Aggregator
6.18.38: longterm
6.12.95: longterm
6.6.144: longterm
6.1.177: longterm
5.15.211: longterm
5.10.260: longterm
kryoptic-1.5.2-2.fc45 mir-2.28.0-2.fc45 rust-ashpd-0.13.12-2.fc45 rust-busd-0.5.0-3.fc45 rust-gtk4-macros-0.11.4-3.fc45 rust-inferno-0.12.6-3.fc45 rust-quick-xml-0.41.0-1.fc45 rust-reqsign-aws-v4-3.0.1-4.fc45 rust-wayland-scanner-0.31.10-5.fc45 sandogasa…
- kryoptic-1.5.2-2.fc45
- mir-2.28.0-2.fc45
- rust-ashpd-0.13.12-2.fc45
- rust-busd-0.5.0-3.fc45
- rust-gtk4-macros-0.11.4-3.fc45
- rust-inferno-0.12.6-3.fc45
- rust-quick-xml-0.41.0-1.fc45
- rust-reqsign-aws-v4-3.0.1-4.fc45
- rust-wayland-scanner-0.31.10-5.fc45
- sandogasa-0.15.3-2.fc45
Update quick-xml for two security advisories, rebuild dependents, and update sandogasa to the latest
- https://rustsec.org/advisories/RUSTSEC-2026-0194.html
- https://rustsec.org/advisories/RUSTSEC-2026-0195.html
- ebranch base-distro guard — resolve/file-requests now know EPEL must not replace RHEL/CentOS Stream packages: deps present in the base at a too-old version are blocked with clear options (alternate package via --override, or lower the requirement) instead of becoming CANTFIX branch requests; file-requests re-checks the base before filing
- New sandogasa-sourcehut crate — sr.ht GraphQL client; sandogasa-report gains a Sourcehut section (patches, tickets, commits split yours vs third-party, git_emails attribution)
- ebranch check-crate — human report on stderr alongside --koji/--copr machine output, so build scripts stay pipeable
- dbranch rebuild — creates debian/gbp.conf when the Debian branch has none and handles the modern single-line salsa-ci.yml
- Robustness: 120s HTTP timeout on every client; --version on every tool; quick-xml bumped to 0.41 for RUSTSEC-2026-0194/-0195
- sandogasa-report: consistent commit detail levels across forges
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.3/CHANGELOG.md#v0153
v0.15.2- New sandogasa-review crate — shared keep/explain/remove resolution for reviewer-curated findings; adopted by fedora-review-digest, ebranch check-update, and fedora-cve-triage
- New sandogasa-forgejo crate — Forgejo/Gitea REST API client (PR activity
- issue filing); powers sandogasa-report's Forgejo accounting
- ebranch check-update overhaul — condensed output (counts + version grouping), reviewer curation of blocking findings before karma, branch inference for Fedora side tags (EPEL still needs -b al9 -r @epel), plus fixes for stale-side-tag and rich-dep installability false positives and large-update performance
- fedora-cve-triage — per-bug keep/explain/remove review before closing detected false positives
- sandogasa-report — Forgejo PR-merge and issue accounting
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.2/CHANGELOG.md#v0152
rust-quick-xml-0.41.0-1.el9 rust-wayland-scanner-0.31.10-3.el9 sandogasa-0.15.3-2.el9
- rust-quick-xml-0.41.0-1.el9
- rust-wayland-scanner-0.31.10-3.el9
- sandogasa-0.15.3-2.el9
Update quick-xml for two security advisories, rebuild dependents, and update sandogasa to the latest
- https://rustsec.org/advisories/RUSTSEC-2026-0194.html
- https://rustsec.org/advisories/RUSTSEC-2026-0195.html
- ebranch base-distro guard — resolve/file-requests now know EPEL must not replace RHEL/CentOS Stream packages: deps present in the base at a too-old version are blocked with clear options (alternate package via --override, or lower the requirement) instead of becoming CANTFIX branch requests; file-requests re-checks the base before filing
- New sandogasa-sourcehut crate — sr.ht GraphQL client; sandogasa-report gains a Sourcehut section (patches, tickets, commits split yours vs third-party, git_emails attribution)
- ebranch check-crate — human report on stderr alongside --koji/--copr machine output, so build scripts stay pipeable
- dbranch rebuild — creates debian/gbp.conf when the Debian branch has none and handles the modern single-line salsa-ci.yml
- Robustness: 120s HTTP timeout on every client; --version on every tool; quick-xml bumped to 0.41 for RUSTSEC-2026-0194/-0195
- sandogasa-report: consistent commit detail levels across forges
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.3/CHANGELOG.md#v0153
v0.15.2- New sandogasa-review crate — shared keep/explain/remove resolution for reviewer-curated findings; adopted by fedora-review-digest, ebranch check-update, and fedora-cve-triage
- New sandogasa-forgejo crate — Forgejo/Gitea REST API client (PR activity
- issue filing); powers sandogasa-report's Forgejo accounting
- ebranch check-update overhaul — condensed output (counts + version grouping), reviewer curation of blocking findings before karma, branch inference for Fedora side tags (EPEL still needs -b al9 -r @epel), plus fixes for stale-side-tag and rich-dep installability false positives and large-update performance
