- Updated to kernel-5.14.0-368.el9 (fixes: CVE-2022-45934):
  + Bluetooth: L2CAP: Fix u8 overflow
  + Draft: Merge tag 'kernel-5.14.0-362.4.1.el9_3' from 9.3
  + Expose TPMI interface for SST
  + Merge commit '77fd6b887cd98bac29adffaa04362d033174698e'
  + Merge commit 'ba2e0054d2bb347988c85b4429ef30077cfdc431'
  + Merge tag 'kernel-5.14.0-362.4.1.el9_3' from 9.3
  + arm64: dts: qcom: sa8775p: Backport four commits to silence bogus error messages due to probe deferrals
  + crypto: Backport fixes to eliminate running crypto selftests when FIPS is disabled for automotive
  + drm/amd/display: fix the white screen issue when >= 64GB DRAM
  + net: macsec: fix performance regression between RHEL8 and RHEL9
  + nfsd: fix change_info in NFSv4 RENAME replies
  + perf: sync with upstream v6.5
  + power: TPMI UFS (Uncore Frequency Scaling) Driver
  + power: Update RAPL driver to use TPMI
  + power: pmc: Add PMC driver support for IOE die
  + redhat: add additional gating boot tests
  + sched/nohz: Make nohz_full play nice with cfs bandwidth
  + Various changes and improvements that are poorly described in merge.

- New version.
- Security fixes:
  + CVE-2023-3600 Use-after-free in workers
  + CVE-2023-3417 File Extension Spoofing using the Text Direction Override Character
  + CVE-2023-4045 Offscreen Canvas could have bypassed cross-origin restrictions
  + CVE-2023-4046 Incorrect value used during WASM compilation
  + CVE-2023-4047 Potential permissions request bypass via clickjacking
  + CVE-2023-4048 Crash in DOMParser due to out-of-memory conditions
  + CVE-2023-4049 Fix potential race conditions when releasing platform objects
  + CVE-2023-4050 Stack buffer overflow in StorageManager
  + CVE-2023-4052 File deletion and privilege escalation through Firefox uninstaller
  + CVE-2023-4054 Lack of warning when opening appref-ms files
  + CVE-2023-4055 Cookie jar overflow caused unexpected cookie jar state
  + CVE-2023-4056 Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, Firefox ESR 102.14, Thunderbird 115.1, and Thunderbird 102.14
  + CVE-2023-4057 Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1
  + CVE-2023-4573 Memory corruption in IPC CanvasTranslator
  + CVE-2023-4574 Memory corruption in IPC ColorPickerShownCallback
  + CVE-2023-4575 Memory corruption in IPC FilePickerShownCallback
  + CVE-2023-4576 Integer Overflow in RecordedSourceSurfaceCreation
  + CVE-2023-4577 Memory corruption in JIT UpdateRegExpStatics
  + CVE-2023-4051 Full screen notification obscured by file open dialog
  + CVE-2023-4578 Error reporting methods in SpiderMonkey could have triggered an Out of Memory Exception
  + CVE-2023-4053 Full screen notification obscured by external program
  + CVE-2023-4580 Push notifications saved to disk unencrypted
  + CVE-2023-4581 XLL file extensions were downloadable without warnings
  + CVE-2023-4582 Buffer Overflow in WebGL glGetProgramiv
  + CVE-2023-4583 Browsing Context potentially not cleared when closing Private Window
  + CVE-2023-4584 Memory safety bugs fixed in Firefox 117, Firefox ESR 102.15, Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2
  + CVE-2023-4585 Memory safety bugs fixed in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2
  + CVE-2023-4863 Heap buffer overflow in libwebp

- New version.
- Security fixes:
  + CVE-2023-40184: Improper handling of session establishment errors allows bypassing OS-level session restrictions

- 9.16.42 -> 9.16.44 (fixes: CVE-2023-3341).

- Updated to 3.1.3 (fixes CVE-2023-4807).

- 8.2.1 -> 8.3.0
- Fixes:
   * CVE-2023-38039 HTTP headers eat all memory
- relaxed check on armh

- 8.0.29 -> 8.0.30 (Fixes: CVE-2023-3823, CVE-2023-3824)
- for sisyphus and p11: added conflicts with the installer-stage3 to avoid
  using php8.0 in distributios: The first stage of EOL plan

- 1.3.2 (fixed CVE-2023-4863)

- Updated to v9.0.1893 (fixes CVE-2023-4781, CVE-2023-4752, CVE-2023-4750,
  CVE-2023-4733, CVE-2023-4738, CVE-2023-4736, CVE-2023-4735, CVE-2023-4734).

- 12.3.0 (CVE-2023-20900)

- New version.
- Seciruty fixes:
  + CVE-2023-22045
  + CVE-2023-22049
- Removed implicit requirements.

- New version.
- Security fixes
  + CVE-2023-22006
  + CVE-2023-22036
  + CVE-2023-22041
  + CVE-2023-22044
  + CVE-2023-22045
  + CVE-2023-22049
  + CVE-2023-25193
- Removed implicit requirements.

- New version 1.5.3 (Fixes: CVE-2023-30575, CVE-2023-30576).

- 1.21.2 (Fixes: CVE-2023-39975)

- new version 1.40.0 (with rpmrb script)
- disable AutoReq
- (T335612, CVE-2023-36674) SECURITY: Move badFile lookup to Linker.
- (T335203, CVE-2023-29197) Upgrade guzzlehttp/psr7 to >= 1.9.1/2.4.5.
- (T335612, CVE-2023-36674) Manualthumb bypasses badFile lookup.
- (T332889, CVE-2023-36675) XSS in BlockLogFormatter due to unsafe message use.

- Sync with Debian 3.20230808.1:
  + New upstream microcode datafile 20230808
    + Mitigations for "Downfall" INTEL-SA-00828 (CVE-2022-40982),
    + INTEL-SA-00836 (CVE-2023-23908) and INTEL-SA-00837 (CVE-2022-41804)
    + Updated microcodes:
      sig 0x00050653, pf_mask 0x97, 2023-03-23, rev 0x1000181, size 36864
      sig 0x00050654, pf_mask 0xb7, 2023-03-06, rev 0x2007006, size 44032
      sig 0x00050656, pf_mask 0xbf, 2023-03-17, rev 0x4003604, size 38912
      sig 0x00050657, pf_mask 0xbf, 2023-03-17, rev 0x5003604, size 38912
      sig 0x0005065b, pf_mask 0xbf, 2023-03-21, rev 0x7002703, size 30720
      sig 0x000606a6, pf_mask 0x87, 2023-03-30, rev 0xd0003a5, size 297984
      sig 0x000706e5, pf_mask 0x80, 2023-02-26, rev 0x00bc, size 113664
      sig 0x000806c1, pf_mask 0x80, 2023-02-27, rev 0x00ac, size 111616
      sig 0x000806c2, pf_mask 0xc2, 2023-02-27, rev 0x002c, size 98304
      sig 0x000806d1, pf_mask 0xc2, 2023-02-27, rev 0x0046, size 103424
      sig 0x000806e9, pf_mask 0xc0, 2023-02-22, rev 0x00f4, size 106496
      sig 0x000806e9, pf_mask 0x10, 2023-02-23, rev 0x00f4, size 105472
      sig 0x000806ea, pf_mask 0xc0, 2023-02-23, rev 0x00f4, size 105472
      sig 0x000806eb, pf_mask 0xd0, 2023-02-23, rev 0x00f4, size 106496
      sig 0x000806ec, pf_mask 0x94, 2023-02-26, rev 0x00f8, size 106496
      sig 0x000806f8, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1, size 572416
      sig 0x000806f7, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
      sig 0x000806f6, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
      sig 0x000806f5, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
      sig 0x000806f4, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
      sig 0x000806f8, pf_mask 0x10, 2023-05-15, rev 0x2c000271, size 605184
      sig 0x000806f6, pf_mask 0x10, 2023-05-15, rev 0x2c000271
      sig 0x000806f5, pf_mask 0x10, 2023-05-15, rev 0x2c000271
      sig 0x000806f4, pf_mask 0x10, 2023-05-15, rev 0x2c000271
      sig 0x00090672, pf_mask 0x07, 2023-04-18, rev 0x002e, size 220160
      sig 0x00090675, pf_mask 0x07, 2023-04-18, rev 0x002e
      sig 0x000b06f2, pf_mask 0x07, 2023-04-18, rev 0x002e
      sig 0x000b06f5, pf_mask 0x07, 2023-04-18, rev 0x002e
      sig 0x000906a3, pf_mask 0x80, 2023-04-18, rev 0x042c, size 219136
      sig 0x000906a4, pf_mask 0x80, 2023-04-18, rev 0x042c
      sig 0x000906e9, pf_mask 0x2a, 2023-02-23, rev 0x00f4, size 108544
      sig 0x000906ea, pf_mask 0x22, 2023-02-23, rev 0x00f4, size 104448
      sig 0x000906eb, pf_mask 0x02, 2023-02-23, rev 0x00f4, size 106496
      sig 0x000906ec, pf_mask 0x22, 2023-02-23, rev 0x00f4, size 105472
      sig 0x000906ed, pf_mask 0x22, 2023-02-27, rev 0x00fa, size 106496
      sig 0x000a0652, pf_mask 0x20, 2023-02-23, rev 0x00f8, size 97280
      sig 0x000a0653, pf_mask 0x22, 2023-02-23, rev 0x00f8, size 97280
      sig 0x000a0655, pf_mask 0x22, 2023-02-23, rev 0x00f8, size 97280
      sig 0x000a0660, pf_mask 0x80, 2023-02-23, rev 0x00f8, size 97280
      sig 0x000a0661, pf_mask 0x80, 2023-02-23, rev 0x00f8, size 96256
      sig 0x000a0671, pf_mask 0x02, 2023-02-26, rev 0x0059, size 104448
      sig 0x000b0671, pf_mask 0x32, 2023-06-06, rev 0x0119, size 210944
      sig 0x000b06a2, pf_mask 0xe0, 2023-06-06, rev 0x4119, size 216064
      sig 0x000b06a3, pf_mask 0xe0, 2023-06-06, rev 0x4119
      sig 0x000b06e0, pf_mask 0x11, 2023-04-12, rev 0x0011, size 136192
  + source: update symlinks to reflect id of the latest release, 20230808

- Package re-created after deletion by ALT beekeeper (due to FTBFS).
- Update to v1.2.4 (2023-05-01), sync with upstream sources.
- Add checkinstall package with basic tests.
- (Fixes: CVE-2015-1817, CVE-2017-15650, CVE-2019-14697, CVE-2020-28928).
- Note: this is an experimental build and known to fail on some
  architecture/compiler cases. Basically, musl-gcc is most expected
  to work and especially for static linking.

- New version 1.42. (Fixes: CVE-2022-32292, CVE-2022-32293, CVE-2023-28488)

- new version 4.0.0 (with rpmrb script)
- CVE-2022-2963, CVE-2022-40755
- build libjasper7 lib package

- new version 18.17.0 (with rpmrb script)
- set npm >= 9.6.7
- CVE-2023-30581: mainModule.__proto__ Bypass Experimental Policy Mechanism (High)
- CVE-2023-30585: Privilege escalation via Malicious Registry Key manipulation during Node.js installer repair process (Medium)
- CVE-2023-30588: Process interuption due to invalid Public Key information in x509 certificates (Medium)
- CVE-2023-30589: HTTP Request Smuggling via Empty headers separated by CR (Medium)
- CVE-2023-30590: DiffieHellman does not generate keys after setting a private key (Medium)

- Support for OpenSSL 3 (to access Blowfish encryption).
- Apply fixes to bundled yajl (CVE-2023-33460, CVE-2022-24795, CVE-2017-16516).

- .NET 7.0.9
- CVE-2023-33127: .NET Remote Code Execution Vulnerability
- CVE-2023-33170: .NET Security Feature Bypass Vulnerability
- CVE-2023-24895: .NET Remote Code Execution Vulnerability
- CVE-2023-24897: .NET Remote Code Execution Vulnerability
- CVE-2023-24936: .NET Elevation of Privilege Vulnerability
- CVE-2023-29331: .NET Denial of Service Vulnerability
- CVE-2023-29337: NuGet Client Remote Code Execution Vulnerability
- CVE-2023-32032: .NET Denial of Service Vulnerability
- CVE-2023-33126: .NET Denial of Service Vulnerability
- CVE-2023-33128: .NET Denial of Service Vulnerability
- CVE-2023-33135: .NET Denial of Service Vulnerability
- CVE-2023-28260: .NET Remote Code Execution Vulnerability

