RLSA-2020:1631 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 SEVERITY_LOW

An update for GStreamer, libmad, and SDL is now available for Rocky Linux 8. Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The GStreamer library provides a streaming media framework based on graphs of media data filters. The libmad package is an MPEG audio decoder capable of 24-bit output. Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.2 Release Notes linked from the References section. Rocky Linux 8 SDL2-2.0.10-2.el8.src.rpm c80763f0b1c60aa16e2be73bee1fe9272f3acb00b0b6b6dc619a768295888509 RLSA-2021:1734 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 SEVERITY_MODERATE

An update for shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Rocky Linux 8. Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.4 Release Notes linked from the References section. Rocky Linux 8 shim-unsigned-aarch64-15-7.el8.1.1.src.rpm 3bea090cbf373e6ae36f98768b831c14ebd6ac94cf74025a71581f7903e7ba34 RLSA-2022:2129 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 SEVERITY_MODERATE

An update for lynx is now available for Rocky Linux 8. Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Lynx is a text-based Web browser. Lynx does not display any images, but it does support frames, tables, and most other HTML tags. For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.6 Release Notes linked from the References section. Rocky Linux 8 lynx-2.8.9-4.el8.src.rpm 99837b54a406a7c1f089e57bb3fe71a690f5f55b68cbfddaa87271c1acd237a2 RLSA-2021:1968 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 SEVERITY_MODERATE

An update for mingw-binutils, mingw-bzip2, mingw-filesystem, and mingw-sqlite is now available for Rocky Linux 8. Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

MinGW is a free and open source software development environment to create Microsoft Windows applications. The following packages have been upgraded to a later upstream version: mingw-sqlite (3.26.0.0). (BZ#1845475) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.4 Release Notes linked from the References section. Rocky Linux 8 mingw-binutils-2.30-3.el8.src.rpm 66862cae1b53fe7a9d3ca9429a73dc5673bd9e504774a66501ea2e9edfe9b8f1 mingw-bzip2-1.0.6-14.el8.src.rpm 6f8e8c9121b4ce5c2309e2b5526aa56ac7b37a797796b32e7ec8e015d80ab92e mingw-sqlite-3.26.0.0-1.el8.src.rpm bbaf7f5834c23ef3a067a8fcdd53014a938d3bf8fe11271985153a7c8d0864b1 RLSA-2022:5597 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 SEVERITY_IMPORTANT

An update for pandoc is now available for Rocky Linux 8. Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Pandoc is a markdown/markup conversion tool. The version of pandoc in RHEL 8 CRB uses cmark-gfm (GitHub's extended version of the C reference implementation of CommonMark) for parts of its conversion. The update, fixes CVE-2022-24724: an integer overflow in cmark-gfm's table row parsing which may lead to heap memory corruption when parsing tables with more than UINT16_MAX columns. For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Rocky Linux 8 pandoc-2.0.6-6.el8_6.src.rpm 770033cd9e86c65d6c1d9e5cf901e8c5ea7fe5522939014ca84e9804b5b66ff5 RLEA-2020:4742 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update for the userspace graphics, including X.Org, and Mesa is now available for Rocky Linux 8.

For detailed information on changes in this release, see the Rocky Linux 8.3 Release Notes linked from the References section. Rocky Linux 8 xorg-x11-util-macros-1.19.2-1.el8.src.rpm 029e3013f257a1fe8481e11641c77dc5d13bb9a9d68399d8f521cef0c1d271ab RLBA-2021:1801 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update for libgpod is now available for Rocky Linux 8.

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 8.4 Release Notes linked from the References section. Rocky Linux 8 libgpod-0.8.3-24.el8.src.rpm c4db61b3b42804753ee905e66381ed4ba81598e4ec1412681d2838b869b19f25 RLEA-2020:1694 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

A new python38:3.8 module is now available for Rocky Linux 8.

This enhancement update adds the python38:3.8 module to Rocky Linux 8. (BZ#1747329) For detailed information on changes in this release, see the Rocky Linux 8.2 Release Notes linked from the References section. Rocky Linux 8 pytest-4.6.6-3.module+el8.4.0+570+c2eaf144.src.rpm 867cec1be14c32d0ca398638716e5f14b1f2f58925f0257bdd9759eb31a5537b python3x-pyparsing-2.4.5-3.module+el8.4.0+570+c2eaf144.src.rpm 59c4a1220bf258ad8ed4d865b8f868c6d9b124bd72cd778fa4d457a428d212f8 python-atomicwrites-1.3.0-8.module+el8.4.0+570+c2eaf144.src.rpm 4eb1eb58f786910b6d6ef73acf83a0464418003de0eb5f6d76fe72214c65f9ad python-attrs-19.3.0-3.module+el8.4.0+570+c2eaf144.src.rpm 864dfe3eb72f7f62863166e5dafc4923f4dbc8b434ad558148c6746d528f5bb0 python-more-itertools-7.2.0-5.module+el8.4.0+570+c2eaf144.src.rpm 805110ce436e5744b7aebdf9f1e8c0bd70abdbfbeedad43cf5bc2ae0bb29443c python-packaging-19.2-3.module+el8.4.0+570+c2eaf144.src.rpm 6fa8df7e3dce73c61f5f58ffbd28b03e319b6d281a2006114a44007d12f372e6 python-pluggy-0.13.0-3.module+el8.4.0+570+c2eaf144.src.rpm f496f29fdc319e1daac5632c92ff12ab52e139b64950fb82ed0eb552a48f519d python-py-1.8.0-8.module+el8.4.0+570+c2eaf144.src.rpm 7788af255e75f34d2865e02e58dcd8f8e232e4b2f57ff2ab68976dace09fc231 python-wcwidth-0.1.7-16.module+el8.4.0+570+c2eaf144.src.rpm e49970b6c018f0fae9afe0a8b9a64787e10673cf41161f9a0bb4b3d731e6391e RLSA-2021:4519 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 SEVERITY_MODERATE