- fedora-cve-triage — per-bug keep/explain/remove review before closing detected false positives
- sandogasa-report — Forgejo PR-merge and issue accounting
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.2/CHANGELOG.md#v0152
rust-quick-xml-0.41.0-1.el10_3 rust-reqsign-aws-v4-3.0.1-2.el10_3 rust-wayland-scanner-0.31.10-3.el10_3 sandogasa-0.15.3-2.el10_3
- rust-quick-xml-0.41.0-1.el10_3
- rust-reqsign-aws-v4-3.0.1-2.el10_3
- rust-wayland-scanner-0.31.10-3.el10_3
- sandogasa-0.15.3-2.el10_3
Update quick-xml for two security advisories, rebuild dependents, and update sandogasa to the latest
- https://rustsec.org/advisories/RUSTSEC-2026-0194.html
- https://rustsec.org/advisories/RUSTSEC-2026-0195.html
- ebranch base-distro guard — resolve/file-requests now know EPEL must not replace RHEL/CentOS Stream packages: deps present in the base at a too-old version are blocked with clear options (alternate package via --override, or lower the requirement) instead of becoming CANTFIX branch requests; file-requests re-checks the base before filing
- New sandogasa-sourcehut crate — sr.ht GraphQL client; sandogasa-report gains a Sourcehut section (patches, tickets, commits split yours vs third-party, git_emails attribution)
- ebranch check-crate — human report on stderr alongside --koji/--copr machine output, so build scripts stay pipeable
- dbranch rebuild — creates debian/gbp.conf when the Debian branch has none and handles the modern single-line salsa-ci.yml
- Robustness: 120s HTTP timeout on every client; --version on every tool; quick-xml bumped to 0.41 for RUSTSEC-2026-0194/-0195
- sandogasa-report: consistent commit detail levels across forges
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.3/CHANGELOG.md#v0153
v0.15.2- New sandogasa-review crate — shared keep/explain/remove resolution for reviewer-curated findings; adopted by fedora-review-digest, ebranch check-update, and fedora-cve-triage
- New sandogasa-forgejo crate — Forgejo/Gitea REST API client (PR activity
- issue filing); powers sandogasa-report's Forgejo accounting
- ebranch check-update overhaul — condensed output (counts + version grouping), reviewer curation of blocking findings before karma, branch inference for Fedora side tags (EPEL still needs -b al9 -r @epel), plus fixes for stale-side-tag and rich-dep installability false positives and large-update performance
- fedora-cve-triage — per-bug keep/explain/remove review before closing detected false positives
- sandogasa-report — Forgejo PR-merge and issue accounting
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.2/CHANGELOG.md#v0152
rust-busd-0.5.0-3.fc43 rust-inferno-0.12.6-3.fc43 rust-quick-xml-0.41.0-1.fc43 rust-reqsign-aws-v4-3.0.1-2.fc43 rust-wayland-scanner-0.31.10-3.fc43 sandogasa-0.15.3-2.fc43
- rust-busd-0.5.0-3.fc43
- rust-inferno-0.12.6-3.fc43
- rust-quick-xml-0.41.0-1.fc43
- rust-reqsign-aws-v4-3.0.1-2.fc43
- rust-wayland-scanner-0.31.10-3.fc43
- sandogasa-0.15.3-2.fc43
Update quick-xml for two security advisories, rebuild dependents, and update sandogasa to the latest
- https://rustsec.org/advisories/RUSTSEC-2026-0194.html
- https://rustsec.org/advisories/RUSTSEC-2026-0195.html
- ebranch base-distro guard — resolve/file-requests now know EPEL must not replace RHEL/CentOS Stream packages: deps present in the base at a too-old version are blocked with clear options (alternate package via --override, or lower the requirement) instead of becoming CANTFIX branch requests; file-requests re-checks the base before filing
- New sandogasa-sourcehut crate — sr.ht GraphQL client; sandogasa-report gains a Sourcehut section (patches, tickets, commits split yours vs third-party, git_emails attribution)
- ebranch check-crate — human report on stderr alongside --koji/--copr machine output, so build scripts stay pipeable
- dbranch rebuild — creates debian/gbp.conf when the Debian branch has none and handles the modern single-line salsa-ci.yml
- Robustness: 120s HTTP timeout on every client; --version on every tool; quick-xml bumped to 0.41 for RUSTSEC-2026-0194/-0195
- sandogasa-report: consistent commit detail levels across forges
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.3/CHANGELOG.md#v0153
v0.15.2- New sandogasa-review crate — shared keep/explain/remove resolution for reviewer-curated findings; adopted by fedora-review-digest, ebranch check-update, and fedora-cve-triage
- New sandogasa-forgejo crate — Forgejo/Gitea REST API client (PR activity
- issue filing); powers sandogasa-report's Forgejo accounting
- ebranch check-update overhaul — condensed output (counts + version grouping), reviewer curation of blocking findings before karma, branch inference for Fedora side tags (EPEL still needs -b al9 -r @epel), plus fixes for stale-side-tag and rich-dep installability false positives and large-update performance
- fedora-cve-triage — per-bug keep/explain/remove review before closing detected false positives
- sandogasa-report — Forgejo PR-merge and issue accounting
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.2/CHANGELOG.md#v0152
mir-2.26.0-2.fc44 rust-ashpd-0.13.12-2.fc44 rust-busd-0.5.0-3.fc44 rust-gtk4-macros-0.11.4-2.fc44 rust-inferno-0.12.6-3.fc44 rust-quick-xml-0.41.0-1.fc44 rust-reqsign-aws-v4-3.0.1-2.fc44 rust-wayland-scanner-0.31.10-3.fc44 sandogasa-0.15.3-2.fc44
- mir-2.26.0-2.fc44
- rust-ashpd-0.13.12-2.fc44
- rust-busd-0.5.0-3.fc44
- rust-gtk4-macros-0.11.4-2.fc44
- rust-inferno-0.12.6-3.fc44
- rust-quick-xml-0.41.0-1.fc44
- rust-reqsign-aws-v4-3.0.1-2.fc44
- rust-wayland-scanner-0.31.10-3.fc44
- sandogasa-0.15.3-2.fc44
Update quick-xml for two security advisories, rebuild dependents, and update sandogasa to the latest
- https://rustsec.org/advisories/RUSTSEC-2026-0194.html
- https://rustsec.org/advisories/RUSTSEC-2026-0195.html
- ebranch base-distro guard — resolve/file-requests now know EPEL must not replace RHEL/CentOS Stream packages: deps present in the base at a too-old version are blocked with clear options (alternate package via --override, or lower the requirement) instead of becoming CANTFIX branch requests; file-requests re-checks the base before filing
- New sandogasa-sourcehut crate — sr.ht GraphQL client; sandogasa-report gains a Sourcehut section (patches, tickets, commits split yours vs third-party, git_emails attribution)
- ebranch check-crate — human report on stderr alongside --koji/--copr machine output, so build scripts stay pipeable
- dbranch rebuild — creates debian/gbp.conf when the Debian branch has none and handles the modern single-line salsa-ci.yml
- Robustness: 120s HTTP timeout on every client; --version on every tool; quick-xml bumped to 0.41 for RUSTSEC-2026-0194/-0195
- sandogasa-report: consistent commit detail levels across forges
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.3/CHANGELOG.md#v0153
v0.15.2- New sandogasa-review crate — shared keep/explain/remove resolution for reviewer-curated findings; adopted by fedora-review-digest, ebranch check-update, and fedora-cve-triage
- New sandogasa-forgejo crate — Forgejo/Gitea REST API client (PR activity
- issue filing); powers sandogasa-report's Forgejo accounting
- ebranch check-update overhaul — condensed output (counts + version grouping), reviewer curation of blocking findings before karma, branch inference for Fedora side tags (EPEL still needs -b al9 -r @epel), plus fixes for stale-side-tag and rich-dep installability false positives and large-update performance
- fedora-cve-triage — per-bug keep/explain/remove review before closing detected false positives
- sandogasa-report — Forgejo PR-merge and issue accounting
Full details: https://github.com/slopfest/sandogasa/blob/v0.15.2/CHANGELOG.md#v0152
DSA-6377-1 php8.4 - security update
USN-8496-2: cifs-utils regression
perl-Crypt-DSA-1.17-31.el8
- perl-Crypt-DSA-1.17-31.el8
This update adds two improvements backported from Crypt-DSA 1.22:
- Hardening: Use a fresh, independent CSPRNG witness every round
- Security fix: Modulo bias in key generation (CVE-2026-14570); an attack with hundreds of signatures could lead to full private-key compromise; keys should be considered compromised and new keys should be generated
perl-Crypt-DSA-1.17-31.el9
- perl-Crypt-DSA-1.17-31.el9
This update adds two improvements backported from Crypt-DSA 1.22:
- Hardening: Use a fresh, independent CSPRNG witness every round
- Security fix: Modulo bias in key generation (CVE-2026-14570); an attack with hundreds of signatures could lead to full private-key compromise; keys should be considered compromised and new keys should be generated
perl-Crypt-DSA-1.22-1.el10_3
- perl-Crypt-DSA-1.22-1.el10_3
This update, to the current upstream release, addresses a cryptographic flaw (modulo bias) in key generation that could lead to private key compromise (CVE-2026-1457) .
perl-Crypt-DSA-1.22-1.fc43
- perl-Crypt-DSA-1.22-1.fc43
This update, to the current upstream release, addresses a cryptographic flaw (modulo bias) in key generation that could lead to private key compromise (CVE-2026-1457) .
perl-Crypt-DSA-1.22-1.fc44
- perl-Crypt-DSA-1.22-1.fc44
This update, to the current upstream release, addresses a cryptographic flaw (modulo bias) in key generation that could lead to private key compromise (CVE-2026-1457) .
perl-Crypt-DSA-1.22-1.el10_2
- perl-Crypt-DSA-1.22-1.el10_2
This update, to the current upstream release, addresses a cryptographic flaw (modulo bias) in key generation that could lead to private key compromise (CVE-2026-1457) .