- The .NET 7.0.9 and .NET SDK 7.0.109 releases
- CVE-2023-33127: .NET Remote Code Execution Vulnerability
- CVE-2023-33170: .NET Security Feature Bypass Vulnerability
- CVE-2023-24895: .NET Remote Code Execution Vulnerability
- CVE-2023-24897: .NET Remote Code Execution Vulnerability
- CVE-2023-24936: .NET Elevation of Privilege Vulnerability
- CVE-2023-29331: .NET Denial of Service Vulnerability
- CVE-2023-29337: NuGet Client Remote Code Execution Vulnerability
- CVE-2023-32032: .NET Denial of Service Vulnerability
- CVE-2023-33126: .NET Denial of Service Vulnerability
- CVE-2023-33128: .NET Denial of Service Vulnerability
- CVE-2023-33135: .NET Denial of Service Vulnerability
- CVE-2023-28260: .NET Remote Code Execution Vulnerability

- .NET 6.0.20
- CVE-2023-33127: .NET Remote Code Execution Vulnerability
- CVE-2023-33170: .NET Security Feature Bypass Vulnerability
- CVE-2023-24895: .NET Remote Code Execution Vulnerability
- CVE-2023-24897: .NET Remote Code Execution Vulnerability
- CVE-2023-24936: .NET Elevation of Privilege Vulnerability
- CVE-2023-29331: .NET Denial of Service Vulnerability
- CVE-2023-29337: NuGet Client Remote Code Execution Vulnerability
- CVE-2023-33126: .NET Denial of Service Vulnerability
- CVE-2023-33128: .NET Denial of Service Vulnerability
- CVE-2023-33135: .NET Denial of Service Vulnerability
- CVE-2023-28260: .NET Remote Code Execution Vulnerability

- The .NET 6.0.20 and .NET SDK 6.0.120 releases
- CVE-2023-33127: .NET Remote Code Execution Vulnerability
- CVE-2023-33170: .NET Security Feature Bypass Vulnerability
- CVE-2023-24895: .NET Remote Code Execution Vulnerability
- CVE-2023-24897: .NET Remote Code Execution Vulnerability
- CVE-2023-24936: .NET Elevation of Privilege Vulnerability
- CVE-2023-29331: .NET Denial of Service Vulnerability
- CVE-2023-29337: NuGet Client Remote Code Execution Vulnerability
- CVE-2023-33126: .NET Denial of Service Vulnerability
- CVE-2023-33128: .NET Denial of Service Vulnerability
- CVE-2023-33135: .NET Denial of Service Vulnerability
- CVE-2023-28260: .NET Remote Code Execution Vulnerability

- New version 10.0.9
- This release fixes several security issues that has been recently discovered. Update is recommended!
- Security fixes:
 + CVE-2023-37278 : SQL injection in dashboard administration
- Deleted glpi-php7

- Apply fixes for CVE-2023-38408 (PKCS#11 providers).

- new version 116 (Fixes: CVE-2022-3560)
  + rebase ALT commits
  + remove obsolete patches

- New version (633).
- Security fixes:
  + CVE-2022-46663: less -R filtering bypass.

- 1.2.24
- Fixes:
  + CVE-2022-46169 Unauthenticated Command Injection
- switched to php8.0 by default

- 1.26.3. -> 1.26.6 (Fixes: CVE-2023-2727, CVE-2023-2728).
- Closes ALT#46869.
- Fix build on %arm architectures.
- Add CVE fixes information.

- 1.19.1 (Fixes: CVE-2023-31124, CVE-2023-31130, CVE-2023-31147, CVE-2023-32067)

- New version (3.0.0).
- Fixes:
  + CVE-2023-2804 Various segfaults and buffer overruns

- 9.5.5
- Switch from separate server & cli to a unified grafana binary
- Add wrapper scripts for grafana-cli and grafana-server
- Fixes:
  + CVE-2023-0507
  + CVE-2023-0594
  + CVE-2023-1387
  + CVE-2023-1410
  + CVE-2023-2183
  + CVE-2023-2801
  + CVE-2023-22462
  + CVE-2023-28119

- fixes CVE-2023-33460.

