Fedora 40 Update: jpegxl-0.8.4-1.fc40
Fedora 40 Update: firefox-135.0-1.fc40
Fedora 41 Update: rustup-1.27.1-6.fc41
Fedora 41 Update: s390utils-2.35.0-2.fc41
Fedora 41 Update: rust-openssl-sys-0.9.105-1.fc41
Fedora 41 Update: rust-sequoia-keyring-linter-1.0.1-10.fc41
Fedora 41 Update: rust-tealdeer-1.7.1-3.fc41
Fedora 41 Update: rust-sequoia-octopus-librnp-1.10.0-6.fc41
Fedora 41 Update: rust-sevctl-0.6.0-4.fc41
Fedora 41 Update: rust-snphost-0.5.0-3.fc41
Fedora 41 Update: rust-sequoia-sq-1.1.0-4.fc41
Fedora 41 Update: rust-pore-0.1.17-5.fc41
Fedora 41 Update: rust-sequoia-sop-0.36.0-3.fc41
Fedora 41 Update: rust-sequoia-sqv-1.2.1-6.fc41
Fedora 41 Update: rust-nu-0.99.1-7.fc41
Fedora 41 Update: rust-sequoia-policy-config-0.7.0-3.fc41
Fedora 41 Update: rust-coreos-installer-0.23.0-2.fc41
Fedora 41 Update: rust-cargo-vendor-filterer-0.5.17-2.fc41
Fedora 41 Update: rust-oo7-cli-0.3.3-4.fc41
Fedora 41 Update: rust-rpm-sequoia-1.7.0-5.fc41
Fedora 41 Update: rust-openssl-0.10.70-1.fc41
Fedora 41 Update: rust-gst-plugin-reqwest-0.13.3-3.fc41
Fedora 41 Update: rust-eif_build-0.2.1-3.fc41
Fedora 41 Update: rust-afterburn-5.7.0-3.fc41
Fedora 41 Update: rust-crypto-auditing-agent-0.2.3-2.fc41
Fedora 41 Update: python-cryptography-43.0.0-4.fc41
Fedora 41 Update: fido-device-onboard-0.5.1-2.fc41
Fedora 41 Update: keyring-ima-signer-0.1.0-17.fc41
Fedora 41 Update: libkrun-1.10.1-2.fc41
Fedora 41 Update: keylime-agent-rust-0.2.7-4.fc41
Fedora 41 Update: gotify-desktop-1.3.7-4.fc41
Fedora 41 Update: envision-2.0.0-4.20241209git2.0.0.fc41
Fedora 41 Update: clevis-pin-tpm2-0.5.3-9.fc41
Fedora 41 Update: dbus-parsec-0.5.0-3.fc41
Fedora 41 Update: python3.12-3.12.9-1.fc41
Fedora 41 Update: vaultwarden-1.33.0-1.fc41
Fedora 41 Update: php-phpseclib-2.0.48-1.fc41
Fedora 41 Update: stalld-1.19.8-1.fc41
Fedora 41 Update: golang-github-nvidia-container-toolkit-1.17.3-1.fc41
[SECURITY] Fedora 40 Update: jpegxl-0.8.4-1.fc40
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-35a8167b88
2025-02-08 02:23:59.225610+00:00
--------------------------------------------------------------------------------
Name : jpegxl
Product : Fedora 40
Version : 0.8.4
Release : 1.fc40
URL : https://jpeg.org/jpegxl/
Summary : JPEG XL image format reference implementation
Description :
This package contains a reference implementation of JPEG XL (encoder and
decoder).
--------------------------------------------------------------------------------
Update Information:
Update to 0.8.4
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 30 2025 SÃrgio M. Basto [sergio@serjux.com] - 1:0.8.4-1
- Update to 0.8.4
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-35a8167b88' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
[SECURITY] Fedora 40 Update: firefox-135.0-1.fc40
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-2e627d0672
2025-02-08 02:23:59.225616+00:00
--------------------------------------------------------------------------------
Name : firefox
Product : Fedora 40
Version : 135.0
Release : 1.fc40
URL : https://www.mozilla.org/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.
