[EPEL-devel] Fedora EPEL 8 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

The following Fedora EPEL 8 Security updates need testing:
 Age  URL
   5  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-ed542e7452   perl-Data-Entropy-0.008-1.el8
   2  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-77875be662   zabbix6.0-6.0.39-1.el8
   2  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-01e745cb85   zabbix7.0-7.0.11-1.el8


The following builds have been pushed to Fedora EPEL 8 updates-testing

    ganglia-3.7.2-58.el8
    mysql-mmm-2.2.1-39.el8
    radicale-3.5.1-1.el8
    rust-below-0.9.0-1.el8

Details about builds:


================================================================================
 ganglia-3.7.2-58.el8 (FEDORA-EPEL-2025-5a938f85bf)
 Distributed Monitoring System
--------------------------------------------------------------------------------
Update Information:

Fix problem causing metric group to be disfunctional
--------------------------------------------------------------------------------
ChangeLog:

* Sat Apr  5 2025 Terje Rosten <terjeros@xxxxxxxxx> - 3.7.2-58
- Follow PHP quote rules
* Sat Mar 29 2025 Terje Rosten <terjeros@xxxxxxxxx> - 3.7.2-57
- Use sysusers on FC43+
- Fix changelog
* Thu Jan 16 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 3.7.2-56
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2338654 - ganglia: ganaglia-web: Unable to expand metrics group when clicking on button
        https://bugzilla.redhat.com/show_bug.cgi?id=2338654
--------------------------------------------------------------------------------


================================================================================
 mysql-mmm-2.2.1-39.el8 (FEDORA-EPEL-2025-e584e7f171)
 Multi-Master Replication Manager for MySQL
--------------------------------------------------------------------------------
Update Information:

First release for Epel 9.
executables have been moved from sbin to bin
Added a patch to suppress uninitialised vars from being a fatal error - el8
bugfix.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Apr  5 2025 David Beveridge <dave@xxxxxxxxxxx> 2.2.1-39
- add feature notify_cmd
- suppress fatal escalation of uninitialized variables warning
- modify systemd unit files to refer to /usr/bin instead of /usr/sbin
* Wed Mar 26 2025 David Beveridge <dave@xxxxxxxxxxx> 2.2.1-38
- Unify bin and sbin
* Sun Feb  2 2025 David Beveridge <dave@xxxxxxxxxxx> 2.2.1-37
- fix patchN deprecated
* Fri Jan 17 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-36
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Mon Jul 29 2024 Miroslav Suchý <msuchy@xxxxxxxxxx> - 2.2.1-35
- convert license to SPDX
* Thu Jul 18 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-34
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Thu Jan 25 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-33
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-32
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jul 20 2023 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-31
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jan 19 2023 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-30
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Fri Jul 22 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-29
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Thu Jan 20 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-28
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Thu Jul 22 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-27
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Tue Jan 26 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.2.1-26
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 radicale-3.5.1-1.el8 (FEDORA-EPEL-2025-1cafd42da3)
 A simple CalDAV (calendar) and CardDAV (contact) server
--------------------------------------------------------------------------------
Update Information:

Update to 3.5.1
--------------------------------------------------------------------------------
ChangeLog:

* Sat Apr  5 2025 Peter Bieringer <pb@xxxxxxxxxxxx> - 3.5.1-1
- Update to 3.5.1
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2357589 - radicale-3.5.1 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2357589
--------------------------------------------------------------------------------


================================================================================
 rust-below-0.9.0-1.el8 (FEDORA-EPEL-2025-ae12e02519)
 Interactive tool to view and record historical system data
--------------------------------------------------------------------------------
Update Information:

A privilege escalation vulnerability existed in the Below service prior to
v0.9.0 due to the creation of a world-writable directory at /var/log/below. This
could have allowed local unprivileged users to escalate to root privileges
through symlink attacks that manipulate files such as /etc/shadow.
https://www.cve.org/CVERecord?id=CVE-2025-27591
https://github.com/facebookincubator/below/security/advisories/GHSA-9mc5-7qhg-
fp3w
--------------------------------------------------------------------------------
ChangeLog:

* Thu Mar 27 2025 Fabio Valentini <decathorpe@xxxxxxxxx> - 0.9.0-1
- Update to version 0.9.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2351589 - CVE-2025-27591 rust-below: Privilege Escalation in Below via World-Writable Directory [epel-8]
        https://bugzilla.redhat.com/show_bug.cgi?id=2351589
--------------------------------------------------------------------------------



-- 
_______________________________________________
epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
[Index of Archives]     [Fedora Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Announce]     [SSH]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Linux Apps]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux