The following Fedora EPEL 9 Security updates need testing:
Age URL
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-780225e056
chromium-139.0.7258.154-1.el9
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-fa2b41b944
tcpreplay-4.5.2-1.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
checkpointctl-1.4.0-1.el9
lexertl17-1.2.7-1.el9
parsertl17-1.2.1-1.el9
rust-matchers-0.2.0-1.el9
rust-tracing-subscriber-0.3.20-1.el9
strawberry-1.2.13-1.el9
Details about builds:
================================================================================
checkpointctl-1.4.0-1.el9 (FEDORA-EPEL-2025-ac1be4bde2)
A command-line tool for in-depth analysis of container checkpoints
--------------------------------------------------------------------------------
Update Information:
Update to upstream version 1.4.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 1 2025 Radostin Stoyanov <[email protected]> - 1:1.4.0-1
- Update to upstream version 1.4.0
* Fri Aug 15 2025 Maxwell G <[email protected]> - 1:1.3.0-6
- Rebuild for golang-1.25.0
* Fri Aug 15 2025 Maxwell G <[email protected]> - 1:1.3.0-5
- Revert "Rebuild for golang-1.25.0"
* Fri Aug 15 2025 Maxwell G <[email protected]> - 1:1.3.0-4
- Rebuild for golang-1.25.0
* Wed Jul 23 2025 Fedora Release Engineering <[email protected]> -
1:1.3.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Thu Jan 16 2025 Fedora Release Engineering <[email protected]> -
1:1.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2391649 - CVE-2025-58058 checkpointctl: github.com/ulikunitz/xz
leaks memory [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2391649
--------------------------------------------------------------------------------
================================================================================
lexertl17-1.2.7-1.el9 (FEDORA-EPEL-2025-4a93b86b00)
The Modular Lexical Analyser Generator
--------------------------------------------------------------------------------
Update Information:
Update to 1.2.7: https://github.com/BenHanson/lexertl17/compare/1.2.4...1.2.7
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 1 2025 Benjamin A. Beasley <[email protected]> - 1:1.2.7-1
- Update to 1.2.7 (close RHBZ#2390740)
* Mon Sep 1 2025 Benjamin A. Beasley <[email protected]> - 1:1.2.5-1
- Update to 1.2.5 (close RHBZ#2389853)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2390740 - lexertl17-1.2.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2390740
--------------------------------------------------------------------------------
================================================================================
parsertl17-1.2.1-1.el9 (FEDORA-EPEL-2025-5fae01bf09)
The Modular Parser Generator
--------------------------------------------------------------------------------
Update Information:
Update to 1.2.1: https://github.com/BenHanson/parsertl17/compare/1.2.0...1.2.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 1 2025 Benjamin A. Beasley <[email protected]> - 1:1.2.1-1
- Update to 1.2.1 (close RHBZ#2390952)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2390952 - parsertl17-1.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2390952
--------------------------------------------------------------------------------
================================================================================
rust-matchers-0.2.0-1.el9 (FEDORA-EPEL-2025-dfc8e38f18)
Regex matching on character and byte streams
--------------------------------------------------------------------------------
Update Information:
Update the tracing-subscriber crate to version 0.3.20.
Update the matchers crate to version 0.2.0.
This update also includes a fix for CVE-2025-58160. Rebuilds of dependent
applications will be coordinated separately from this update.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 1 2025 Fabio Valentini <[email protected]> - 0.2.0-1
- Update to version 0.2.0; Fixes RHBZ#2295530
* Fri Jul 25 2025 Fedora Release Engineering <[email protected]> -
0.1.0-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Sun Jan 19 2025 Fedora Release Engineering <[email protected]> -
0.1.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Sat Jul 20 2024 Fedora Release Engineering <[email protected]> -
0.1.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Fri Jan 26 2024 Fedora Release Engineering <[email protected]> -
0.1.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2391978 - CVE-2025-58160 rust-tracing-subscriber: Tracing log
pollution [epel-9]
https://bugzilla.redhat.com/show_bug.cgi?id=2391978
--------------------------------------------------------------------------------
================================================================================
rust-tracing-subscriber-0.3.20-1.el9 (FEDORA-EPEL-2025-dfc8e38f18)
Utilities for implementing and composing tracing subscribers
--------------------------------------------------------------------------------
Update Information:
Update the tracing-subscriber crate to version 0.3.20.
Update the matchers crate to version 0.2.0.
This update also includes a fix for CVE-2025-58160. Rebuilds of dependent
applications will be coordinated separately from this update.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 1 2025 Fabio Valentini <[email protected]> - 0.3.20-1
- Update to version 0.3.20; Fixes RHBZ#2391912
* Fri Jul 25 2025 Fedora Release Engineering <[email protected]> -
0.3.19-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Sun Jan 19 2025 Fedora Release Engineering <[email protected]> -
0.3.19-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2391978 - CVE-2025-58160 rust-tracing-subscriber: Tracing log
pollution [epel-9]
https://bugzilla.redhat.com/show_bug.cgi?id=2391978
--------------------------------------------------------------------------------
================================================================================
strawberry-1.2.13-1.el9 (FEDORA-EPEL-2025-44cd904754)
Audio player and music collection organizer
--------------------------------------------------------------------------------
Update Information:
Update to version 1.2.13
Upstream changelog:
https://github.com/strawberrymusicplayer/strawberry/releases/tag/1.2.13
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 1 2025 Ondrej MosnáÄek <[email protected]> - 1.2.13-1
- Update to version 1.2.13 (fedora#2392248)
--------------------------------------------------------------------------------
--
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