--------------------------------------------------------------------------------
Update Information:
Updated to latest upstream (135.0)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 4 2025 Martin Stransky [stransky@redhat.com] - 135.0-1
- Updated to 135.0
* Tue Jan 28 2025 Martin Stransky [stransky@redhat.com] - 134.0.2-2
- Call restorecon for widevine only (rhbz#2342243)
* Wed Jan 22 2025 Martin Stransky [stransky@redhat.com] - 134.0.2-1
- Updated to 134.0.2
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-2e627d0672' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rustup-1.27.1-6.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rustup
Product : Fedora 41
Version : 1.27.1
Release : 6.fc41
URL : https://github.com/rust-lang/rustup
Summary : Manage multiple rust installations with ease
Description :
Manage multiple rust installations with ease.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.27.1-6
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.27.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: s390utils-2.35.0-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : s390utils
Product : Fedora 41
Version : 2.35.0
Release : 2.fc41
URL : https://github.com/ibm-s390-linux/s390-tools
Summary : Utilities and daemons for IBM z Systems
Description :
This is a meta package for installing the default s390-tools sub packages.
If you do not need all default sub packages, it is recommended to install the
required sub packages separately.
The s390utils packages contain a set of user space utilities that should to
be used together with the zSeries (s390) Linux kernel and device drivers.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 2:2.35.0-2
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-openssl-sys-0.9.105-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-openssl-sys
Product : Fedora 41
Version : 0.9.105
Release : 1.fc41
URL : https://crates.io/crates/openssl-sys
Summary : FFI bindings to OpenSSL
Description :
FFI bindings to OpenSSL.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 5 2025 Fabio Valentini [decathorpe@gmail.com] - 0.9.105-1
- Update to version 0.9.105; Fixes RHBZ#2343422
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.9.104-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-sequoia-keyring-linter-1.0.1-10.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-sequoia-keyring-linter
Product : Fedora 41
Version : 1.0.1
Release : 10.fc41
URL : https://crates.io/crates/sequoia-keyring-linter
Summary : Linter for keyrings
Description :
A linter for keyrings.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.0.1-10
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.0.1-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-tealdeer-1.7.1-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-tealdeer
Product : Fedora 41
Version : 1.7.1
Release : 3.fc41
URL : https://crates.io/crates/tealdeer
Summary : Fetch and show tldr help pages for many CLI commands
Description :
Fetch and show tldr help pages for many CLI commands. Full featured
offline client with caching support.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.7.1-3
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.7.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-sequoia-octopus-librnp-1.10.0-6.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-sequoia-octopus-librnp
Product : Fedora 41
Version : 1.10.0
Release : 6.fc41
URL : https://crates.io/crates/sequoia-octopus-librnp
Summary : Reimplementation of RNP's interface using Sequoia for use with Thunderbird
Description :
Reimplementation of RNP's interface using Sequoia for use with
Thunderbird.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.10.0-6
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.10.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-sevctl-0.6.0-4.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-sevctl
Product : Fedora 41
Version : 0.6.0
Release : 4.fc41
URL : https://crates.io/crates/sevctl
Summary : Administrative utility for AMD SEV
Description :
Administrative utility for AMD SEV.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.6.0-4
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.6.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-snphost-0.5.0-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-snphost
Product : Fedora 41
Version : 0.5.0
Release : 3.fc41
URL : https://crates.io/crates/snphost
Summary : Administrative utility for AMD SEV-SNP
Description :
Administrative utility for AMD SEV-SNP.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.5.0-3
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.5.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-sequoia-sq-1.1.0-4.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-sequoia-sq
Product : Fedora 41
Version : 1.1.0
Release : 4.fc41
URL : https://crates.io/crates/sequoia-sq
Summary : Command-line frontends for Sequoia
Description :
Command-line frontends for Sequoia.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.1.0-4
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.1.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Tue Jan 7 2025 Fabio Valentini [decathorpe@gmail.com] - 1.1.0-2
- Stop skipping tests that no longer need to be skipped
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-pore-0.1.17-5.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-pore
Product : Fedora 41
Version : 0.1.17
Release : 5.fc41
URL : https://crates.io/crates/pore
Summary : Performance oriented reimplementation of repo
Description :
A performance oriented reimplementation of repo.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.1.17-5
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.1.17-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-sequoia-sop-0.36.0-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-sequoia-sop
Product : Fedora 41
Version : 0.36.0
Release : 3.fc41
URL : https://crates.io/crates/sequoia-sop
Summary : Implementation of the Stateless OpenPGP Interface using Sequoia
Description :
An implementation of the Stateless OpenPGP Interface using Sequoia.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.36.0-3
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.36.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-sequoia-sqv-1.2.1-6.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-sequoia-sqv
Product : Fedora 41
Version : 1.2.1
Release : 6.fc41
URL : https://crates.io/crates/sequoia-sqv
Summary : Simple OpenPGP signature verification program
Description :
A simple OpenPGP signature verification program.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.2.1-6
