The following Fedora EPEL 10.0 Security updates need testing: Age URL 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-dc43510de4 libopenmpt-0.8.3-1.el10_0 The following builds have been pushed to Fedora EPEL 10.0 updates-testing certbot-4.2.0-1.el10_0 lemonldap-ng-2.21.3-1.el10_0 openvpn-2.7_beta1-1.el10_0 perl-Cairo-GObject-1.005-22.el10_0 perl-Cpanel-JSON-XS-4.40-1.el10_0 perl-Text-CSV-2.06-1.el10_0 ruby-build-20250908-1.el10_0 rust-errno-0.3.14-1.el10_0 voms-api-java-3.3.6-2.el10_0 Details about builds: ================================================================================ certbot-4.2.0-1.el10_0 (FEDORA-EPEL-2025-87c2cc6e31) A free, automated certificate authority client -------------------------------------------------------------------------------- Update Information: Update to 4.2.0 -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 9 2025 Jonathan Wright <jonathan@xxxxxxxxxxxxx> - 4.2.0-1 - update to 4.2.0 * Fri Aug 15 2025 Python Maint <python-maint@xxxxxxxxxx> - 4.1.1-3 - Rebuilt for Python 3.14.0rc2 bytecode -------------------------------------------------------------------------------- ================================================================================ lemonldap-ng-2.21.3-1.el10_0 (FEDORA-EPEL-2025-e522bf164d) Web Single Sign On (SSO) and Access Management -------------------------------------------------------------------------------- Update Information: See https://projects.ow2.org/view/lemonldap-ng/lemonldap-ng-2-21-3-is-out/ -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 5 2025 Clement Oudot <clem.oudot@xxxxxxxxx> - 2.21.3-1 - Update to 2.21.3 * Thu Jul 24 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.21.2-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ openvpn-2.7_beta1-1.el10_0 (FEDORA-EPEL-2025-f64a0e3a2b) A full-featured TLS VPN solution -------------------------------------------------------------------------------- Update Information: Update to upstream 2.7_beta1 release -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 9 2025 David Sommerseth <dazo@xxxxxxxxxxxx> - 2.7_beta1 - Update to upstream 2.7_beta1 release * Fri Aug 1 2025 Frank Lichtenheld <frank@xxxxxxxxxxxxxxx> - 2.7_alpha3 - Update to upstream 2.7_alpha3 release * Mon Jun 23 2025 Frank Lichtenheld <frank@xxxxxxxxxxxxxxx> - 2.7_alpha2 - Update to upstream 2.7_alpha2 release * Fri May 30 2025 Frank Lichtenheld <frank@xxxxxxxxxxxxxxx> - 2.7_alpha1 - Update to upstream 2.7_alpha1 release * Mon May 26 2025 David Sommerseth <dazo@xxxxxxxxxxxx> - 2.7-20250526git4a48841da2d4179a96348994f841661ec9e5ce1d - Update to upstream git master commit 4a48841da2d4179a96348994f841661ec9e5ce1d * Tue May 20 2025 David Sommerseth <dazo@xxxxxxxxxxxx> - 2.7-20250520gitd1045d1 - Update to upstream git master commit d1045d19bf4ea1f717edac7c67f20e9d8eb3a261 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2393453 - undefined symbol: EVP_MD_CTX_get_size_ex, version OPENSSL_3.4.0 https://bugzilla.redhat.com/show_bug.cgi?id=2393453 -------------------------------------------------------------------------------- ================================================================================ perl-Cairo-GObject-1.005-22.el10_0 (FEDORA-EPEL-2025-832646e095) Integrate Cairo into the Glib type system -------------------------------------------------------------------------------- Update Information: This update brings a new perl-Cairo-GObject package, Perl bindings to Cairo library. -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 25 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.005-22 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Mon Jul 7 2025 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 1.005-21 - Perl 5.42 rebuild * Mon May 12 2025 Petr Pisar <ppisar@xxxxxxxxxx> - 1.005-20 - Correct a license tag to "LGPL-2.1-or-later" - Package the tests * Fri Jan 17 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.005-19.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Mon Sep 2 2024 Miroslav Suchý <msuchy@xxxxxxxxxx> - 1.005-18.1 - convert license to SPDX * Thu Jul 18 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.005-17.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Mon Jun 10 2024 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 1.005-16.1 - Perl 5.40 rebuild * Thu Jan 25 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.005-15.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 1.005-14.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2369999 - Add perl-Cairo-GObject to EPEL 10 and EPEL 10.0 https://bugzilla.redhat.com/show_bug.cgi?id=2369999 -------------------------------------------------------------------------------- ================================================================================ perl-Cpanel-JSON-XS-4.40-1.el10_0 (FEDORA-EPEL-2025-fc452a4a30) JSON::XS for Cpanel, fast and correct serializing -------------------------------------------------------------------------------- Update Information: This update is the latest upstream release of the Cpanel::JSON::XS module, bringing many bug fixes and enhancements since the original EPEL package release. Amongst the bug fixes is one to fix an integer overflow issue that could be triggered by a