An update for autotrace is now available for Rocky Linux 8. Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

AutoTrace is a program for converting bitmaps to vector graphics. For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.5 Release Notes linked from the References section. Rocky Linux 8 autotrace-0.31.1-53.el8.src.rpm 5a91fc499fb13df432960d6e0fdeb4fcd5f6a0b9c8ef765721821e63da01cc0a RLBA-2021:4840 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update for dotnet5.0-build-reference-packages is now available for Rocky Linux.

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Rocky Linux 8 dotnet5.0-build-reference-packages-0-12.20211117git6ce5818.el8_5.src.rpm e0648ec813af0e1768d80c43975fd14e01d6b1c6f3fea384e226b3920b03c87e RLSA-2022:5095 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 SEVERITY_IMPORTANT

An update for grub2, mokutil, shim, and shim-unsigned-x64 is now available for Rocky Linux 8. Rocky Enterprise Software Foundation Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Rocky Linux 8 shim-unsigned-x64-15.6-1.el8.src.rpm a454b51803837f09bf2e7ce1917d3a9c8c7a24dbb760c287bcda0242055b8c13 RLEA-2019:3557 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update for libtalloc is now available for Rocky Linux 8.

For detailed information on changes in this release, see the Rocky Linux 8.1 Release Notes linked from the References section. Rocky Linux 8 cmocka-1.1.5-1.el8.src.rpm 335c3537bca897cf39b4f69d1ead0ba6cb11a2f4efa88665d19be5a47995180b socket_wrapper-1.2.3-1.el8.src.rpm 59b8d3535a4ff7c628e67b3ec5eb113425d9e2e844da4c317608bd7fa64c101d uid_wrapper-1.2.4-4.el8.src.rpm 722aeac0298554f9919658b1df01e4a2aea36a44d94da2d13410ac8fd238d3c6 RLEA-2021:1919 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

A new python39:3.9 module is now available for Rocky Linux 8.

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. This enhancement update adds the python39:3.9 module to Rocky Linux 8. (BZ#1877430) For detailed information on changes in this release, see the Rocky Linux 8.4 Release Notes linked from the References section. Rocky Linux 8 Cython-0.29.21-5.module+el8.4.0+574+843c4898.src.rpm 58931f10229625f4aad7f4d9a2df4da0def2425e795756361f68276a634508e5 pytest-6.0.2-2.module+el8.4.0+574+843c4898.src.rpm 8494da3eb3d68dd18e2c9ec0565fd705cc66ad35c30a1142c719bec160ac8ba3 python3x-pyparsing-2.4.7-5.module+el8.4.0+574+843c4898.src.rpm aab9537472215990547481734cb9bf8f55ad082e138fc79a1446ec0c25a025fa python-attrs-20.3.0-2.module+el8.4.0+574+843c4898.src.rpm 427018c2b84d3fd13b05df92ad56a415c7ccffebe19a529a939ae339770eea7f python-iniconfig-1.1.1-2.module+el8.4.0+574+843c4898.src.rpm e84b618ef7f68dbc25e1e8509bff7b90400eb58d5dc327897c974a9e330bbf04 python-more-itertools-8.5.0-2.module+el8.4.0+574+843c4898.src.rpm 89f11de24a7a750c471b7c846cc1bd8c26f9ee90c386e925533576f010c239cc python-packaging-20.4-4.module+el8.4.0+574+843c4898.src.rpm 61ce42e571c0940acb642d17c5b9c5801ab8ce4db8cb2c280d86291e5a76065c python-pluggy-0.13.1-3.module+el8.4.0+574+843c4898.src.rpm 874a646de1dbd421f23cf6782d216d0fb78d87006329d94f734ab0b9560628f5 python-py-1.10.0-1.module+el8.4.0+574+843c4898.src.rpm 46cfd79a6a2df17b40b4326d9dd5943ab086af9ad0b1723f0f2c5b8d0cde03d4 python-wcwidth-0.2.5-3.module+el8.4.0+574+843c4898.src.rpm e1b23ce4cecff5863016df173d9b996158242ed90cd6019f5b4e1e2ff710d204 RLBA-2021:4348 Copyright (C) 2022 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update for brasero is now available for Rocky Linux 8.

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 8.5 Release Notes linked from the References section. Rocky Linux 8 brasero-3.12.2-5.el8.src.rpm bf635076ea9670ab7d891aad7e6d6231391a698d1d0a3803ba90f192931b2139