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.2.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-nu-0.99.1-7.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-nu
Product : Fedora 41
Version : 0.99.1
Release : 7.fc41
URL : https://crates.io/crates/nu
Summary : New type of shell
Description :
A new type of shell.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.99.1-7
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.99.1-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-sequoia-policy-config-0.7.0-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-sequoia-policy-config
Product : Fedora 41
Version : 0.7.0
Release : 3.fc41
URL : https://crates.io/crates/sequoia-policy-config
Summary : Configure Sequoia using a configuration file
Description :
Configure Sequoia using a configuration file.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.7.0-3
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.7.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-coreos-installer-0.23.0-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-coreos-installer
Product : Fedora 41
Version : 0.23.0
Release : 2.fc41
URL : https://crates.io/crates/coreos-installer
Summary : Installer for Fedora CoreOS and RHEL CoreOS
Description :
coreos-installer installs Fedora CoreOS or RHEL CoreOS to bare-metal
machines (or, occasionally, to virtual machines).
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.23.0-2
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-cargo-vendor-filterer-0.5.17-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-cargo-vendor-filterer
Product : Fedora 41
Version : 0.5.17
Release : 2.fc41
URL : https://crates.io/crates/cargo-vendor-filterer
Summary : Cargo vendor, but with filtering for platforms and more
Description :
`cargo vendor`, but with filtering for platforms and more.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.5.17-2
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-oo7-cli-0.3.3-4.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-oo7-cli
Product : Fedora 41
Version : 0.3.3
Release : 4.fc41
URL : https://crates.io/crates/oo7-cli
Summary : System keyring access from the terminal
Description :
System keyring access from the terminal.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.3.3-4
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.3.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-rpm-sequoia-1.7.0-5.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-rpm-sequoia
Product : Fedora 41
Version : 1.7.0
Release : 5.fc41
URL : https://crates.io/crates/rpm-sequoia
Summary : Implementation of the RPM PGP interface using Sequoia
Description :
An implementation of the RPM PGP interface using Sequoia.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.7.0-5
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.7.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-openssl-0.10.70-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-openssl
Product : Fedora 41
Version : 0.10.70
Release : 1.fc41
URL : https://crates.io/crates/openssl
Summary : OpenSSL bindings
Description :
OpenSSL bindings.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 5 2025 Fabio Valentini [decathorpe@gmail.com] - 0.10.70-1
- Update to version 0.10.70; Fixes RHBZ#2343421
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-gst-plugin-reqwest-0.13.3-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-gst-plugin-reqwest
Product : Fedora 41
Version : 0.13.3
Release : 3.fc41
URL : https://crates.io/crates/gst-plugin-reqwest
Summary : GStreamer reqwest HTTP Source Plugin
Description :
GStreamer reqwest HTTP Source Plugin.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.13.3-3
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.13.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-eif_build-0.2.1-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-eif_build
Product : Fedora 41
Version : 0.2.1
Release : 3.fc41
URL : https://crates.io/crates/eif_build
Summary : CLI tool to create EIF files for AWS Nitro Enclaves
Description :
This CLI tool provides a low level path to assemble an enclave image
format (EIF) file used in AWS Nitro Enclaves.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.2.1-3
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.2.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-afterburn-5.7.0-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-afterburn
Product : Fedora 41
Version : 5.7.0
Release : 3.fc41
URL : https://crates.io/crates/afterburn
Summary : Simple cloud provider agent
Description :
A simple cloud provider agent.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 5.7.0-3
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 5.7.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-crypto-auditing-agent-0.2.3-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : rust-crypto-auditing-agent
Product : Fedora 41
Version : 0.2.3
Release : 2.fc41
URL : https://crates.io/crates/crypto-auditing-agent
Summary : Event collector agent for crypto-auditing project
Description :
Event collector agent for crypto-auditing project.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.2.3-2
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: python-cryptography-43.0.0-4.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : python-cryptography
Product : Fedora 41
Version : 43.0.0
Release : 4.fc41
URL : https://cryptography.io/en/latest/
Summary : PyCA's cryptography library
Description :
cryptography is a package designed to expose cryptographic primitives and
recipes to Python developers.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 43.0.0-4
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: fido-device-onboard-0.5.1-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : fido-device-onboard
Product : Fedora 41
Version : 0.5.1
Release : 2.fc41
URL : https://github.com/fdo-rs/fido-device-onboard-rs
Summary : A rust implementation of the FIDO Device Onboard Specification
Description :
A rust implementation of the FIDO Device Onboard Specification.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.5.1-2
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: keyring-ima-signer-0.1.0-17.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : keyring-ima-signer
Product : Fedora 41
Version : 0.1.0
Release : 17.fc41
URL : https://github.com/fedora-iot/keyring-ima-signer/
Summary : An IMA file signing tool using the kernel keyring
Description :
The IMA (Integrity Measurement Architecture) is a key component of the
Linux integrity subsystem designed to ensure integrity, authenticity,
and confidentiality of systems including hardware root of trusts (TPM).
