Fedora Linux 8811 Published by

The following updates are available for Fedora Linux:

Fedora 38 Update: stalld-1.19.2-1.fc38
Fedora 38 Update: httpd-2.4.59-2.fc38
Fedora 39 Update: chromium-124.0.6367.118-1.fc39
Fedora 39 Update: stalld-1.19.2-1.fc39
Fedora 40 Update: golang-github-nats-io-jwt-2-2.5.6-1.fc40




Fedora 38 Update: stalld-1.19.2-1.fc38


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-a047b1ca2d
2024-05-04 02:18:44.166352
--------------------------------------------------------------------------------

Name : stalld
Product : Fedora 38
Version : 1.19.2
Release : 1.fc38
URL : https://gitlab.com/rt-linux-tools/stalld/stalld.git
Summary : Daemon that finds starving tasks and gives them a temporary boost
Description :
The stalld program monitors the set of system threads,
looking for threads that are ready-to-run but have not
been given processor time for some threshold period.
When a starving thread is found, it is given a temporary
boost using the SCHED_DEADLINE policy. The default is to
allow 10 microseconds of runtime for 1 second of clock time.

--------------------------------------------------------------------------------
Update Information:

address issues found in Static Application Security testing
Fix a service startup issue
Fix file open issue when kernel lockdown is in effect
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr 24 2024 Clark Williams [williams@redhat.com] - 1.19.2
- Make fill_process_comm() open comm file as READ_ONLY
- throttlectl.sh: use legal value for exit on fail
- stalld: free malloc'd buffer on function exit
- throttling.c: null terminate input buffer
- stalld.conf: Fix stalld service start fail
- Conditionalize BPF and queue_track build per architecture
- clean up Makefile install logic and add .bz2 to .gitignore
- modify Makefiles so install works with relative paths
- rename 'redhat' to 'systemd' and remove redhat packaging logic
- update SPDX tags to non-deprecated values
- stalld: Add -a/--affinity option
- Adding SPDX license info to each file
- man/stalld.8: change starving threshold to match code
- utils: Fix freeing of invalid pointer
- add bpftool as BuildRequires
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-a047b1ca2d' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 38 Update: httpd-2.4.59-2.fc38


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-c2f6576348
2024-05-04 02:18:44.166331
--------------------------------------------------------------------------------

Name : httpd
Product : Fedora 38
Version : 2.4.59
Release : 2.fc38
URL : https://httpd.apache.org/
Summary : Apache HTTP Server
Description :
The Apache HTTP Server is a powerful, efficient, and extensible
web server.

--------------------------------------------------------------------------------
Update Information:

This update includes httpd version 2.4.59, fixing various security issues and
bugs. See https://downloads.apache.org/httpd/CHANGES_2.4.59 for complete details
of the changes in this release
--------------------------------------------------------------------------------
ChangeLog:

* Mon Apr 15 2024 Joe Orton [jorton@redhat.com] - 2.4.59-2
- mod_ssl: add DH param handling fix (r1916863)
* Fri Apr 5 2024 Joe Orton [jorton@redhat.com] - 2.4.59-1
- update to 2.4.59
* Thu Mar 28 2024 Joe Orton [jorton@redhat.com] - 2.4.58-8
- rebuild to fix changelog ordering
* Wed Jan 24 2024 Fedora Release Engineering [releng@fedoraproject.org] - 2.4.58-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sat Jan 20 2024 Fedora Release Engineering [releng@fedoraproject.org] - 2.4.58-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jan 5 2024 Joe Orton [jorton@redhat.com] - 2.4.58-4
- fix OpenSSL 3.0 deprecation warnings (r1913912, r1915067)
- mod_ssl: move to provider API for pkcs11 support (#2253014)
* Fri Dec 8 2023 Joe Orton [jorton@redhat.com] - 2.4.58-3
- mod_dav_fs: add DAVLockDBType, use global lock around lockdb
- fix build with libxml2 2.12
* Thu Nov 2 2023 Joe Orton [jorton@redhat.com] - 2.4.58-2
- add dependency on apr-util-1(dbm) so a DBM provider is present
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2273491 - CVE-2023-38709 httpd: HTTP response splitting
https://bugzilla.redhat.com/show_bug.cgi?id=2273491
[ 2 ] Bug #2273499 - CVE-2024-24795 httpd: HTTP Response Splitting in multiple modules
https://bugzilla.redhat.com/show_bug.cgi?id=2273499
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-c2f6576348' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: chromium-124.0.6367.118-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-5483bc2adb
2024-05-04 01:32:09.337312
--------------------------------------------------------------------------------

