The following Fedora EPEL 8 Security updates need testing:
Age URL
38 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-1e00c3d01e
cutter-re-2.2.0-1.el8 rizin-0.5.1-1.el8
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-4f43a624e1
libsignal-protocol-c-2.3.3-8.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
bird-2.13-1.el8
chromium-112.0.5615.165-1.el8
perl-HTML-Restrict-3.0.2-1.el8
Details about builds:
================================================================================
bird-2.13-1.el8 (FEDORA-EPEL-2023-d5ffcebe5f)
BIRD Internet Routing Daemon
--------------------------------------------------------------------------------
Update Information:
# BIRD 2.13 (2023-04-23) - Babel: IPv4 via IPv6 extension (RFC 9229) -
Babel: Improve authentication on lossy networks - BGP: New `allow bgp_med`
option - BSD: Support for IPv4 routes with IPv6 nexthop on FreeBSD -
Important bugfixes
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 23 2023 Robert Scheck <rob...@fedoraproject.org> - 2.13-1
- Upgrade to 2.13 (#2188938)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2188938 - bird-2.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2188938
--------------------------------------------------------------------------------
================================================================================
chromium-112.0.5615.165-1.el8 (FEDORA-EPEL-2023-221f366aca)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
update to 112.0.5615.165. Fixes the following security issues: CVE-2023-2004
CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137
CVE-2023-2033 CVE-2023-2136 ---- update to 112.0.5615.121. Fixes the following
security issues: CVE-2023-2004 CVE-2023-2133 CVE-2023-2134 CVE-2023-2135
CVE-2023-2136 CVE-2023-2137 CVE-2023-2033 ---- update to 112.0.5615.49.
Fixes the following security issues: CVE-2023-1528 CVE-2023-1529 CVE-2023-1530
CVE-2023-1531 CVE-2023-1532 CVE-2023-1533 CVE-2023-1534, CVE-2023-25193,
CVE-2023-2004
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 20 2023 Than Ngo <t...@redhat.com> - 112.0.5615.165-1
- update to 112.0.5615.165
* Mon Apr 17 2023 Than Ngo <t...@redhat.com> - 112.0.5615.121-2
- fix vaapi issue on xwayland
- fix the build order, chrome_feed_response_metadata.pb.h file not found
- fix compiler flags and typo
* Sat Apr 15 2023 Than Ngo <t...@redhat.com> - 112.0.5615.121-1
- update to 112.0.5615.121
* Wed Apr 5 2023 Than Ngo <t...@redhat.com> - 112.0.5615.49-1
- update to 112.0.5615.49
- fix #2184142, Small fonts in menus
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2186431 - CVE-2023-2004 chromium: freetype: integer overflowin in
tt_hvadvance_adjust() in src/truetype/ttgxvar.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186431
[ 2 ] Bug #2186878 - CVE-2023-2033 chromium: chromium-browser: Type Confusion
in V8 [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186878
[ 3 ] Bug #2186879 - CVE-2023-2033 chromium: chromium-browser: Type Confusion
in V8 [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186879
[ 4 ] Bug #2186982 - [chromium] GPU process crashes on AMD
https://bugzilla.redhat.com/show_bug.cgi?id=2186982
[ 5 ] Bug #2187064 - Crash in chromium
https://bugzilla.redhat.com/show_bug.cgi?id=2187064
[ 6 ] Bug #2187346 - Lost ability to apply visual effects
https://bugzilla.redhat.com/show_bug.cgi?id=2187346
[ 7 ] Bug #2187772 - Hardware acceleration for chromium is not available,
even when forcing it
https://bugzilla.redhat.com/show_bug.cgi?id=2187772
[ 8 ] Bug #2187900 - CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136
CVE-2023-2137 chromium: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2187900
[ 9 ] Bug #2187901 - CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136
CVE-2023-2137 chromium: various flaws [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2187901
--------------------------------------------------------------------------------
================================================================================
perl-HTML-Restrict-3.0.2-1.el8 (FEDORA-EPEL-2023-6e11f8d9fa)
Perl module to strip unwanted HTML tags and attributes
--------------------------------------------------------------------------------
Update Information:
# HTML::Restrict 3.0.2 - Add `create_newlines` to replace `BR` and `P` by 1,
resp. 2 newlines
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 23 2023 Robert Scheck <rob...@fedoraproject.org> 3.0.2-1
- Upgrade to 3.0.2 (#2188952)
* Fri Jan 20 2023 Fedora Release Engineering <rel...@fedoraproject.org> -
3.0.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2188952 - perl-HTML-Restrict-3.0.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2188952
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