This tool allows signing of files in userspace, inclusding options of
including the signature in xattr or a .sig file, using signing keys
stored in the kernel keyring to ensure they're not recoverable.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.1.0-17
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Fri Jan 17 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.1.0-16
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: libkrun-1.10.1-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : libkrun
Product : Fedora 41
Version : 1.10.1
Release : 2.fc41
URL : https://github.com/containers/libkrun
Summary : Dynamic library providing Virtualization-based process isolation capabilities
Description :
Dynamic library providing Virtualization-based process isolation capabilities.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.10.1-2
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: keylime-agent-rust-0.2.7-4.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : keylime-agent-rust
Product : Fedora 41
Version : 0.2.7
Release : 4.fc41
URL : https://github.com/keylime/rust-keylime/
Summary : Rust agent for Keylime
Description :
Rust agent for Keylime
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.2.7-4
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: gotify-desktop-1.3.7-4.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : gotify-desktop
Product : Fedora 41
Version : 1.3.7
Release : 4.fc41
URL : https://github.com/desbma/gotify-desktop
Summary : Small Gotify daemon to receive and forward messages
Description :
Small Gotify daemon to receive messages and forward them as desktop notifications. Read Gotify messages, and forward them as standard desktop notification. Forward message priority. Auto reconnect if server connection is lost and get missed messages. Automatically download, cache, and show app icons.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 1.3.7-4
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Fri Jan 17 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.3.7-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: envision-2.0.0-4.20241209git2.0.0.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : envision
Product : Fedora 41
Version : 2.0.0
Release : 4.20241209git2.0.0.fc41
URL : https://gitlab.com/gabmus/envision
Summary : UI for building, configuring, and running Monado/WiVRn
Description :
UI for building, configuring, and running Monado, the open source
OpenXR runtime.
This is still highly experimental software, while it's unlikely that
anything bad will happen, it's still unstable and there is no guarantee
that it will work on your system, with your particular hardware. If you
encounter any problems while using the app, make sure to open an issue.
Also consider that due to the unstable nature of the app, it's possible
to encounter unexpected behavior that while in VR might cause motion
sickness or physical injury. Be very careful while in VR using this app!
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 2.0.0-4
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Thu Jan 16 2025 Fedora Release Engineering [releng@fedoraproject.org] - 2.0.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: clevis-pin-tpm2-0.5.3-9.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : clevis-pin-tpm2
Product : Fedora 41
Version : 0.5.3
Release : 9.fc41
URL : https://github.com/fedora-iot/clevis-pin-tpm2/
Summary : Clevis PIN for unlocking with TPM2 supporting Authorized Policies
Description :
Clevis PIN for unlocking with TPM2 supporting Authorized Policies.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.5.3-9
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Thu Jan 16 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.5.3-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: dbus-parsec-0.5.0-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f8be7978e3
2025-02-08 02:15:29.328151+00:00
--------------------------------------------------------------------------------
Name : dbus-parsec
Product : Fedora 41
Version : 0.5.0
Release : 3.fc41
URL : https://github.com/fedora-iot/dbus-parsec
Summary : DBus PARSEC interface
Description :
DBus PARSEC interface.
--------------------------------------------------------------------------------
Update Information:
Update the openssl crate to version 0.10.70 and the openssl-sys crate to version
0.9.105.