Name : chromium
Product : Fedora 39
Version : 124.0.6367.118
Release : 1.fc39
URL : http://www.chromium.org/Home
Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use
Description :
Chromium is an open-source web browser, powered by WebKit (Blink).

--------------------------------------------------------------------------------
Update Information:

update to 124.0.6367.118
* High CVE-2024-4331: Use after free in Picture In Picture
* High CVE-2024-4368: Use after free in Dawn
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 1 2024 Than Ngo [than@redhat.com] - 124.0.6367.118-1
- update to 124.0.6367.118
* High CVE-2024-4331: Use after free in Picture In Picture
* High CVE-2024-4368: Use after free in Dawn
- use system highway
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-5483bc2adb' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: stalld-1.19.2-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-9205c35b11
2024-05-04 01:32:09.336994
--------------------------------------------------------------------------------

Name : stalld
Product : Fedora 39
Version : 1.19.2
Release : 1.fc39
URL : https://gitlab.com/rt-linux-tools/stalld/stalld.git
Summary : Daemon that finds starving tasks and gives them a temporary boost
Description :
The stalld program monitors the set of system threads,
looking for threads that are ready-to-run but have not
been given processor time for some threshold period.
When a starving thread is found, it is given a temporary
boost using the SCHED_DEADLINE policy. The default is to
allow 10 microseconds of runtime for 1 second of clock time.

--------------------------------------------------------------------------------
Update Information:

address issues found in Static Application Security testing
Fix a service startup issue
Fix file open issue when kernel lockdown is in effect
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr 24 2024 Clark Williams [williams@redhat.com] - 1.19.2
- Make fill_process_comm() open comm file as READ_ONLY
- throttlectl.sh: use legal value for exit on fail
- stalld: free malloc'd buffer on function exit
- throttling.c: null terminate input buffer
- stalld.conf: Fix stalld service start fail
- Conditionalize BPF and queue_track build per architecture
- clean up Makefile install logic and add .bz2 to .gitignore
- modify Makefiles so install works with relative paths
- rename 'redhat' to 'systemd' and remove redhat packaging logic
- update SPDX tags to non-deprecated values
- stalld: Add -a/--affinity option
- Adding SPDX license info to each file
- man/stalld.8: change starving threshold to match code
- utils: Fix freeing of invalid pointer
- add bpftool as BuildRequires
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-9205c35b11' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 40 Update: golang-github-nats-io-jwt-2-2.5.6-1.fc40


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-3d44ce9065
2024-05-04 01:22:41.167423
--------------------------------------------------------------------------------

Name : golang-github-nats-io-jwt-2
Product : Fedora 40
Version : 2.5.6
Release : 1.fc40
URL : https://github.com/nats-io/jwt
Summary : JWT tokens signed using NKeys for Ed25519 for the NATS ecosystem
Description :
JWT tokens signed using NKeys for Ed25519 for the NATS ecosystem.

--------------------------------------------------------------------------------
Update Information:

update to v2.5.6
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr 24 2024 Mark E. Fuller [mark.e.fuller@gmx.de] - 2.5.6-1
- update to v2.5.6, close rhbz#2275943
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-3d44ce9065' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--