- Update to v0.3.4 (2023-01-30). (Fixes: CVE-2022-25326, CVE-2022-25327,
  CVE-2022-25328).

- 3.5.9 (Fixes: CVE-2023-32082).

- New version 0.9.6 (Fixes: CVE-2023-1017, CVE-2023-1018).

- New version 3.0.3
- Security fixes:
 + CVE-2021-46743 : Firebase PHP-JWT key/algorithm type confusion
 + CVE-2022-31403 : XSS vulnerability via /itop/pages/ajax.render.php
 + CVE-2022-31402 : XSS vulnerability via /itop/webservices/export-v2.php
- Added itop-php8.0
- Deleted itop-php7

- 2.29.0 -> 2.31.0 (fixes: CVE-2023-32681).

- 2.10.4 (Fixes: CVE-2023-29469, CVE-2023-28484)

- 2.33.7 -> 2.33.8 (fixes: CVE-2023-25652, CVE-2023-25815, CVE-2023-29007).

- Autobuild version bump to 10.01.1
- (Fixes: CVE-2023-28879)

- Fixed arbitrary command execution via a tag file with
  a crafted filename (fixes CVE-2022-4515).

- 1.10.3.
- switch to meson.
- Security fixes for CVE-2020-11721, CVE-2020-19668.

- 1.1.4 (Fixes CVE-2023-27478)
- Change URL to new upstream project
- Use CMAKE

- Added patches from upstream git:
  + Avoid undefined behaviour with the ctype(3) functions
  + Fix --rev-server option
  + Fix possible SEGV when no servers defined
  + Set the default maximum DNS UDP packet size to 1232
    (fixes: CVE-2023-28450)
  + Fix DHCPv6 "use multicast" response which previously failed

- 1.26.2
- Fixes: CVE-2022-2995, CVE-2022-27652, CVE-2022-4318

- 0.9.68 -> 0.9.72 (Fixes: CVE-2022-31214)

- 1.14.4 (fixed CVE-2023-28100, CVE-2023-28101)

- grub 2.06-alt9 is missing fix for CVE-2022-28733, block SBAT grub.altlinux < 2
  + add shim-15.7-alt-Add-grub.altlinux-2-to-SBAT-revocations patch

- 0.103.8 (CVE-2023-20032, CVE-2023-20052)

- 4.0.1 (Fixes: CVE-2023-22745)

- (Fixes: CVE-2022-47016).

- 3.5.15 (fixes: CVE-2022-46285, CVE-2022-44617, CVE-2022-4883)

- Fixed libssl knob.
- Fixed License tag.
- Added Vcs tag.
- Patch from upstream:
  + Fixed crash when st_info_list is NULL (fixes: CVE-2022-4121).

- new version 0.9.8 (with rpmrb script)
- CVE-2021-30469, CVE-2021-30470, CVE-2021-30471, CVE-2021-30472

- security (fixes: CVE-2022-36227)

- edk2-stable202211 (Fixes: CVE-2021-38578)

- edk2-stable202211 (Fixes: CVE-2021-38578)
- add 4M builds

- edk2-stable202211 (Fixes: CVE-2021-38578)

- 3.1.13 (fixed CVE-2021-31439, CVE-2022-23121, CVE-2022-23122,
  CVE-2022-23123, CVE-2022-23124, CVE-2022-23125 and CVE-2022-0194)

- 0.42.2 (fixed CVE-2022-44638)

- rename patch lib-DBD-File.pm-fix-CVE-2014-10401.patch
- fixes changelog

- Updated to 2.5.0 (fixes: CVE-2022-43680 Fix heap use-after-free after
  overeager destruction of a shared DTD in function XML_ExternalEntityParserCreate
  in out-of-memory situations, DoS or potentially ACE).

- security (fixes: CVE-2020-29260)

- Fixes patch CVE-2015-0557-security-traversal-dir (ALT #44143).