This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and rebuilds of all
packages that statically link the openssl crate.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 6 2025 Fabio Valentini [decathorpe@gmail.com] - 0.5.0-3
- Rebuild for openssl crate >= v0.10.70 (RUSTSEC-2025-0004)
* Thu Jan 16 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.5.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343479 - CVE-2025-0977 rust-openssl: ssl::select_next_proto use after free [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2343479
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f8be7978e3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: python3.12-3.12.9-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-212be26bd1
2025-02-08 02:15:29.328145+00:00
--------------------------------------------------------------------------------
Name : python3.12
Product : Fedora 41
Version : 3.12.9
Release : 1.fc41
URL : https://www.python.org/
Summary : Version 3.12 of the Python interpreter
Description :
Python 3.12 is an accessible, high-level, dynamically typed, interpreted
programming language, designed with an emphasis on code readability.
It includes an extensive standard library, and has a vast ecosystem of
third-party libraries.
The python3.12 package provides the "python3.12" executable: the reference
interpreter for the Python language, version 3.
The majority of its standard library is provided in the python3.12-libs package,
which should be installed automatically along with python3.12.
The remaining parts of the Python standard library are broken out into the
python3.12-tkinter and python3.12-test packages, which may need to be installed
separately.
Documentation for Python is provided in the python3.12-docs package.
Packages containing additional libraries for Python are generally named with
the "python3.12-" prefix.
--------------------------------------------------------------------------------
Update Information:
Update to 3.12.9
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 4 2025 Charalampos Stratakis [cstratak@redhat.com] - 3.12.9-1
- Update to 3.12.9
- Security fix for CVE-2025-0938
- Fixes: rhbz#2343275
* Sat Feb 1 2025 Björn Esser [besser82@fedoraproject.org] - 3.12.8-4
- Add explicit BR: libxcrypt-devel
* Sat Jan 18 2025 Fedora Release Engineering [releng@fedoraproject.org] - 3.12.8-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2343275 - CVE-2025-0938 python3.12: URL parser allowed square brackets in domain names [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2343275
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-212be26bd1' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
[SECURITY] Fedora 41 Update: vaultwarden-1.33.0-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-41f4056b0e
2025-02-08 02:15:29.328076+00:00
--------------------------------------------------------------------------------
Name : vaultwarden
Product : Fedora 41
Version : 1.33.0
Release : 1.fc41
URL : https://github.com/dani-garcia/vaultwarden
Summary : Unofficial Bitwarden compatible server
Description :
Unofficial Bitwarden compatible server.
--------------------------------------------------------------------------------
Update Information:
update to 1.33.0
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 30 2025 Jonathan Wright [jonathan@almalinux.org] - 1.33.0-1
- update to 1.33.0 rhbz#2342073
Fix GHSA-f7r5-w49x-gxm3 Getting access to the Admin Panel via CSRF
Fix CVE-2025-24364 RCE in the admin panel
Fix CVE-2025-24365 escalation of privilege via variable confusion in OrgHeaders trait
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2342348 - CVE-2025-24365 vaultwarden: vaultwarden allows escalation of privilege via variable confusion in OrgHeaders trait [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2342348
[ 2 ] Bug #2342353 - CVE-2025-24364 vaultwarden: vaultwarden allows RCE in the admin panel [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2342353
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-41f4056b0e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: php-phpseclib-2.0.48-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-91d6e174d9
2025-02-08 02:15:29.328066+00:00
--------------------------------------------------------------------------------
Name : php-phpseclib
Product : Fedora 41
Version : 2.0.48
Release : 1.fc41
URL : https://github.com/phpseclib/phpseclib
Summary : PHP Secure Communications Library
Description :
MIT-licensed pure-PHP implementations of an arbitrary-precision integer
arithmetic library, fully PKCS#1 (v2.1) compliant RSA, DES, 3DES, RC4,
Rijndael, AES, Blowfish, Twofish, SSH-1, SSH-2, SFTP, and X.509
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2023-52892, CVE-2024-27354
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 30 2025 Artur Frenszek-Iwicki [fedora@svgames.pl] - 2.0.48-1
- Update to v2.0.48
* Fri Jul 19 2024 Fedora Release Engineering [releng@fedoraproject.org] - 2.0.44-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Thu Jan 25 2024 Fedora Release Engineering [releng@fedoraproject.org] - 2.0.44-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering [releng@fedoraproject.org] - 2.0.44-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2294674 - CVE-2023-52892 php-phpseclib: php-seclib: Incorrect allowed input via Subject Alternative Name fields [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2294674
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-91d6e174d9' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: stalld-1.19.8-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-3dc53b7f76
2025-02-08 02:15:29.327890+00:00
--------------------------------------------------------------------------------
Name : stalld
Product : Fedora 41
Version : 1.19.8
Release : 1.fc41
URL : https://gitlab.com/rt-linux-tools/stalld/stalld.git
Summary : Daemon that finds starving tasks and gives them a temporary boost
Description :
The stalld program monitors the set of system threads,
looking for threads that are ready-to-run but have not
been given processor time for some threshold period.
When a starving thread is found, it is given a temporary
boost using the SCHED_DEADLINE policy. The default is to
allow 10 microseconds of runtime for 1 second of clock time.
--------------------------------------------------------------------------------
Update Information:
Add code to deal with sched_setattr() not being exported in glibc 2.41
Address CVE-2024-54159 denial of services via symlink attack
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 28 2025 Clark Williams [williams@redhat.com] - 1.19.8
- Added glibc41 fix to source tree, removed patch
- stalld.h: fix prototype mis-match with cleanup_regex()
* Tue Jan 21 2025 Clark Williams [williams@redhat.com] - 1.19.7
- stalld.c: use a more reasonable size for reading /proc/stat
- systemd/Makefile: remove typo in uninstall line
- Makefile: change modes on throttled and stalld
- throttlectl: clean up throttling script due to reported CVE-2024-54159
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.19.6-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2329810 - CVE-2024-54159 stalld: denial of service [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2329810
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-3dc53b7f76' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: golang-github-nvidia-container-toolkit-1.17.3-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-a15b07073f
2025-02-08 02:15:29.327848+00:00
--------------------------------------------------------------------------------
Name : golang-github-nvidia-container-toolkit
Product : Fedora 41
Version : 1.17.3
Release : 1.fc41
URL : https://github.com/NVIDIA/nvidia-container-toolkit
Summary : Build and run containers leveraging NVIDIA GPUs
Description :
The NVIDIA Container Toolkit allows users to build and run NVIDIA GPU
accelerated containers. The toolkit includes a container runtime library and
utilities to automatically configure containers to leverage NVIDIA GPUs.
--------------------------------------------------------------------------------
Update Information:
Update to 1.17.3
Fixes CVE-2024-0134 or GHSA-7jm9-xpwx-v999
Fixes CVE-2024-0135 or GHSA-9v84-cc9j-pxr6, CVE-2024-0136 or GHSA-
vcfp-63cx-4h59, and CVE-2024-0137 or GHSA-frhw-w3wm-6cw4
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 29 2025 Debarshi Ray [rishi@fedoraproject.org] - 1.17.3-1
- Update to 1.17.3
* Wed Jan 29 2025 Debarshi Ray [rishi@fedoraproject.org] - 1.17.2-1
- Update to 1.17.2
* Tue Jan 28 2025 Debarshi Ray [rishi@fedoraproject.org] - 1.17.1-1
- Update to 1.17.1
* Fri Jan 24 2025 Debarshi Ray [rishi@fedoraproject.org] - 1.17.0-1
- Update to 1.17.0
* Fri Jan 24 2025 Debarshi Ray [rishi@fedoraproject.org] - 1.16.2-2
- Synchronize linker flags with upstream
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2324084 - CVE-2024-0134 golang-github-nvidia-container-toolkit: specially-crafted container image can lead to the creation of unauthorized files on the host [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2324084
[ 2 ] Bug #2342485 - CVE-2024-0135 golang-github-nvidia-container-toolkit: Improper Isolation or Compartmentalization in NVIDIA Container Toolkit [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2342485
[ 3 ] Bug #2342489 - CVE-2024-0137 golang-github-nvidia-container-toolkit: Improper Isolation or Compartmentalization in NVIDIA Container Toolkit [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2342489
[ 4 ] Bug #2342493 - CVE-2024-0136 golang-github-nvidia-container-toolkit: Improper Isolation or Compartmentalization in NVIDIA Container Toolkit [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2342493
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-a15b07073f' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
