Comments

41 Comments
karma

Running fine on a production system since Friday.

karma

I tested that freshclam still successfully applies clamav database updates after applying the json-c update.

User Icon tmz commented & provided feedback on git-2.24.1-1.fc31 8 months ago

Yes. It's a bump from 2.23.0 to 2.24.1 (which was in the works before these issues arose). While 5 of the 9 issues fixed here are rated as high severity (per https://github.com/git/git/security/advisories), only one of those 5 has the potential to affect Linux users -- and even then only where git is cloning to an NTFS networked drive with short names enabled.

So the risk to Fedora users is considerably lower than it is to Windows git users. (The severity is set to high per the security team's initial bug assessments, but I suspect that after more thorough review that might be lowered -- but the Fedora updates should all be pushed to stable before then.)

Thus I feel comfortable letting this spend a few more days in testing to ensure we don't run into any issues in the 2.23.0 -> 2.24.1 bump. I really don't expect any thanks to the care which upstream takes to avoid regressions, but I'd rather not cause anyone trouble which can be avoided by a little more testing.

Thanks for the poke in any case. I appreciate the nudge to ensure this wasn't an unintentional delay!

User Icon tmz commented & provided feedback on git-2.24.1-1.fc31 8 months ago

Yes. It's a bump from 2.23.0 to 2.24.1 (which was in the works before these issues arose). While 5 of the 9 issues fixed here are rated as high severity (per https://github.com/git/git/security/advisories), only one of those 5 has the potential to affect Linux users -- and even then only where git is cloning to an NTFS networked drive with short names enabled.

So the risk to Fedora users is considerably lower than it is to Windows git users. (The severity is set to high per the security team's initial bug assessments, but I suspect that after more thorough review that might be lowered -- but the Fedora updates should all be pushed to stable before then.)

Thus I feel comfortable letting this spend a few more days in testing to ensure we don't run into any issues in the 2.23.0 -> 2.24.1 bump. I really don't expect any thanks to the care which upstream takes to avoid regressions, but I'd rather not cause anyone trouble which can be avoided by a little more testing.

Thanks for the poke in any case. I appreciate the nudge to ensure this wasn't an unintentional delay!

I've run this on a few nagios instances since it was released and haven't noticed any issues. The extraneous check_disk output and the check_disk_smb dependency issues are both resolved. Thanks!

BZ#1752219 check_disk produces extraneous output

FWIW, I did file a PR upstream to make the utf8::all module dependency optional. Whether that will be accepted or not remains to be seen. I'm not a user of that plugin nor a regular perl coder (not for many years anyway), so the patch might need work even if the goal is agreeable to the folks upstream.

Unfortunately (for us on el6), upstream added a dependency on the perl utf8::all module, which is not available on el6. With nagios-plugins-all or nagios-plugins-disk_smb installed, attempting to update results in:

Error: Package: nagios-plugins-disk_smb-2.2.2-1.20190919git00cff01.el6.x86_64 (epel-testing)
           Requires: perl(utf8::all)

It's a relatively easy change to revert at this point (and the plugin may likely not change much before el6 goes EOL, so the revert patch will hopefully remain easily applicable).

I'll file that as a PR, after confirming on which branch(es) we want to apply the change. I mentioned this in the bugzilla entry for the check_disk issue.

karma

Tested jgit to confirm it launches properly and that it's usage in the git test suite is successful (this includes jgit daemon, jgit gc, and jgit --version calls). Thanks @mbooth!

BZ#1709624 jgit fails to launch due to missing org.springframework.boot.loader.JarLauncher class

No. Fedora 26 is EOL, so it no longer receives any updates. ;)

(Also, if F26 were not EOL, the better place to ask would be in bugzilla or reaching out to the package maintainers directly.)

This change removes the python2 asciidocapi, which seems undesirable in a stable release (and counter to the updates policy).

This change removes the python2 asciidocapi, which seems undesirable in a stable release (and counter to the updates policy).

User Icon tmz commented & provided feedback on gthumb-3.3.4-2.el7 2 years ago
karma

gThumb installs and runs without error.

https://bugzilla.redhat.com/show_bug.cgi?id=1579422 was filed for the traceback (and was marked as a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=1579367, where the root issue is being addressed)

User Icon tmz commented & provided feedback on fedpkg-1.33-1.fc28 2 years ago
karma

Definitely not working after dnf --enablerepo updates-testing upgrade fedpkg. Are there perhaps other updates in updates-testing which would make this work and simply aren't dependencies of fedpkg?

User Icon tmz commented & provided feedback on vim-8.0.1788-1.fc28 2 years ago
karma

It's probably a little late to fix it now, but this update has a requirement on perl-libs-5.26.2, which is still in testing.

User Icon tmz commented & provided feedback on gpgme-1.10.0-4.fc27 2 years ago
karma

@ignatenkobrain, @walters, @kalev, I filed a PR which should restore the platform-python-gpg subpackage. Hopefully that helps save someone a little time. It definitely should be reviewed carefully, as I'm not terribly familiar with the platform-python bits.

https://src.fedoraproject.org/rpms/gpgme/pull-request/5

The autopush should be disabled to prevent this from going to stable. While the update fixes the incompatibility issue with gnupg2-2.0.6 it includes unintended removal of the platform-python subpackages. That breaks dnf building as seen here: https://apps.fedoraproject.org/koschei/package/dnf?collection=f27

User Icon tmz commented & provided feedback on gpgme-1.10.0-4.fc28 2 years ago
karma

Tested with sudo dnf --enablerepo fedora-cisco-openh264 repolist to confirm dnf prompts to import the repo gpg key and successfully completes. A subsequent dnf upgrade upgraded 30 packages, which should further exercise gpgme.