[EPEL-devel] Fedora EPEL 7 updates-testing report

updates Wed, 06 Mar 2024 18:12:33 -0800

The following Fedora EPEL 7 Security updates need testing:
 Age  URL
   5  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-dc7c97ee12   
chromium-122.0.6261.94-1.el7



The following builds have been pushed to Fedora EPEL 7 updates-testing

    golang-1.20.12-1.el7
    singularity-ce-4.1.2-1.el7

Details about builds:


================================================================================
 golang-1.20.12-1.el7 (FEDORA-EPEL-2024-9b53b79398)
 The Go Programming Language
--------------------------------------------------------------------------------
Update Information:

Security fix for CVE-2023-39326, CVE-2023-45287, and CVE-2023-45285
--------------------------------------------------------------------------------
ChangeLog:

* Tue Mar  5 2024 Dave Dykstra <d...@fedoraproject.org> - 1.20.12-1
- Update to 1.20.12 by doing the equivalent changes done in RedHat ubi8's
  golang-1.20.12-2
- Restore the "--with ignore_tests" rpmbuild option
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2253193 - CVE-2023-45287 golang: crypto/tls: Timing Side Channel 
attack in RSA based TLS key exchanges.
        https://bugzilla.redhat.com/show_bug.cgi?id=2253193
  [ 2 ] Bug #2253323 - CVE-2023-45285 golang: cmd/go: Protocol Fallback when 
fetching modules
        https://bugzilla.redhat.com/show_bug.cgi?id=2253323
  [ 3 ] Bug #2253330 - CVE-2023-39326 golang: net/http/internal: Denial of 
Service (DoS) via Resource Consumption via HTTP requests
        https://bugzilla.redhat.com/show_bug.cgi?id=2253330
--------------------------------------------------------------------------------


================================================================================
 singularity-ce-4.1.2-1.el7 (FEDORA-EPEL-2024-70267d0681)
 Application and environment virtualization
--------------------------------------------------------------------------------
Update Information:

Upgrade to 4.1.2 upstream version.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  6 2024 David Trudgian <dtr...@sylabs.io> - 4.1.2-1
- Upgrade to 4.1.2 upstream version.
--------------------------------------------------------------------------------

--
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue

[EPEL-devel] Fedora EPEL 7 updates-testing report

Reply via email to