- Add support LDAP add/mod operation to set/change password:
 + fix unable to join to active directory after KB5008380/CVE-2021-42287 with
   option '--ldap-passwd';
 + https://gitlab.freedesktop.org/realmd/adcli/-/issues/27
- Add support fall back to LDAPS if CLDAP ping was not successful
 + If the --use-ldaps option is used and there is no reply on the CLDAP 389/udp
   port adcli will try to send the request to the LDAPS port 636/tcp.
- Fix write SID before secret to Samba's db looks like 'net changesecretpw'
- Add passwd-user sub-command for (re)set a user password.
- Add dont-expire-password option for computer.

- fixes CVE-2019-25051

- fixes CVE-2018-10195.

- fixes CVE-2021-4217

- Updated to 4.4.3-P1 (fixes: CVE-2022-2928,CVE-2022-2929).

- 0.25.4 (fixed CVE-2022-37706)

- Update to DROPBEAR_2022.82 (2022-04-01). (Fixes: CVE-2018-15599,
  CVE-2018-5399, CVE-2018-20685, CVE-2019-12953, CVE-2020-15833,
  CVE-2020-36254).
- Disable DSS keys.
- Allow password auth.
- Undo authkey_fp patch (as it does not apply to the new codebase).
- Use bundled libtom{crypt,math} maintained by the authors of Dropbear.
- Doc and client packages are merged into main package.
- Add systemd services.
- Correct sftp-server path (to openssh-server binary).

- Version bump
- Many bugfixes, including security, including:
  Fixes: CVE-2022-24106, CVE-2022-27135

- Autobuild version bump to 6.1.7
- Fixes: CVE-2022-30333

- 2.5.0 (fixed CVE-2013-4289, CVE-2013-4290, CVE-2019-6988, 
  CVE-2018-20846, CVE-2018-16376, CVE-2021-29338)

- New version.
- Security fixes:
  + CVE-2021-28544 Subversion servers reveal copyfrom paths that should be hidden according to configured path-based authorization (authz) rules.
  + CVE-2022-24070 mod_dav_svn is prone to a use-after-free vulnerability when looking up path-based authorization rules, which can result in denial of service (crash of HTTPD worker handling the request).

- upplied upstream fix for CVE-2021-4115 (GHSL-2021-077)

- 1.16.1 (Fixes: CVE-2021-3935).

- 2.1.38 -> 2.1.39 (fixes for CVE-2021-42097 and CVE-2021-44227).

- Applied SUSE combchar.diff to prevent DoS via crafted UTF-8 character
  sequence (fixes CVE-2021-26937).

- 0.2.5 (fixed CVE-2021-39358)

- New version (Fixes: CVE-2020-15158).

- fix build, apply patches from upstream
- .service: use /run instead of /var/run
- CVE-2021-32749

- 3.2.8 (fixes: CVE-2021-33582)

- new version (1.3.0) with rpmgs script
- CVE-2020-9382, CVE-2020-35625

- ^ 3.0.4 -> 3.2.19
- ! CVE-2020-36327, CVE-2021-24105

- avoid infinite-loop in avahi-daemon (closes: #39357) (fixes: CVE-2021-3468)

- Applied security fix from upstream (Fixes CVE-2018-16789).

- Applied security fix from upstream (Fixes CVE-2018-8754).

- Updated to upstream version 3.6.0 (Fixes: CVE-2020-26276).

- Applied security patches from Debian and Gentoo (Fixes: CVE-2014-0466, CVE-2015-8107).

- Updated to upstream version 0.32.3 (Fixes: CVE-2017-5208,
  CVE-2017-5331, CVE-2017-5332, CVE-2017-5333).

- Applied security patch from Gentoo (Fixes: CVE-2017-9430).

- Updated to upstream version 1.2.1 (Fixes: CVE-2018-16741, CVE-2018-16742,
  CVE-2018-16743, CVE-2018-16744, CVE-2018-16745, CVE-2019-1010189, CVE-2019-1010190).

- Applied security fix from upstream (Fixes: CVE-2019-14495).

- Updated to upstream version 1.18.0 (Fixes: CVE-2017-5991, CVE-2018-10289,
  CVE-2018-16647, CVE-2018-16648, CVE-2019-14975, CVE-2020-26519).

- Updated to upstream version 1.2.2 (Fixes: CVE-2019-13045, CVE-2019-15717).

- Applied security patch from Fedora (Fixes: CVE-2019-19917, CVE-2019-19918)