The following Fedora EPEL 9 Security updates need testing: Age URL 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-c06235d493 yasm-1.3.0^20250625git121ab15-1.el9 The following builds have been pushed to Fedora EPEL 9 updates-testing dist-git-client-1.2-1.el9 mosquitto-2.0.22-1.el9 pass-1.7.4-16.el9 plantuml-1.2025.4-1.el9 root-6.36.02-1.el9 rust-onefetch-2.25.0-1.el9 rust-onefetch-ascii-2.25.0-1.el9 rust-onefetch-image-2.25.0-1.el9 rust-onefetch-manifest-2.25.0-1.el9 rust-owo-colors-4.2.2-1.el9 snapd-2.70-1.el9 Details about builds: ================================================================================ dist-git-client-1.2-1.el9 (FEDORA-EPEL-2025-e3e86713eb) Get sources for RPM builds from DistGit repositories -------------------------------------------------------------------------------- Update Information: Add configuration for CentOS SIG DistGit -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 14 2025 Jakub Kadlcik <frostyx@xxxxxxxx> 1.2-1 - Add configuration for CentOS SIG packages -------------------------------------------------------------------------------- ================================================================================ mosquitto-2.0.22-1.el9 (FEDORA-EPEL-2025-226e292288) Open Source MQTT v5/v3.1.x Broker -------------------------------------------------------------------------------- Update Information: Update to 2.0.22 -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 14 2025 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 2.0.22-1 - Update to 2.0.22 - Update for older releases to address sbin dir * Thu Mar 6 2025 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 2.0.21-1 - Update to 2.0.21 * Thu Feb 13 2025 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 2.0.20-5 - Only add openssl-devel-engine for Fedora * Fri Jan 17 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.0.20-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Thu Oct 31 2024 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 2.0.20-3 - Move to building with CMake - Fix libdir in pkgconf files * Thu Oct 31 2024 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 2.0.20-2 - Migrate to sysusers user creation, cleanup scriptlets * Thu Oct 17 2024 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 2.0.20-1 - Update to 2.0.20 * Thu Oct 3 2024 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 2.0.19-1 - Update to 2.0.19 * Sat Sep 28 2024 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 2.0.18-4 - Fix FTBFS (closes rhbz#2300978) * Thu Jul 18 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.0.18-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Thu Jan 25 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.0.18-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.0.18-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2056989 - Incorrect library path in libmosquitto.pc and libmosquittopp.pc https://bugzilla.redhat.com/show_bug.cgi?id=2056989 [ 2 ] Bug #2318146 - CVE-2024-8376 mosquitto: sending specific sequences of packets may trigger memory leak [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2318146 [ 3 ] Bug #2322946 - CVE-2024-10525 mosquitto: heap buffer overflow in my_subscribe_callback [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2322946 -------------------------------------------------------------------------------- ================================================================================ pass-1.7.4-16.el9 (FEDORA-EPEL-2025-20480f68cc) A password manager using standard Unix tools -------------------------------------------------------------------------------- Update Information: Build passmenu on EPEL -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 14 2025 Peter Georg <peter.georg@xxxxxxxxxxxxxxxxxxxxxxxx> - 1.7.4-16 - Build passmenu on EPEL * Mon Jul 14 2025 Peter Georg <peter.georg@xxxxxxxxxxxxxxxxxxxxxxxx> - 1.7.4-15 - Only recommend wl-clipboard if libwayland-client is installed - Only recommend xclip if xorg-x11-server-Xorg is installed * Mon Jan 27 2025 Å?ukasz WojniÅ?owicz <lukasz.wojnilowicz@xxxxxxxxx> - 1.7.4-14 - Set dmenu-wayland and dmenu to Recommends instead of Requires to have a choice to install one or the other or both. Helpful when using Wayland and having xorg-x11-server-Xorg for XWayland purpose only. Resolves: rhbz#2335143 * Fri Jan 17 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.7.4-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Fri Jul 26 2024 Miroslav Suchý <msuchy@xxxxxxxxxx> - 1.7.4-12 - convert license to SPDX * Thu Jul 18 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.7.4-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Thu Jan 25 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.7.4-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.7.4-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Thu Jul 20 2023 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.7.4-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ plantuml-1.2025.4-1.el9 (FEDORA-EPEL-2025-d0ddf2b7fc) Program to generate UML diagram from a text description -------------------------------------------------------------------------------- Update Information: Update to version 1.2025.4 -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 14 2025 blinxen <h-k-81@xxxxxxxxxxx> - 1:1.2025.4-1 - Update to version 1.2025.4 (rhbz#2375331) * Sun Jun 15 2025 blinxen <h-k-81@xxxxxxxxxxx> - 1:1.2025.3-1 - Update to version 1.2025.3 (rhbz#2369629) * Sat Jun 14 2025 blinxen <h-k-81@xxxxxxxxxxx> - 1:1.2025.2-2 - Add runtime dependency on graphviz -------------------------------------------------------------------------------- ================================================================================ root-6.36.02-1.el9 (FEDORA-EPEL-2025-fdd45035e7) Numerical data analysis framework -------------------------------------------------------------------------------- Update Information: ROOT 6.36.02 -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 13 2025 Mattias Ellert <mattias.ellert@xxxxxxxxxxxxx> - 6.36.02-1 - Update to 6.36.02 * Thu Jul 10 2025 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 6.36.00-3 - Rebuilt for libarrow 20 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2378895 - root-6.36.02 is available https://bugzilla.redhat.com/show_bug.cgi?id=2378895 -------------------------------------------------------------------------------- ================================================================================ rust-onefetch-2.25.0-1.el9 (FEDORA-EPEL-2025-20cbe63c89) Command-line Git information tool -------------------------------------------------------------------------------- Update Information: onefetch 2.25.0 There are no changelogs for this release yet; the upstream source diff is https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0. rust-owo-colors 4.2.2 Fixed applying a background color and a text effect (like underline or italic) at the same time. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 8 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.25.0-1 - Update to version 2.25.0; Fixes RHBZ#2376537 * Tue Jul 8 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.24.0-7 - Do not misidentify license.cache.zstd as a license file * Tue Jul 8 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.24.0-6 - No longer loosen MSRV from 1.82.0 to 1.79.0; 1.82+ is everywhere * Tue Jul 8 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.24.0-5 - No longer patch to allow older insta * Tue Jul 8 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.24.0-3 - Expand the Cargo.toml patch, dropping the tomcli dependency -------------------------------------------------------------------------------- References: [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2374517 [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376537 [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376538 [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376539 [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376540 -------------------------------------------------------------------------------- ================================================================================ rust-onefetch-ascii-2.25.0-1.el9 (FEDORA-EPEL-2025-20cbe63c89) Display colorized ascii art to the terminal -------------------------------------------------------------------------------- Update Information: onefetch 2.25.0 There are no changelogs for this release yet; the upstream source diff is https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0. rust-owo-colors 4.2.2 Fixed applying a background color and a text effect (like underline or italic) at the same time. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 6 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.25.0-1 - Update to version 2.25.0; Fixes RHBZ#2376539 * Mon May 12 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.24.0-2 - Remove no-longer-necessary .rpmlintrc file -------------------------------------------------------------------------------- References: [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2374517 [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376537 [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376538 [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376539 [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376540 -------------------------------------------------------------------------------- ================================================================================ rust-onefetch-image-2.25.0-1.el9 (FEDORA-EPEL-2025-20cbe63c89) Display images in the terminal -------------------------------------------------------------------------------- Update Information: onefetch 2.25.0 There are no changelogs for this release yet; the upstream source diff is https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0. rust-owo-colors 4.2.2 Fixed applying a background color and a text effect (like underline or italic) at the same time. