[EPEL-devel] Fedora EPEL 9 updates-testing report

The following Fedora EPEL 9 Security updates need testing: Age URL 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-7ff32fc746 podman-tui-0.15.0-2.el9 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-b698d8c031 proftpd-1.3.8b-1.el9 4

[EPEL-devel] Fedora EPEL 7 updates-testing report

The following Fedora EPEL 7 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2ff4055b33 php-Smarty-3.1.48-2.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-46203ab7be chromium-120.0.6099.129-1.el7 The following

[EPEL-devel] Fedora EPEL 8 updates-testing report

The following Fedora EPEL 8 Security updates need testing: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-1bdb2efa01 tor-0.4.8.10-1.el8 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-4138b387a7 php-adodb-5.22.7-1.el8 2

[Bug 2255872] TRIAGE CVE-2023-7101 perl-Spreadsheet-ParseExcel: unvalidated input can lead to arbitrary code execution vulnerability [epel-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2255872 --- Comment #1 from Robb Gatica --- Use the following template to for the 'fedpkg update' request to submit an update for this issue as it contains the top-level parent bug(s) as well as this tracking bug. This will ensure that all

[Bug 2255873] New: TRIAGE CVE-2023-7101 perl-Spreadsheet-ParseExcel: unvalidated input can lead to arbitrary code execution vulnerability [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2255873 Bug ID: 2255873 Summary: TRIAGE CVE-2023-7101 perl-Spreadsheet-ParseExcel: unvalidated input can lead to arbitrary code execution vulnerability [fedora-all] Product:

[Bug 2255873] TRIAGE CVE-2023-7101 perl-Spreadsheet-ParseExcel: unvalidated input can lead to arbitrary code execution vulnerability [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2255873 --- Comment #1 from Robb Gatica --- Use the following template to for the 'fedpkg update' request to submit an update for this issue as it contains the top-level parent bug(s) as well as this tracking bug. This will ensure that all

[Bug 2255872] TRIAGE CVE-2023-7101 perl-Spreadsheet-ParseExcel: unvalidated input can lead to arbitrary code execution vulnerability [epel-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2255872 Robb Gatica changed: What|Removed |Added Blocks||2255871 (CVE-2023-7101) Referenced

[Bug 2255872] New: TRIAGE CVE-2023-7101 perl-Spreadsheet-ParseExcel: unvalidated input can lead to arbitrary code execution vulnerability [epel-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2255872 Bug ID: 2255872 Summary: TRIAGE CVE-2023-7101 perl-Spreadsheet-ParseExcel: unvalidated input can lead to arbitrary code execution vulnerability [epel-all] Product: Fedora

[Bug 2255873] TRIAGE CVE-2023-7101 perl-Spreadsheet-ParseExcel: unvalidated input can lead to arbitrary code execution vulnerability [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2255873 Robb Gatica changed: What|Removed |Added Blocks||2255871 (CVE-2023-7101) Referenced

OpenImageIO 2.5.x w/ soname bump

I plan to build OpenImageIO 2.5.x in rawhide in the near future. Affected packages to be built in a side tag: $ fedrq wr -F "name" -s OpenImageIO-devel OpenColorIO blender embree luxcorerender oidn openshadinglanguage usd Thanks, Richard FAS: hobbes1069 --

Re: rpmbuild core dumps

Sam Varshavchik writes: Looking at a diff between the 4.19.0 an 4.19.1 tags, a call to rpmfiStat() was added to fill_archive_entry(). The backtrace above shows the execution finding its way from rpmfiStat() into very-much-thread-unsafe code in rpmug.c That code is used only by

Re: rpmbuild core dumps

Stephen Smoogen writes:                 #1  0x7f05dd8588ee raise (libc.so.6 + 0x3e8ee)                 #2  0x7f05dd8408ff abort (libc.so.6 + 0x268ff)                 #3  0x7f05dd8417d0 __libc_message.cold (libc.so.6 + 0x277d0)                 #4  0x7f05dd8b47a5

Re: rpmbuild core dumps

On Sun, 24 Dec 2023 at 15:51, Sam Varshavchik wrote: > Stephen Smoogen writes: > > > »My apologies for bad quoting.. email from phone. What version of rpm > build > > is used and what are some packages which are rebuilt that show this > issue. > > This may be needed if the core dump is due to

Fedora 40 System-Wide Change: java-21-openjdk as system JDK in F40 pre-announcement

Hi, Before the final announcement arrives, I would like to inform the community about the upcoming change proposal: https://fedoraproject.org/wiki/Changes/Java21 I am grateful for any feedback regarding the proposed changes. Thank you! -- Petra Alice Mikova OpenJDK QE, Senior Quality

Re: Orphaned packages looking for new maintainers

On Mon, Dec 25, 2023 at 6:34 AM Ondrej Mosnáček wrote: > > On Mon, 18 Dec 2023 at 19:39, Priscila Gutierres wrote: > > > > virtme-ng makes testing a new kernel and developing new modules A LOT > > easier. > > > > On Mon, Dec 18, 2023 at 10:27 AM Richard W.M. Jones > > wrote: > >> > >> On Mon,

Re: Orphaned packages looking for new maintainers

On Mon, 18 Dec 2023 at 19:39, Priscila Gutierres wrote: > > virtme-ng makes testing a new kernel and developing new modules A LOT easier. > > On Mon, Dec 18, 2023 at 10:27 AM Richard W.M. Jones wrote: >> >> On Mon, Dec 18, 2023 at 11:20:22AM +0100, Miro Hrončok wrote: >> > virtme

Fedora rawhide compose report: 20231225.n.0 changes

OLD: Fedora-Rawhide-20231224.n.0 NEW: Fedora-Rawhide-20231225.n.0 = SUMMARY = Added images:2 Dropped images: 3 Added packages: 4 Dropped packages:0 Upgraded packages: 37 Downgraded packages: 0 Size of added packages: 2.37 MiB Size of dropped packages:0 B