The following Fedora EPEL 8 Security updates need testing:
Age URL
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-3a29f0d349
python-paramiko-2.12.0-2.el8
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-fe4d2e754f
zabbix6.0-6.0.25-1.el8
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-39ec948d57
chromium-120.0.6099.199-1.el8
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-d565ced023
gtkwave-3.3.118-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
ansible-collection-awx-awx-23.6.0-1.el8
mock-core-configs-39.4-1.el8
python-rpmautospec-core-0.1.4-1.el8
python-virt-firmware-24.1.1-2.el8
python39-jinja2-epel-3.1.3-1.el8.1
Details about builds:
================================================================================
ansible-collection-awx-awx-23.6.0-1.el8 (FEDORA-EPEL-2024-5bad953649)
Ansible modules and plugins for working with AWX
--------------------------------------------------------------------------------
Update Information:
Update to 23.6.0
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 11 2024 Andrew Heath <anhe...@redhat.com> - 23.6.0-1
- Update to 23.6.0
--------------------------------------------------------------------------------
================================================================================
mock-core-configs-39.4-1.el8 (FEDORA-EPEL-2024-cc5dabbb29)
Mock core config files basic chroots
--------------------------------------------------------------------------------
Update Information:
https://rpm-software-management.github.io/mock/Release-Notes-Configs-39.4
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 11 2024 Pavel Raiskup <prais...@redhat.com> 39.4-1
- configure system_cachedir for dnf5
- configs: EOL Fedora 37
- config: add README.md with maintainers and issue trackers (fros...@email.cz)
--------------------------------------------------------------------------------
================================================================================
python-rpmautospec-core-0.1.4-1.el8 (FEDORA-EPEL-2024-5e28494740)
Minimum functionality for rpmautospec
--------------------------------------------------------------------------------
Update Information:
This update fixes a bug in the test suite which prevented the package from being
built for EPEL8 and another which prevents it from disabling caching in long-
running processes.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 9 2024 Nils Philippsen <n...@redhat.com> - 0.1.4-1
- Update to 0.1.4
* Fri Jan 5 2024 Nils Philippsen <n...@redhat.com> - 0.1.3-1
- Update to 0.1.3
* Fri Dec 15 2023 Nils Philippsen <n...@redhat.com> - 0.1.2-1
- Update to 0.1.2
* Sun Dec 3 2023 Yaakov Selkowitz <yselk...@redhat.com> - 0.1.1-8
- Always disable test coverage checks
--------------------------------------------------------------------------------
================================================================================
python-virt-firmware-24.1.1-2.el8 (FEDORA-EPEL-2024-8747f5bb28)
Tools for virtual machine firmware volumes
--------------------------------------------------------------------------------
Update Information:
update to version 24.1.1 ---- update to version 24.1
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 10 2024 Gerd Hoffmann <kra...@redhat.com> - 24.1.1-2
- add pe test script
* Wed Jan 10 2024 Gerd Hoffmann <kra...@redhat.com> - 24.1.1-1
- update to version 24.1.1
* Tue Jan 9 2024 Gerd Hoffmann <kra...@redhat.com> - 24.1-2
- add pe-inspect manpage to file list
* Tue Jan 9 2024 Gerd Hoffmann <kra...@redhat.com> - 24.1-1
- update to version 24.1
--------------------------------------------------------------------------------
================================================================================
python39-jinja2-epel-3.1.3-1.el8.1 (FEDORA-EPEL-2024-0ffe88f330)
General purpose template engine
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2024-22195
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 11 2024 Michel Lind <sali...@fedoraproject.org> - 3.1.3-1.1
- Rebase EPEL 8's Python 3.9 to pick up CVE fix
* Thu Jan 11 2024 Michel Lind <sali...@fedoraproject.org> - 3.1.3-1
- Update to 3.1.3 to fix CVE-2024-22195
* Tue Aug 8 2023 Karolina Surma <ksu...@redhat.com> - 3.1.2-6
- Declare the license as an SPDX expression
* Fri Jul 21 2023 Fedora Release Engineering <rel...@fedoraproject.org> -
3.1.2-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri Jun 16 2023 Python Maint <python-ma...@redhat.com> - 3.1.2-4
- Rebuilt for Python 3.12
* Tue Jun 13 2023 Python Maint <python-ma...@redhat.com> - 3.1.2-3
- Bootstrap for Python 3.12
* Fri May 19 2023 Yaakov Selkowitz <yselk...@redhat.com> - 3.1.2-2
- Disable docs by default in RHEL builds
* Mon May 1 2023 Sandro Mani <manisan...@gmail.com> - 3.1.2-1
- Update to 3.1.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2257854 - CVE-2024-22195 jinja2: HTML attribute injection when
passing user input as keys to xmlattr filter
https://bugzilla.redhat.com/show_bug.cgi?id=2257854
--------------------------------------------------------------------------------
--
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