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 6 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.25.0-1 - Update to version 2.25.0; Fixes RHBZ#2376538 * Wed May 14 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.24.0-3 - No longer need to patch for old Rust in EPEL9 * Mon May 12 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.24.0-2 - Remove no-longer-necessary .rpmlintrc file -------------------------------------------------------------------------------- References: [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2374517 [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376537 [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376538 [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376539 [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376540 -------------------------------------------------------------------------------- ================================================================================ rust-onefetch-manifest-2.25.0-1.el9 (FEDORA-EPEL-2025-20cbe63c89) Detect and parse manifest files -------------------------------------------------------------------------------- Update Information: onefetch 2.25.0 There are no changelogs for this release yet; the upstream source diff is https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0. rust-owo-colors 4.2.2 Fixed applying a background color and a text effect (like underline or italic) at the same time. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 8 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.25.0-1 - Update to version 2.25.0; Fixes RHBZ#2376540 * Tue May 13 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 2.24.0-2 - Remove no-longer-necessary .rpmlintrc file -------------------------------------------------------------------------------- References: [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2374517 [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376537 [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376538 [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376539 [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376540 -------------------------------------------------------------------------------- ================================================================================ rust-owo-colors-4.2.2-1.el9 (FEDORA-EPEL-2025-20cbe63c89) Zero-allocation terminal colors that'll make people go owo -------------------------------------------------------------------------------- Update Information: onefetch 2.25.0 There are no changelogs for this release yet; the upstream source diff is https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0. rust-owo-colors 4.2.2 Fixed applying a background color and a text effect (like underline or italic) at the same time. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 6 2025 Benjamin A. Beasley <code@xxxxxxxxxxxxxxxxxx> - 4.2.2-1 - Update to version 4.2.2; Fixes RHBZ#2374517 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2374517 [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376537 [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376538 [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376539 [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2376540 -------------------------------------------------------------------------------- ================================================================================ snapd-2.70-1.el9 (FEDORA-EPEL-2025-e020c4ea07) A transactional software package manager -------------------------------------------------------------------------------- Update Information: New upstream release 2.70 FDE: Fix reseal with v1 hook key format FDE: set role in TPM keys AppArmor prompting (experimental): add handling for expired requests or listener in the kernel AppArmor prompting: log the notification protocol version negotiated with the kernel AppArmor prompting: implement notification protocol v5 (manually disabled for now) AppArmor prompting: register listener ID with the kernel and resend notifications after snapd restart (requires protocol v5+) AppArmor prompting: select interface from metadata tags and set request interface accordingly (requires protocol v5+) AppArmor prompting: include request PID in prompt AppArmor prompting: move the max prompt ID file to a subdirectory of the snap run directory AppArmor prompting: avoid race between closing/reading socket fd Confdb (experimental): make save/load hooks mandatory if affecting ephemeral Confdb: clear tx state on failed load Confdb: modify 'snap sign' formats JSON in assertion bodies (e.g. confdb-schema) Confdb: add NestedEphemeral to confdb schemas Confdb: add early concurrency checks Simplify building Arch package Enable snapd.apparmor on Fedora Build snapd snap with libselinux Emit snapd.apparmor warning only when using apparmor backend When running snap, on system key mismatch e.g. due to network attached HOME, trigger and wait for a security profiles regeneration Avoid requiring state lock to get user, warnings, or pending restarts when handling API requests Start/stop ssh.socket for core24+ when enabling/disabling the ssh service Allow providing a different base when overriding snap Modify snap-bootstrap to mount snapd snap directly to /snap Modify snap-bootstrap to mount /lib/{modules,firmware} from snap as fallback Modify core-initrd to use systemctl reboot instead of /sbin/reboot Copy the initramfs 'manifest-initramfs.yaml' to initramfs file creation directory so it can be copied to the kernel snap Build the early initrd from installed ucode packages Create drivers tree when remodeling from UC20/22 to UC24 Load gpio-aggregator module before the helper-service needs it Run 'systemctl start' for mount units