specially-crafted JSON input, which could lead to a crash in the program parsing the JSON (CVE-2025-40929). -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 9 2025 Paul Howarth <paul@xxxxxxxxxxxx> - 4.40-1 - Update to 4.40 - Fix overflow with overlong numbers, fuzzing only (CVE-2025-40929) - Detect more malformed numbers, with two decimal points - Pin Github actions to latest @v via pinact run -u * Fri Jul 25 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.39-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Tue Jul 8 2025 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 4.39-4 - Perl 5.42 re-rebuild of bootstrapped packages * Mon Jul 7 2025 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 4.39-3 - Perl 5.42 rebuild * Sat Jan 18 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.39-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Fri Dec 13 2024 Paul Howarth <paul@xxxxxxxxxxxx> - 4.39-1 - Update to 4.39 - Fix Windows -Dusequadmath (GH#229, GH#235) - Fix inconsistent behavior between decoding escaped and unescaped surrogates, and escaped non-characters vs. non-escaped non-characters; now aligned to JSON::PP (GH#227, GH#233) - Add type_all_string tests (GH#236) - Silence UV to char cast warnings (GH#232) - Fix MSVC preprocessor errors (GH#232) - Fix -Wformat warnings on Windows (GH#228) - Clarify BigInt decoding (GH#226) - Drop EL-7 support - Use %{make_build} and %{make_install} * Thu Jul 18 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 4.38-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Wed Jun 12 2024 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 4.38-3 - Perl 5.40 re-rebuild of bootstrapped packages * Tue Jun 11 2024 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 4.38-2 - Perl 5.40 rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2393915 - CVE-2025-40929 perl-Cpanel-JSON-XS: integer buffer overflow causing a segfault when parsing crafted JSON [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2393915 -------------------------------------------------------------------------------- ================================================================================ perl-Text-CSV-2.06-1.el10_0 (FEDORA-EPEL-2025-f6a6bc79fe) Comma-separated values manipulator -------------------------------------------------------------------------------- Update Information: First EPEL 10 build. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2025 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 2.06-1 - 2.06 bump (rhbz#2349284) * Fri Jul 25 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.05-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sat Jan 18 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.04-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Fri Jul 19 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.04-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Mon May 20 2024 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 2.04-1 - 2.04 bump (rhbz#2252556) * Thu Jan 25 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.03-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2.03-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Sep 11 2023 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 2.03-1 - 2.03 bump (rhbz#2231263) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2394086 - Please branch and build perl-Text-CSV for EPEL 10 https://bugzilla.redhat.com/show_bug.cgi?id=2394086 -------------------------------------------------------------------------------- ================================================================================ ruby-build-20250908-1.el10_0 (FEDORA-EPEL-2025-3bc0496bf1) Compile and install Ruby -------------------------------------------------------------------------------- Update Information: Update to 20250908 -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 8 2025 Packit <hello@xxxxxxxxxx> - 20250908-1 - Update to 20250908 upstream release - Resolves: rhbz#2393922 -------------------------------------------------------------------------------- ================================================================================ rust-errno-0.3.14-1.el10_0 (FEDORA-EPEL-2025-edfa3cc1fd) Cross-platform interface to the errno variable -------------------------------------------------------------------------------- Update Information: Update to version 0.3.14. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 9 2025 Fabio Valentini <decathorpe@xxxxxxxxx> - 0.3.14-1 - Update to version 0.3.14; Fixes RHBZ#2394005 * Fri Jul 25 2025 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.3.13-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ voms-api-java-3.3.6-2.el10_0 (FEDORA-EPEL-2025-047e375bec) Virtual Organization Membership Service Java API -------------------------------------------------------------------------------- Update Information: Enable tests in package build. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 8 2025 Mattias Ellert <mattias.ellert@xxxxxxxxxxxxx> - 3.3.6-2 - Include upstream's scripts for generating test certificates - Enable tests again --------------------------------------------------------------------------------
-- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
