxxxxxxxxxx> - 21.08.5-1 - Update to 21.08.5 * Sun Nov 21 2021 Orion Poplawski <orion@xxxxxxxx> - 21.08.4-2 - Rebuild for hdf5 1.12.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2082276 - slurm-21.08.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=2082276 [ 2 ] Bug #2082286 - CVE-2022-29500 slurm: SchedMD has Incorrect Access Control that leads to Information Disclosure. [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2082286 [ 3 ] Bug #2082289 - CVE-2022-29501 slurm: usage leads to unprivileged access to send arbritary unix socket as root [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2082289 [ 4 ] Bug #2082293 - CVE-2022-29502 slurm: I/O key validation allows attacker to intercept communication [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2082293 -------------------------------------------------------------------------------- ================================================================================ vim-8.2.4927-1.fc34 (FEDORA-2022-8df66cdbef) The VIM editor -------------------------------------------------------------------------------- Update Information: patchlevel 4927 -------------------------------------------------------------------------------- ChangeLog: * Mon May 9 2022 Zdenek Dohnal <zdohnal@xxxxxxxxxx> - 2:8.2.4927-1 - patchlevel 4927 * Mon May 9 2022 Zdenek Dohnal <zdohnal@xxxxxxxxxx> - 2:8.2.4877-2 - add new file vimhelp.vim * Fri May 6 2022 Zdenek Dohnal <zdohnal@xxxxxxxxxx> - 2:8.2.4877-1 - patchlevel 4877 * Mon May 2 2022 Zdenek Dohnal <zdohnal@xxxxxxxxxx> - 2:8.2.4857-1 - patchlevel 4857 * Fri Apr 29 2022 Zdenek Dohnal <zdohnal@xxxxxxxxxx> - 2:8.2.4845-1 - patchlevel 4845 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/test@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