to ensure they are run also when unchanged Update godbus version to 'v5 v5.1.0' Add support for POST to /v2/system-info with system-key-mismatch indication from the client Add 'snap sign --update-timestamp' flag to update timestamp before signing Add vfs support for snap-update-ns to use to simulate and evaluate mount sequences Add refresh app awareness debug logging Add snap-bootstrap scan-disk subcommand to be called from udev Add feature to inject proxy store assertions in build image Add OP-TEE bindings, enable by default in ARM and ARM65 builds Fix systemd dependency options target to go under 'unit' section Fix snap-bootstrap reading kernel snap instead of base resulting in bad modeenv Fix a regression during seeding when using early-config LP: #2107443 reset SHELL to /bin/bash in non-classic snaps Make Azure kernels reboot upon panic Fix snap-confine to not drop capabilities if the original user is already root Fix data race when stopping services Fix task dependency issue by temporarily disable re-refresh on prerequisite updates Fix compiling against op-tee on armhf Fix dbx update when not using FDE Fix potential validation set deadlock due to bases waiting on snaps LP: #2104066 Only cancel notices requests on stop/shutdown Interfaces: bool-file | fix gpio glob pattern as required for '[XXXX]*' format Interfaces: system-packages-doc | allow access to /usr/local/share/doc Interfaces: ros-snapd-support interface | added new interface Interfaces: udisks2 | allow chown capability Interfaces: system-observe | allow reading cpu.max Interfaces: serial-port | add ttyMAXX to allowed list Interfaces: modified seccomp template to disallow 'O_NOTIFICATION_PIPE' Interfaces: fwupd | add support for modem-manager plugin Interfaces: gpio-chardev | make unsupported and remove experimental flag to hide this feature until gpio-aggregator is available Interfaces: hardware-random | fix udev match rule Interfaces: timeserver-control | extend to allow timedatectl timesync commands Interfaces: add symlinks backend Interfaces: system key mismatch handling -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 3 2025 Ernest Lotter <ernest.lotter@xxxxxxxxxxxxx> - New upstream release 2.70 - FDE: Fix reseal with v1 hook key format - FDE: set role in TPM keys - AppArmor prompting (experimental): add handling for expired requests or listener in the kernel - AppArmor prompting: log the notification protocol version negotiated with the kernel - AppArmor prompting: implement notification protocol v5 (manually disabled for now) - AppArmor prompting: register listener ID with the kernel and resend notifications after snapd restart (requires protocol v5+) - AppArmor prompting: select interface from metadata tags and set request interface accordingly (requires protocol v5+) - AppArmor prompting: include request PID in prompt - AppArmor prompting: move the max prompt ID file to a subdirectory of the snap run directory - AppArmor prompting: avoid race between closing/reading socket fd - Confdb (experimental): make save/load hooks mandatory if affecting ephemeral - Confdb: clear tx state on failed load - Confdb: modify 'snap sign' formats JSON in assertion bodies (e.g. confdb-schema) - Confdb: add NestedEphemeral to confdb schemas - Confdb: add early concurrency checks - Simplify building Arch package - Enable snapd.apparmor on Fedora - Build snapd snap with libselinux - Emit snapd.apparmor warning only when using apparmor backend - When running snap, on system key mismatch e.g. due to network attached HOME, trigger and wait for a security profiles regeneration - Avoid requiring state lock to get user, warnings, or pending restarts when handling API requests - Start/stop ssh.socket for core24+ when enabling/disabling the ssh service - Allow providing a different base when overriding snap - Modify snap-bootstrap to mount snapd snap directly to /snap - Modify snap-bootstrap to mount /lib/{modules,firmware} from snap as fallback - Modify core-initrd to use systemctl reboot instead of /sbin/reboot - Copy the initramfs 'manifest-initramfs.yaml' to initramfs file creation directory so it can be copied to the kernel snap - Build the early initrd from installed ucode packages - Create drivers tree when remodeling from UC20/22 to UC24 - Load gpio-aggregator module before the helper-service needs it - Run 'systemctl start' for mount units to ensure they are run also when unchanged - Update godbus version to 'v5 v5.1.0' - Add support for POST to /v2/system-info with system-key-mismatch indication from the client - Add 'snap sign --update-timestamp' flag to update timestamp before signing - Add vfs support for snap-update-ns to use to simulate and evaluate mount sequences - Add refresh app awareness debug logging - Add snap-bootstrap scan-disk subcommand to be called from udev - Add feature to inject proxy store assertions in build image - Add OP-TEE bindings, enable by default in ARM and ARM64 builds - Fix systemd dependency options target to go under 'unit' section - Fix snap-bootstrap reading kernel snap instead of base resulting in bad modeenv - Fix a regression during seeding when using early-config - LP: #2107443 reset SHELL to /bin/bash in non-classic snaps - Make Azure kernels reboot upon panic - Fix snap-confine to not drop capabilities if the original user is already root - Fix data race when stopping services - Fix task dependency issue by temporarily disable re-refresh on prerequisite updates - Fix compiling against op-tee on armhf - Fix dbx update when not using FDE - Fix potential validation set deadlock due to bases waiting on snaps - LP: #2104066 Only cancel notices requests on stop/shutdown - Interfaces: bool-file | fix gpio glob pattern as required for '[XXXX]*' format - Interfaces: system-packages-doc | allow access to /usr/local/share/doc - Interfaces: ros-snapd-support interface | added new interface - Interfaces: udisks2 | allow chown capability - Interfaces: system-observe | allow reading cpu.max - Interfaces: serial-port | add ttyMAXX to allowed list - Interfaces: modified seccomp template to disallow 'O_NOTIFICATION_PIPE' - Interfaces: fwupd | add support for modem-manager plugin - Interfaces: gpio-chardev | make unsupported and remove experimental flag to hide this feature until gpio-aggregator is available - Interfaces: hardware-random | fix udev match rule - Interfaces: timeserver-control | extend to allow timedatectl timesync commands - Interfaces: add symlinks backend - Interfaces: system key mismatch handling * Tue Apr 8 2025 Ernest Lotter <ernest.lotter@xxxxxxxxxxxxx> - New upstream release 2.69 - FDE: re-factor listing of the disks based on run mode model and model to correctly resolve paths - FDE: run snapd from snap-failure with the correct keyring mode - Snap components: allow remodeling back to an old snap revision that includes components - Snap components: fix remodel to a kernel snap that is already installed on the system, but not the current kernel due to a previous remodel. - Snap components: fix for snapctl inputs that can crash snapd - Confdb (experimental): load ephemeral data when reading data via snapctl get - Confdb (experimental): load ephemeral data when reading data via snap get - Confdb (experimental): rename {plug}-view-changed hook to observe- view-{plug} - Confdb (experimental): rename confdb assertion to confdb-schema - Confdb (experimental): change operator grouping in confdb-control assertion - Confdb (experimental): add confdb-control API - AppArmor: extend the probed features to include the presence of files, as well as directories - AppArmor prompting (experimental): simplify the listener - AppArmor metadata tagging (disabled): probe parser support for tags - AppArmor metadata tagging (disabled): implement notification protocol v5 - Confidential VMs: sysroot.mount is now dynamically created by snap-bootstrap instead of being a static file in the initramfs - Confidential VMs: Add new implementation of snap integrity API - Non-suid snap-confine: first phase to replace snap-confine suid with capabilities to achieve the required permissions - Initial changes for dynamic security profiles updates - Provide snap icon fallback for /v2/icons without requiring network access at runtime - Add eMMC gadget update support - Support reexec when using /usr/libexec/snapd on the host (Arch Linux, openSUSE) - Auto detect snap mount dir location on unknown distributions - Modify snap-confine AppArmor template to allow all glibc HWCAPS subdirectories to prevent launch errors - LP: #2102456 update secboot to bf2f40ea35c4 and modify snap- bootstrap to remove usage of go templates to reduce size by 4MB - Fix snap-bootstrap to mount kernel snap from /sysroot/writable/system-data - LP: #2106121 fix snap-bootstrap busy loop - Fix encoding of time.Time by using omitzero instead of omitempty (on go 1.24+) - Fix setting snapd permissions through permctl for openSUSE - Fix snap struct json tags typo - Fix snap pack configure hook permissions check incorrect file mode - Fix gadget snap reinstall to honor existing sizes of partitions - Fix to update command line when re-executing a snapd tool - Fix 'snap validate' of specific missing newline and add error on missed case of 'snap validate --refresh' without another action - Workaround for snapd-confine time_t size differences between architectures - Disallow pack and install of snapd, base and os with specific configure hooks - Drop udev build dependency that is no longer required and add missing systemd-dev dependency - Build snap-bootstrap with nomanagers tag to decrease size by 1MB - Interfaces: polkit | support custom polkit rules - Interfaces: opengl | LP: #2088456 fix GLX on nvidia when xorg is confined by AppArmor - Interfaces: log-observe | add missing udev rule - Interfaces: hostname-control | fix call to hostnamectl in core24 - Interfaces: network-control | allow removing created network namespaces - Interfaces: scsi-generic | re-enable base declaration for scsi- generic plug - Interfaces: u2f | add support for Arculus AuthentiKey * Wed Apr 2 2025 Ernest Lotter <ernest.lotter@xxxxxxxxxxxxx> - New upstream release 2.68.4 - Snap components: LP: #2104933 workaround for classic 24.04/24.10 models that incorrectly specify core22 instead of core24 - Update build dependencies --------------------------------------------------------------------------------
-- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
