[EPEL-devel] Fedora EPEL 9 updates-testing report

[updates]

The following Fedora EPEL 9 Security updates need testing:
 Age  URL
   0  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-780225e056   
chromium-139.0.7258.154-1.el9


The following builds have been pushed to Fedora EPEL 9 updates-testing

    gdu-5.31.0-1.el9
    rust-potential_utf-0.1.3-1.el9
    tcpreplay-4.5.2-1.el9

Details about builds:


================================================================================
 gdu-5.31.0-1.el9 (FEDORA-EPEL-2025-4d76076a40)
 Fast disk usage analyzer with console interface written in Go
--------------------------------------------------------------------------------
Update Information:

Update to 5.31.0
--------------------------------------------------------------------------------
ChangeLog:

* Fri Aug 29 2025 Mikel Olasagasti Uranga <mi...@olasagasti.info> - 5.31.0-1
- Update to 5.31.0 - Closes rhbz#2370708 rhbz#2391602
* Fri Aug 15 2025 Maxwell G <maxw...@gtmx.me> - 5.30.1-6
- Rebuild for golang-1.25.0
* Fri Aug 15 2025 Maxwell G <maxw...@gtmx.me> - 5.30.1-5
- Revert "Rebuild for golang-1.25.0"
* Fri Aug 15 2025 Maxwell G <maxw...@gtmx.me> - 5.30.1-4
- Rebuild for golang-1.25.0
* Wed Jul 23 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
5.30.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Thu Jan 16 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
5.30.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Tue Dec 31 2024 Alexey Lunev <cheembox...@gmail.com> - 5.30.1-1
- Update to 5.30.1 (rhbz#2335011)
--------------------------------------------------------------------------------


================================================================================
 rust-potential_utf-0.1.3-1.el9 (FEDORA-EPEL-2025-1fdc1adac0)
 Unvalidated string and character types
--------------------------------------------------------------------------------
Update Information:

Update to version 0.1.3: Add .chars() to PotentialUtf16
--------------------------------------------------------------------------------
ChangeLog:

* Fri Aug 29 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 0.1.3-1
- Update to version 0.1.3; Fixes RHBZ#2391592
* Fri Jul 25 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
0.1.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2391592 - rust-potential_utf-0.1.3 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2391592
--------------------------------------------------------------------------------


================================================================================
 tcpreplay-4.5.2-1.el9 (FEDORA-EPEL-2025-fa2b41b944)
 Replay captured network traffic
--------------------------------------------------------------------------------
Update Information:

Mostly bugfix release. More info here:
https://github.com/appneta/tcpreplay/releases/tag/v4.5.2
--------------------------------------------------------------------------------
ChangeLog:

* Fri Aug 29 2025 Bojan Smojver <bojan@rexursive com> - 4.5.2-1
- Update to 4.5.2
* Fri Jul 25 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
4.5.1-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Wed Jan 22 2025 Bojan Smojver <bojan@rexursive com> - 4.5.1-5
- Drop unknown configure option --enable-tcpreplay-edit
- Change tcpdump dependency to package
- Remove checks for TX_RING support to avoid build problems
* Sun Jan 19 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
4.5.1-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Mon Jul 29 2024 Miroslav Suchý <msu...@redhat.com> - 4.5.1-3
- convert license to SPDX
* Sat Jul 20 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
4.5.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2388758 - CVE-2025-9019 tcpreplay: tcpreplay Heap Overflow 
Vulnerability [epel-10]
        https://bugzilla.redhat.com/show_bug.cgi?id=2388758
  [ 2 ] Bug #2388759 - CVE-2025-9019 tcpreplay: tcpreplay Heap Overflow 
Vulnerability [epel-8]
        https://bugzilla.redhat.com/show_bug.cgi?id=2388759
  [ 3 ] Bug #2388760 - CVE-2025-9019 tcpreplay: tcpreplay Heap Overflow 
Vulnerability [epel-9]
        https://bugzilla.redhat.com/show_bug.cgi?id=2388760
  [ 4 ] Bug #2388763 - CVE-2025-9019 tcpreplay: tcpreplay Heap Overflow 
Vulnerability [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2388763
  [ 5 ] Bug #2388764 - CVE-2025-9019 tcpreplay: tcpreplay Heap Overflow 
Vulnerability [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2388764
  [ 6 ] Bug #2389866 - CVE-2025-9157 tcpreplay: appneta tcpreplay tcprewrite 
edit_packet.c untrunc_packet use after free [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2389866
  [ 7 ] Bug #2389867 - CVE-2025-9157 tcpreplay: appneta tcpreplay tcprewrite 
edit_packet.c untrunc_packet use after free [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2389867
  [ 8 ] Bug #2389868 - CVE-2025-9157 tcpreplay: appneta tcpreplay tcprewrite 
edit_packet.c untrunc_packet use after free [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2389868
--------------------------------------------------------------------------------



-- 
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue