[EPEL-devel] Fedora EPEL 9 updates-testing report

updates Sat, 27 Sep 2025 17:20:13 -0700

The following Fedora EPEL 9 Security updates need testing:
 Age  URL
   4  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-e1e7d2cc95   
bird-3.1.4-1.el9
   3  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-9a865f57f7   
dnsdist-1.9.11-1.el9
   1  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-ccbb79f04d   
firebird-4.0.6.3221-1.1.el9



The following builds have been pushed to Fedora EPEL 9 updates-testing

    bpfilter-0.6.0-1.el9
    chromium-140.0.7339.207-1.el9
    radicale-3.5.7-1.el9

Details about builds:


================================================================================
 bpfilter-0.6.0-1.el9 (FEDORA-EPEL-2025-00653863b4)
 BPF-based packet filtering framework
--------------------------------------------------------------------------------
Update Information:

Release v0.6.0
Changelog: https://github.com/facebook/bpfilter/releases/tag/v0.6.0
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 26 2025 Quentin Deslandes <[email protected]> - 0.6.0-1
- Release 0.6.0
--------------------------------------------------------------------------------


================================================================================
 chromium-140.0.7339.207-1.el9 (FEDORA-EPEL-2025-3ea2eb10f3)
 A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:

Update to 140.0.7339.207
  * CVE-2025-10890: Side-channel information leakage in V8
  * CVE-2025-10891: Integer overflow in V8
  * CVE-2025-10892: Integer overflow in V8
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 24 2025 Than Ngo <[email protected]> - 140.0.7339.207-1
- Update to 140.0.7339.207
  * CVE-2025-10890: Side-channel information leakage in V8
  * CVE-2025-10891: Integer overflow in V8
  * CVE-2025-10892: Integer overflow in V8
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2397768 - CVE-2025-10890, CVE-2025-10891, CVE-2025-10892 - 
chromium: Side-channel information leakage and Ingter overflow in V8 
[epel-9/10l]
        https://bugzilla.redhat.com/show_bug.cgi?id=2397768
  [ 2 ] Bug #2398151 - chromium FTBFS -  error: undefined symbol: 
__rust_no_alloc_shim_is_unstable
        https://bugzilla.redhat.com/show_bug.cgi?id=2398151
--------------------------------------------------------------------------------


================================================================================
 radicale-3.5.7-1.el9 (FEDORA-EPEL-2025-5191267bc5)
 A simple CalDAV (calendar) and CardDAV (contact) server
--------------------------------------------------------------------------------
Update Information:

Update to 3.5.7
--------------------------------------------------------------------------------
ChangeLog:

* Sat Sep 27 2025 Peter Bieringer <[email protected]>  - 3.5.7-1
- Update to 3.5.7
* Mon Sep 15 2025 Peter Bieringer <[email protected]>  - 3.5.6-1
- Update to 3.5.6
* Fri Aug 22 2025 Peter Bieringer <[email protected]>  - 3.5.5-1
- Update to 3.5.5
* Sat Jun 14 2025 Peter Bieringer <[email protected]> - 3.5.4-3
- Rename InfCloud-fonts package to InfCloud-fontware (BZ#2372650)
* Sun May 25 2025 Peter Bieringer <[email protected]>  - 3.5.4-1
- Update to 3.5.4
* Mon May 12 2025 Peter Bieringer <[email protected]>  - 3.5.3-3
- Alignment EL
- Conditionally Remove (Build)Require: python3-dateutil
* Sun May 11 2025 Peter Bieringer <[email protected]>  - 3.5.3-1
- Update to 3.5.3
- Remove obsolete bundling support for dateutil
* Wed Apr 23 2025 Peter Bieringer <[email protected]>  - 3.5.2-1
- Add support for optional environment file /etc/sysconfig/radicale
- Package template for /etc/sysconfig/radicale
- Update to 3.5.2
* Sun Apr 13 2025 Peter Bieringer <[email protected]> - 3.5.1-3
- Fix conditional dependency of shadow-utils introduced with 3.5.0-1
* Mon Apr  7 2025 Peter Bieringer <[email protected]> - 3.5.1-2
- Fix missing user/group creation introduced with 3.5.0-1 (bz#2358635)
* Sat Apr  5 2025 Peter Bieringer <[email protected]> - 3.5.1-1
- Update to 3.5.1
* Sun Mar  9 2025 Peter Bieringer <[email protected]> - 3.5.0-1
- Update to 3.5.0
- Bundle InfCloud 0.13.1 with dedicated sub packages
- Add sysusers.d config file to allow rpm to create users/groups automatically 
(>= F43|EL11)
* Sun Jan 26 2025 Peter Bieringer <[email protected]> - 3.4.1-1
- Update to 3.4.1
* Thu Jan  9 2025 Peter Bieringer <[email protected]> - 3.4.0-2
- Update to 3.4.0
* Sat Dec 28 2024 Peter Bieringer <[email protected]> - 3.3.3-1
- Update to 3.3.3
- New subpackage logwatch with files from from contrib/logwatch
* Wed Dec 18 2024 Peter Bieringer <[email protected]> - 3.3.2-2
- systemd unit file: add /var/cache/radicale to ReadWritePaths
* Sun Dec 15 2024 Peter Bieringer <[email protected]> - 3.3.2-1
- Update to 3.3.2
- Package /var/cache/radicale for optional storage of cache files
* Sun Nov 24 2024 Peter Bieringer <[email protected]> - 3.3.1-1
- Add sebool for hook (supports RHBZ#1928899)
- Update to 3.3.1
* Sun Oct 13 2024 Peter Bieringer <[email protected]> - 3.3.0-1
- Update to 3.3.0
- EL8: update bundled vobject to 0.9.8 (align with EL9)
- EL8: update bundled defusedxml to 2.8.1 (align with EL9)
- EL8: update bundled passlib to 1.7.4 (align with EL9)
* Fri Aug 30 2024 Peter Bieringer <[email protected]> - 3.2.3-1
- Update to 3.2.3
* Wed Jun 19 2024 Peter Bieringer <[email protected]> - 3.2.2-2
- Update to 3.2.2
- Obsolete radicale-config-storage-hooks-SELinux-note.patch by inject inside 
spec file
- Obsolete radicale-httpd by contrib config from upstream
- Fix group+permissions of /etc/radicale/rights
- Create an empty file /etc/radicale/users with proper permissions
* Sun Jun  2 2024 Peter Bieringer <[email protected]> - 3.2.1-1
- Update to 3.2.1
* Fri May  3 2024 Peter Bieringer <[email protected]> - 3.2.0-1
- Update to 3.2.0
- EL8: update bundled vobject to 0.9.7
- EL8: update to Python 3.9 (requires update with option --allowerasing)
- EL8: reenable bundled dateutil (required by Python 3.9)
* Mon Apr 29 2024 Peter Bieringer <[email protected]> - 3.1.9-2
- SELinux/radicale.te: new boolean and policy for radicale_use_fusefs
* Mon Mar 18 2024 Peter Bieringer <[email protected]> - 3.1.9-1
- Update to 3.1.9
- Remove obsolete patches
- Add support for intermediate build using gitcommit
* Sun Oct 29 2023 Peter Bieringer <[email protected]> - 3.1.8-55
- Debundle vobject as now available in EPEL9 (#2246219)
- Skip bundle setup in case of nothing to bundle
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2399890 - radicale-3.5.7 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2399890
--------------------------------------------------------------------------------


-- 
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue

[EPEL-devel] Fedora EPEL 9 updates-testing report

Reply via email to