From Fedora Project Wiki
< User:Denisarnaud | Tasks
Denisarnaud (talk | contribs) |
Denisarnaud (talk | contribs) mNo edit summary |
||
| Line 1: | Line 1: | ||
= 2019-08 - Upgrade of re2 on Rawhide = | = 2019-08 - Upgrade of re2 on Rawhide = | ||
* [[User:Denisarnaud/Tasks/Completed/2019-08-re2]] | * [[User:Denisarnaud/Tasks/Completed/2019-08-re2]] | ||
= ZeroMQ CVE issue = | |||
* Bugzilla tickets: | |||
** [https://bugzilla.redhat.com/show_bug.cgi?id=1875223 BZ#1875223 - CVE-2020-15166 zeromq: unauthenticated clients causing denial-of-service (umbrella ticket)] | |||
** [https://bugzilla.redhat.com/show_bug.cgi?id=1876689 BZ#1876689 - CVE-2020-15166 zeromq: unauthenticated clients causing denial-of-service (fedora-all)] | |||
** [https://bugzilla.redhat.com/show_bug.cgi?id=1876690 BZ#1876690 - CVE-2020-15166 zeromq: unauthenticated clients causing denial-of-service (epel-all)] | |||
** [https://bugzilla.redhat.com/show_bug.cgi?id=1876691 BZ#1876691 - CVE-2020-15166 zeromq3: unauthenticated clients causing denial-of-service (epel-all)] | |||
** [https://bugzilla.redhat.com/show_bug.cgi?id=1876738 BZ#1876738 - zeromq-4.3.3 is available] (for all Fedora and EPEL 8) | |||
* [https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m Upstream page - Denial-of-Service on CURVE/ZAP-protected servers by unauthenticated clients] | |||
* Upstream fix (for EPEL 7): | |||
** [https://github.com/zeromq/libzmq/pull/3913 problem: zeromq connects peer before handshake is complete (#3913)] | |||
** [https://github.com/zeromq/libzmq/pull/3973 Problem: test_security_zap occasionally segfaults (#3973)] | |||
= CMake change - 2020-08 = | |||
* [[Changes/CMake to do out-of-source builds]] | |||
* Mailing list threads: | |||
** [https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/thread/P6FQAHOWSR5FTNJXEW6AWFAZQT7RROAS/ Fedora 33 System-Wide Change proposal: CMake to do out-of-source builds] | |||
** [https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/thread/QIGY2CGCHQ4UQEOP4F27CLT7NX4MWVUR/#7XYGEAPM5KXWBMA6WU5B5LNZUWNUJVEY What to do about FTBFS because auf cmake change?] | |||
** [https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/thread/WJUNUJ7BJQYXQTONR5AGOKD3ZNKLSDDC/#KSZKSY4UZYVUUCJZW52DMRFTBGFQAKU5 %{_vpath_builddir} needs to be in the Cmake packaging guidelines] | |||
** [https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/thread/AX7P57CJFI6B7BQIZSJ45OB6QIVDC76B/#5F7753CBNTDH5QLSYJWHGPFPG5ENWBOX Fedora 33 Mass Rebuild] | |||
* FTBFS | |||
** [https://bugzilla.redhat.com/show_bug.cgi?id=1865515 BZ#1865515 - StdAir] | |||
= CMake 3.17 on EPEL 8 = | |||
* Mailing list threads: | |||
** [https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org/thread/ICZGG2SQKUTV2JUBAS4XTWX2FQIKZT27/ Updating CMake in EPEL-8: How to create a module?] | |||
= Changes/Python3.9 = | = Changes/Python3.9 = | ||
Revision as of 11:59, 15 August 2024
2019-08 - Upgrade of re2 on Rawhide
ZeroMQ CVE issue
- Bugzilla tickets:
- BZ#1875223 - CVE-2020-15166 zeromq: unauthenticated clients causing denial-of-service (umbrella ticket)
- BZ#1876689 - CVE-2020-15166 zeromq: unauthenticated clients causing denial-of-service (fedora-all)
- BZ#1876690 - CVE-2020-15166 zeromq: unauthenticated clients causing denial-of-service (epel-all)
- BZ#1876691 - CVE-2020-15166 zeromq3: unauthenticated clients causing denial-of-service (epel-all)
- BZ#1876738 - zeromq-4.3.3 is available (for all Fedora and EPEL 8)
- Upstream page - Denial-of-Service on CURVE/ZAP-protected servers by unauthenticated clients
- Upstream fix (for EPEL 7):
CMake change - 2020-08
- Changes/CMake to do out-of-source builds
- Mailing list threads:
- FTBFS
CMake 3.17 on EPEL 8
- Mailing list threads: