The following Fedora EPEL 9 Security updates need testing:
Age URL
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-e9dcb51f6d
uriparser-0.9.8-2.el9
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-46a02bfa95
suricata-7.0.10-1.el9
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-ff88bfea14
exim-4.98.2-1.el9
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-03946aa814
yarnpkg-1.22.22-7.el9
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-0aeac9995d
upx-5.0.0-1.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
baresip-3.21.0-1.el9
c-icap-0.6.3-2.el9
libre-3.21.0-1.el9
perl-Data-Entropy-0.008-1.el9
python-apprise-1.9.3-1.el9
rust-sha256-1.6.0-1.el9
Details about builds:
================================================================================
baresip-3.21.0-1.el9 (FEDORA-EPEL-2025-77ab6e9243)
Modular SIP user-agent with audio and video support
--------------------------------------------------------------------------------
Update Information:
Baresip v3.21.0 (2025-03-26)
call: use call_find_replaces for finding call to replace
contact commands
menu: return on UA_EVENT_SIPSESS_CONN
recalculate jbuf number of frame after reuse packet
pulse: add NULL checks for paconn_get
menu: remove CMD_PRM flag from hangup command
portaudio: fixed inconsistency between the device specification in audio_source
and via /ausrc
aufile: return 0 instead of err
aureceiver: cleanup rtpext_find is moved to re
stream,rtprecv: add rtprecv_set_srate
call: fix cppcheck warning
bump version to 3.21.0
libre v3.21.0 (2025-03-26)
fmt/pl: add pl_strncasecmp and tests
ci: upgrade run-on-arch-action to fix random segfaults
test: add testing of RTCP FIR-RFC5104
rtpext: add rtpext_find
rtp: add rtp_ prefix to member functions
rtp/rtcp: add rtcp_send_twcc and rtcp_rtpfb_twcc_encode
list: optimize list_count
bump version to 3.21.0
--------------------------------------------------------------------------------
ChangeLog:
* Sun Mar 30 2025 Robert Scheck <[email protected]> 3.21.0-1
- Upgrade to 3.21.0 (#2355005)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2355005 - baresip-3.21.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2355005
[ 2 ] Bug #2355014 - libre-3.21.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2355014
--------------------------------------------------------------------------------
================================================================================
c-icap-0.6.3-2.el9 (FEDORA-EPEL-2025-6716c61a2d)
An implementation of an ICAP server
--------------------------------------------------------------------------------
Update Information:
Upgrade to 0.6.3 release.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Mar 30 2025 Frank Crawford <[email protected]> - 0.6.3-2
- Add sysusers.d config as a source file for F42 and above.
* Mon Mar 24 2025 Frank Crawford <[email protected]> - 0.6.3-1
- Update to 0.6.3 release.
* Tue Feb 11 2025 Zbigniew JÄdrzejewski-Szmek <[email protected]> - 0.6.2-4
- Add sysusers.d config file to allow rpm to create users/groups automatically
* Sun Jan 26 2025 Frank Crawford <[email protected]> - 0.6.2-4
- Patch for GCC15 issues - BZ2339953.
- Remove mv due to unify /usr/bin and /usr/sbin
* Thu Jan 16 2025 Fedora Release Engineering <[email protected]> -
0.6.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Wed Jul 17 2024 Fedora Release Engineering <[email protected]> -
0.6.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
libre-3.21.0-1.el9 (FEDORA-EPEL-2025-77ab6e9243)
Generic library for real-time communications
--------------------------------------------------------------------------------
Update Information:
Baresip v3.21.0 (2025-03-26)
call: use call_find_replaces for finding call to replace
contact commands
menu: return on UA_EVENT_SIPSESS_CONN
recalculate jbuf number of frame after reuse packet
pulse: add NULL checks for paconn_get
menu: remove CMD_PRM flag from hangup command
portaudio: fixed inconsistency between the device specification in audio_source
and via /ausrc
aufile: return 0 instead of err
aureceiver: cleanup rtpext_find is moved to re
stream,rtprecv: add rtprecv_set_srate
call: fix cppcheck warning
bump version to 3.21.0
libre v3.21.0 (2025-03-26)
fmt/pl: add pl_strncasecmp and tests
ci: upgrade run-on-arch-action to fix random segfaults
test: add testing of RTCP FIR-RFC5104
rtpext: add rtpext_find
rtp: add rtp_ prefix to member functions
rtp/rtcp: add rtcp_send_twcc and rtcp_rtpfb_twcc_encode
list: optimize list_count
bump version to 3.21.0
--------------------------------------------------------------------------------
ChangeLog:
* Sun Mar 30 2025 Robert Scheck <[email protected]> 3.21.0-1
- Upgrade to 3.21.0 (#2355014)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2355005 - baresip-3.21.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2355005
[ 2 ] Bug #2355014 - libre-3.21.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2355014
--------------------------------------------------------------------------------
================================================================================
perl-Data-Entropy-0.008-1.el9 (FEDORA-EPEL-2025-3ea9a27f9b)
Entropy (randomness) management
--------------------------------------------------------------------------------
Update Information:
Prior to version 0.008, the Perl module Data::Entropy relied on Perl's builtin
rand function to choose an entropy source. Version 0.008 does away with this
need.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Mar 30 2025 Emmanuel Seyman <[email protected]> - 0.008-1
- Update to 0.008, with new maintainer (#2355612)
* Sat Jan 18 2025 Fedora Release Engineering <[email protected]> -
0.007-27
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Mon Aug 5 2024 Miroslav Suchý <[email protected]> - 0.007-26
- convert license to SPDX
* Thu Jul 18 2024 Fedora Release Engineering <[email protected]> -
0.007-25
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Thu Jan 25 2024 Fedora Release Engineering <[email protected]> -
0.007-24
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <[email protected]> -
0.007-23
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jul 20 2023 Fedora Release Engineering <[email protected]> -
0.007-22
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2355612 - perl-Data-Entropy-0.008 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2355612
[ 2 ] Bug #2355706 - CVE-2025-1860 perl-Data-Entropy: Data::Entropy for Perl
uses insecure rand() function for cryptographic functions [epel-8]
https://bugzilla.redhat.com/show_bug.cgi?id=2355706
[ 3 ] Bug #2355707 - CVE-2025-1860 perl-Data-Entropy: Data::Entropy for Perl
uses insecure rand() function for cryptographic functions [epel-9]
https://bugzilla.redhat.com/show_bug.cgi?id=2355707
[ 4 ] Bug #2355708 - CVE-2025-1860 perl-Data-Entropy: Data::Entropy for Perl
uses insecure rand() function for cryptographic functions [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2355708
[ 5 ] Bug #2355709 - CVE-2025-1860 perl-Data-Entropy: Data::Entropy for Perl
uses insecure rand() function for cryptographic functions [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2355709
--------------------------------------------------------------------------------
================================================================================
python-apprise-1.9.3-1.el9 (FEDORA-EPEL-2025-938df7f832)
A simple wrapper to many popular notification services used today
--------------------------------------------------------------------------------
Update Information:
Updated to v1.9.3
--------------------------------------------------------------------------------
ChangeLog:
* Sun Mar 30 2025 Chris Caron <[email protected]> - 1.9.3
- Updated to v1.9.3
* Sat Jan 18 2025 Fedora Release Engineering <[email protected]> -
1.9.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Wed Jan 8 2025 Chris Caron <[email protected]> - 1.9.2
- Updated to v1.9.2
--------------------------------------------------------------------------------
================================================================================
rust-sha256-1.6.0-1.el9 (FEDORA-EPEL-2025-ab88cc1d47)
SHA256 crypto digest
--------------------------------------------------------------------------------
Update Information:
Move modules to own files
separate modules
fix char type
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 28 2025 Michel Lind <[email protected]> - 1.6.0-1
- Update to 1.6.0; Fixes: RHBZ#2349264
* Sun Jan 19 2025 Fedora Release Engineering <[email protected]> -
1.5.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Sat Jul 20 2024 Fedora Release Engineering <[email protected]> -
1.5.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Sat Jan 27 2024 Fedora Release Engineering <[email protected]> -
1.5.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2349264 - rust-sha256-1.6.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2349264
--------------------------------------------------------------------------------
--
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
